Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Nagios XI < 5.8.7 Insecure Permissions on Highcharts Temporary Directory
Vulnerability Description
Nagios XI versions prior to 5.8.7 used a temporary directory for Highcharts exports with overly permissive ownership/permissions under the Apache user. Local or co-hosted processes could read/overwrite export artifacts or manipulate paths, risking disclosure or tampering and potential code execution depending on deployment.
CVSS Information
N/A
Vulnerability Type
带着不必要的权限执行
Vulnerability Title
Nagios XI 安全漏洞
Vulnerability Description
Nagios XI是美国Nagios公司的一套IT基础设施监控解决方案。该方案支持对应用、服务、操作系统等进行监控和预警。 Nagios XI 5.8.7之前版本存在安全漏洞,该漏洞源于Highcharts导出临时目录权限设置不当,可能导致信息泄露或篡改,以及潜在的代码执行。
CVSS Information
N/A
Vulnerability Type
N/A