"Flaws in Nagios Network Management Products Can Pose Risk to Many Companies"

Researchers at the industrial cybersecurity firm Claroty found 11 vulnerabilities in widely-used network management products from Nagios during a research project on the use of network management systems in Information Technology (IT), Operational Technology (OT), and Internet of Things (IoT) networks. The discovered vulnerabilities pose a significant risk to many organizations as such products are attractive targets for malicious actors. These vulnerabilities can be exploited for Server-Side Request Forgery (SSRF), Remote Code Execution (RCE), spoofing, local privilege escalation, and more. Claroty developed a proof-of-concept (PoC) exploit demonstrating how an authenticated attacker could tie some of the vulnerabilities together to execute shell commands with root privileges. The security flaws were found to impact Nagios XI, XI Switch Wizard, XI Docker Wizard, and XI WatchGuard. In August, Nagios released patches for each of the affected products. According to the vendor, thousands of organizations globally use its software, including Verizon, IBM, and other major brands. This article continues to discuss the potential exploitation and impact of the vulnerabilities discovered in Nagios network management products. 

Security Week reports "Flaws in Nagios Network Management Products Can Pose Risk to Many Companies"