An Insufficient Access Control vulnerability (leading to credential disclosure) in coreconfigsnapshot.php (aka configuration snapshot page) in Nagios XI before 5.5.4 allows remote attackers to gain access to configuration files containing confidential credentials.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-06-19T17:23:25

Updated: 2024-08-05T10:39:59.575Z

Reserved: 2018-09-18T00:00:00

Link: CVE-2018-17148

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-06-19T18:15:11.040

Modified: 2024-11-21T03:53:57.797

Link: CVE-2018-17148

cve-icon Redhat

Severity : Moderate

Publid Date: 2019-06-19T00:00:00Z

Links: CVE-2018-17148 - Bugzilla