CVE-2024-13986

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2024R1.3.2

Description Nagios XI is susceptible to remote code execution due to chained flaws: an arbitrary file upload and a path traversal within the Core Config Snapshots interface. Insufficient validation of file paths and extensions during MIB upload and snapshot rename operations allows attackers to place attacker-controlled PHP files in a web-accessible directory. These files are then executed as the www-data user.

Recommendations Update Nagios XI to version 2024R1.3.2 or later.