Nagios XI

Main article: IT Service Management (ITSM)

2024: Addressing Vulnerabilities

The developers IT infrastructures of the Nagios XI monitoring system thanked Positive Technologies senior expert Aleksei Solovyov for detecting several dangerous ones. vulnerabilities This software is used in, data centers telecommunication companies, in - and hostingproviders in other large companies for operational monitoring, collection data and management of network infrastructure failures. The manufacturer was notified of the errors as part of a responsible disclosure policy and issued security updates. Positive Technologies reported this on April 5, 2024.

In February 2024, the number of systems available on the Internet running Nagios XI was estimated by specialists from the Positive Technologies security expert center at more than 900 installations. A third of them are in the United States (33.4%), in China - 8.4%, in India - 5%.

An attacker could exploit cross-site scripting vulnerabilities (to attack the system administrator) and shellcode injection (to execute arbitrary code on the server on which Nagios XI is installed). After that, an attacker could potentially disable Nagios XI and other systems and services, use the server power provided. For example, to mine cryptocurrency or make the server a member of a botnet, steal private data, hack into network infrastructure and carry out other malicious actions, "said Aleksei Solovyov, senior specialist in the web application security analysis group, Positive Technologies.

A Positive Technologies expert discovered vulnerabilities in cross-site scripting (BDU:2023-07898, BDU:2023-07893 and BDU:2023-07900, BDU:2023-07894, BDU:2023-07899 and BDU: 2023-07901), SQL code injection (BDU:2023-07895) and shellcode injection (BDU:2023-07896) - both with a score of 9.1 points on CVSS 3.0.

Positive Technologies

To fix these vulnerabilities, you must install Nagios XI version 2024R1.0.1 or later.