CVE-2022-29269: XSS
First published: Wed Jun 29 2022(Updated: )
In Nagios XI through 5.8.5, in the schedule report function, an authenticated attacker is able to inject HTML tags that lead to the reformatting/editing of emails from an official email address.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nagios Nagios XI | <=5.8.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Nagios XI vulnerability?
The vulnerability ID for this Nagios XI vulnerability is CVE-2022-29269.
What is the severity rating for CVE-2022-29269?
CVE-2022-29269 has a severity rating of 6.5 (medium).
What is the description of CVE-2022-29269?
CVE-2022-29269 is a vulnerability in Nagios XI through 5.8.5 that allows an authenticated attacker to inject HTML tags that lead to the reformatting/editing of emails from an official email address.
How does CVE-2022-29269 affect Nagios XI?
CVE-2022-29269 affects Nagios XI through version 5.8.5.
Is there a fix available for CVE-2022-29269?
Yes, there are fixes available for CVE-2022-29269. Please refer to the references provided for more information.
- collector/nvd-api
- collector/nvd-index
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- vendor/nagios
- canonical/nagios nagios xi
- version/nagios nagios xi/5.8.5