CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-26024

The Favorites component before 1.0.2 for Nagios XI 5.8.0 is vulnerable to Insecure Direct Object Reference: it is possible to create favorites for any other user account.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.011

EPSS Ranking 77.1%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

https://www.nagios.com/products/security/
https://www.nagios.com/products/security/

Products affected by CVE-2021-26024

Nagios » Favorites » Version: N/A

cpe:2.3:a:nagios:favorites:-
Nagios » Nagios Xi » Version: 5.8.0

cpe:2.3:a:nagios:nagios_xi:5.8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-26024

Products

Pricing

Contact Us