CVE-2025-67254

NagiosXI 2026R1.0.1 build 1762361101 is vulnerable to Directory Traversal in /admin/coreconfigsnapshots.php.

high 7.5 CVSS 3.1

Published: Dec 29, 2025

Modified: Jan 15, 2026

Vendor: Nagios

Product: Nagios Xi

Versions: 2026

Description

NagiosXI 2026R1.0.1 build 1762361101 is vulnerable to Directory Traversal in /admin/coreconfigsnapshots.php.

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N