CVE-2025-44824

CVSS v3.1

8.5

High

Vector

AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H

Name of the Vulnerable Software and Affected Versions Nagios Log Server versions prior to 2024R1.3.2

Description Nagios Log Server versions prior to 2024R1.3.2 allow authenticated users with read-only API access to stop the Elasticsearch service. This is achieved by sending a request to the /nagioslogserver/index.php/api/system/stop API endpoint with the subsystem parameter set to elasticsearch. Despite the API response indicating a failure to stop the service ("message": "Could not stop elasticsearch"), the Elasticsearch service is stopped.

Recommendations Update Nagios Log Server to version 2024R1.3.2 or later.

Exploit

Fix

Incorrect Authorization

Improper Access Control

Improper Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863CWE-284CWE-285

Related Identifiers

BDU:2025-15966

CVE-2025-44824

Affected Products

Elasticsearch

Nagios Log Server

CVE-2025-44824

Weakness Enumeration

Related Identifiers

Affected Products

References · 15