CVE-2022-29270
First published: Wed Jun 29 2022(Updated: )
In Nagios XI through 5.8.5, it is possible for a user without password verification to change his e-mail address.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nagios Nagios XI | <=5.8.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-29270?
CVE-2022-29270 is a vulnerability in Nagios XI through 5.8.5 that allows a user without password verification to change their e-mail address.
How severe is CVE-2022-29270?
CVE-2022-29270 has a severity rating of 4.3 (medium).
What is the affected software of CVE-2022-29270?
CVE-2022-29270 affects Nagios XI versions up to and including 5.8.5.
How can I fix CVE-2022-29270?
To fix CVE-2022-29270, upgrade Nagios XI to a version beyond 5.8.5.
Where can I find more information about CVE-2022-29270?
You can find more information about CVE-2022-29270 at the following references: [Link 1] [Link 2] [Link 3]
- collector/nvd-api
- collector/nvd-index
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- vendor/nagios
- canonical/nagios nagios xi
- version/nagios nagios xi/5.8.5