2025-08-26 00:00:00
mitre
PUBLISHED
A cross-site scripting (XSS) vulnerability exists in Nagios XI 2024R2. The vulnerability allows remote attackers to execute arbitrary JavaScript in the context of a logged-in users session via a specially crafted URL. The issue resides in a web component responsible for rendering performance-related data.