Security Advisory

CVE-2023-40934

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-19 00:00:00

Last updated 2024-09-24 20:43:56

Assigner mitre

State PUBLISHED

Description

A SQL injection vulnerability in Nagios XI 5.11.1 and below allows authenticated attackers with privileges to manage host escalations in the Core Configuration Manager to execute arbitrary SQL commands via the host escalation notification settings.

← Browse all CVEs View on cve.org ↗