Local Privilege Escalation in Nagios XI before version 5.8.5 via Unsantized Input in cleaner.php

Local Privilege Escalation in Nagios XI before version 5.8.5 via Unsantized Input in cleaner.php

CVE-2021-37349 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Nagios XI before version 5.8.5 is vulnerable to local privilege escalation because cleaner.php does not sanitise input read from the database.

Learn more about our Cis Benchmark Audit For Apple Ios.