CVE-2025-56432
EUVD-2025-2861426.08.2025, 16:15
A cross-site scripting (XSS) vulnerability exists in Nagios XI 2024R2. The vulnerability allows remote attackers to execute arbitrary JavaScript in the context of a logged-in user's session via a specially crafted URL. The issue resides in a web component responsible for rendering performance-related data.
Awaiting analysis
This vulnerability is currently awaiting analysis.