Nagios Security Vulnerabilities (CVEs)

Track 113 security vulnerabilities affecting Nagios products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

26 Critical

35 High

52 Medium

Sort by:

🔔 Get Alerts for Nagios

CVE-2021-37348 7.5

CVE-2021-37348 is a local file inclusion vulnerability in Nagios XI that allows attackers to read arbitrary files on the server through improper pathn...

Aug 13, 2021

CVE-2021-37350 9.8

CVE-2021-37350 is a critical SQL injection vulnerability in Nagios XI's Bulk Modifications Tool that allows attackers to execute arbitrary SQL command...

Aug 13, 2021

CVE-2021-37353 9.8

Nagios XI Docker Wizard versions before 1.1.3 contain a Server-Side Request Forgery (SSRF) vulnerability in table_population.php due to improper input...

Aug 13, 2021

CVE-2020-28906 8.8

This vulnerability allows low-privileged users in Nagios XI and Nagios Fusion to modify files that are later executed with root privileges, enabling p...

May 24, 2021

CVE-2020-28907 9.8

CVE-2020-28907 is a critical SSL certificate validation vulnerability in Nagios Fusion that allows attackers to escalate privileges to root or execute...

May 24, 2021

CVE-2020-28908 9.8

CVE-2020-28908 is a command injection vulnerability in Nagios Fusion 4.1.8 and earlier that allows attackers to execute arbitrary commands with elevat...

May 24, 2021

CVE-2020-28910 9.8

This vulnerability in Nagios XI 5.7.5 and earlier allows local attackers to escalate privileges by exploiting insecure temporary directory permissions...

May 24, 2021

CVE-2020-28900 9.8

This vulnerability allows attackers to escalate privileges to root or execute arbitrary code on Nagios Fusion and Nagios XI systems by exploiting insu...

May 24, 2021

CVE-2020-28901 9.8

CVE-2020-28901 is a command injection vulnerability in Nagios Fusion that allows attackers to execute arbitrary commands with root privileges. The vul...

May 24, 2021

CVE-2020-28904 9.8

CVE-2020-28904 is a privilege escalation vulnerability in Nagios Fusion that allows attackers to execute arbitrary PHP code with elevated privileges. ...

May 24, 2021

CVE-2021-28925 9.8

This SQL injection vulnerability in Nagios Network Analyzer allows attackers to execute arbitrary SQL commands via the o[col] parameter in the api/che...

Apr 8, 2021

CVE-2021-3193 9.8

CVE-2021-3193 is a critical remote code execution vulnerability in Nagios Docker Config Wizard that allows unauthenticated attackers to execute arbitr...

Jan 26, 2021

CVE-2020-15903 9.8

CVE-2020-15903 is a privilege escalation vulnerability in Nagios XI where backend scripts running as root included files editable by the lower-privile...

Sep 9, 2020

← Previous Page 3 of 3

Why Monitor Nagios Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 113+ known vulnerabilities affecting Nagios products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Nagios packages in under 60 seconds. No agents required - completely agentless scanning that works across Nagios deployments.

Free vulnerability database: Access detailed information about every Nagios CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

Register free account & add your servers
Run one-time scan or schedule automatic monitoring (every 1-24 hours)
Receive instant alerts when new Nagios CVEs affect your systems
Access dashboard with severity breakdown & fix instructions

Start Monitoring Nagios CVEs Free