CVE-2026-2042

Name of the Vulnerable Software and Affected Versions Nagios Host (affected versions not specified)

Description A flaw exists within the monitoringwizard module that allows remote attackers to execute arbitrary code on affected installations of Nagios Host. Authentication is required for exploitation. The issue stems from insufficient validation of user-supplied input before it is used in a system call, potentially allowing an attacker to execute code within the context of the service account.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.