CVE-2018-17148
EUVD-2018-892319.06.2019, 18:15
An Insufficient Access Control vulnerability (leading to credential disclosure) in coreconfigsnapshot.php (aka configuration snapshot page) in Nagios XI before 5.5.4 allows remote attackers to gain access to configuration files containing confidential credentials.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| nagios | nagios_xi | 𝑥 < 5.5.4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration