Vulnerability Description
Nagios XI < 2024R1.3.2 contains a remote code execution vulnerability by chaining two flaws: an arbitrary file upload and a path traversal in the Core Config Snapshots interface. The issue arises from insufficient validation of file paths and extensions during MIB upload and snapshot rename operations. Exploitation results in the placement of attacker-controlled PHP files in a web-accessible directory, executed as the www-data user.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nagios | Nagios Xi | < 2024 |
Related Weaknesses (CWE)
References
- https://theyhack.me/Nagios-XI-Authenticated-RCEExploitThird Party Advisory
- https://www.nagios.com/changelog/nagios-xi/
- https://www.nagios.com/products/security/#nagios-xi
- https://www.vulncheck.com/advisories/nagios-xi-authenticated-arbitrary-file-uplo
- https://theyhack.me/Nagios-XI-Authenticated-RCE/ExploitThird Party Advisory
FAQ
What is CVE-2024-13986?
CVE-2024-13986 is a vulnerability with a CVSS score of 8.8 (HIGH). Nagios XI < 2024R1.3.2 contains a remote code execution vulnerability by chaining two flaws: an arbitrary file upload and a path traversal in the Core Config Snapshots interface. The issue arises from...
How severe is CVE-2024-13986?
CVE-2024-13986 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-13986?
Check the references section above for vendor advisories and patch information. Affected products include: Nagios Nagios Xi.