Directory Traversal Vulnerability in Nagios XI 5.4.13

CVE-2018-10553 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

An issue was discovered in Nagios XI 5.4.13. A registered user is able to use directory traversal to read local files, as demonstrated by URIs beginning with index.php?xiwindow=./ and config/?xiwindow=../ substrings.

Learn more about our Cis Benchmark Audit For Apple Ios.