CVE-2021-37353: SSRF
First published: Fri Aug 13 2021(Updated: )
Nagios XI Docker Wizard before version 1.1.3 is vulnerable to SSRF due to improper sanitation in table_population.php.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nagios Nagios Xi Docker Wizard | <1.1.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for Nagios XI Docker Wizard?
The vulnerability ID for Nagios XI Docker Wizard is CVE-2021-37353.
What is the severity level of CVE-2021-37353?
The severity level of CVE-2021-37353 is critical with a CVSS score of 9.8.
What is affected by CVE-2021-37353?
Nagios XI Docker Wizard versions up to 1.1.3 are affected by CVE-2021-37353.
How does CVE-2021-37353 exploit the vulnerability?
CVE-2021-37353 exploits a Server-Side Request Forgery (SSRF) vulnerability due to improper sanitation in table_population.php.
Is there a fix available for CVE-2021-37353?
Yes, updating Nagios XI Docker Wizard to version 1.1.3 or later will fix the vulnerability.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/nagios
- canonical/nagios nagios xi docker wizard