CVE-2021-37345

Nagios XI before version 5.8.5 is vulnerable to local privilege escalation because xi-sys.cfg is being imported from the var directory for some scripts with elevated permissions.

Risk Information

  • CVE ID
  • CVE-2021-37345
  • Vendor
  • Nagios
  • Product
  • Nagios XI
  • CVSS v3
  • 7.8