CVE-2024-54959

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-54959
Nagios XI 2024R1.2.2 is vulnerable to a Cross-Site Request Forgery (CSRF) attack through the Favorites component, enabling POST-based Cross-Site Scripting (XSS).
CVSS

No CVSS.

References
Link Resource
https://github.com/Sharpe-nl/CVEs/tree/main/CVE-2024-54959 Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:nagios:nagios_xi:2024:r1.2.2:*:*:*:*:*:*
History

01 Jul 2025, 15:02

Type Values Removed Values Added
References () https://github.com/Sharpe-nl/CVEs/tree/main/CVE-2024-54959 - () https://github.com/Sharpe-nl/CVEs/tree/main/CVE-2024-54959 - Third Party Advisory
First Time Nagios
Nagios nagios Xi
CPE cpe:2.3:a:nagios:nagios_xi:2024:r1.2.2:*:*:*:*:*:*

20 Feb 2025, 18:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-02-20 18:15

Updated : 2025-07-01 15:02

NVD link : CVE-2024-54959

Mitre link : CVE-2024-54959

JSON object : View

Products Affected

nagios

  • nagios_xi
CWE

No CWE.