exploitDog

CVE-2022-29272

Опубликовано: 29 июн. 2022

Источник: nvd

CVSS3: 6.1

CVSS2: 5.8

EPSS Низкий

Описание

In Nagios XI through 5.8.5, an open redirect vulnerability exists in the login function that could lead to spoofing.

Ссылки

https://assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXT
Release Notes
Vendor Advisory
https://github.com/4LPH4-NL/CVEs
Third Party Advisory
https://github.com/sT0wn-nl/CVEs/blob/master/README.md#nagios-xi
Third Party Advisory
https://www.nagios.com/downloads/nagios-xi/change-log/
Release Notes
Vendor Advisory
https://assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXT
Release Notes
Vendor Advisory
https://github.com/4LPH4-NL/CVEs
Third Party Advisory
https://github.com/sT0wn-nl/CVEs/blob/master/README.md#nagios-xi
Third Party Advisory
https://www.nagios.com/downloads/nagios-xi/change-log/
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:nagios:nagios_xi:*:*:*:*:*:*:*:*

Версия до 5.8.5 (включая)

EPSS

Процентиль: 88%

0.04126

Низкий

6.1 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-601

Связанные уязвимости

GHSA-j322-33xf-rqj8

CVSS3: 6.1

github

больше 3 лет назад

In Nagios XI through 5.8.5, an open redirect vulnerability exists in the login function that could lead to spoofing.

EPSS

Процентиль: 88%

0.04126

Низкий

6.1 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-601