CVE-2022-38251

Name of the Vulnerable Software and Affected Versions Nagios XI version 5.8.6

Description A cross-site scripting (XSS) issue was found in Nagios XI via the System Performance Settings page under the Admin panel. This allows for potential malicious script execution.

Recommendations For Nagios XI version 5.8.6, consider restricting access to the System Performance Settings page under the Admin panel until a fix is available. As a temporary workaround, avoid using the affected page to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.