Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of the archivejson.cgi, objectjson.cgi, and statusjson.cgi files. NOTE: this vulnerability has been mistakenly associated with CVE-2020-1408.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nagios 注入漏洞
Vulnerability Description
Nagios是美国Nagios公司的一套开源的免费网络监视工具。 Nagios 4.4.5版本中存在注入漏洞。攻击者可通过修改的archive.json、objectjson.cgi和statusjson.cgi利用该漏洞修改警报直方图和趋势功能代码。
CVSS Information
N/A
Vulnerability Type
N/A