CVE-2025-67255

Description

In NagiosXI 2026R1.0.1 build 1762361101, Dashboard parameters lack proper filtering, allowing any authenticated user to exploit a SQL Injection vulnerability.

PUBLISHED Reserved 2025-12-08 | Published 2025-12-29 | Updated 2025-12-31 | Assigner mitre

References

www.nagios.org/

github.com/YongYe-Security/NagiosXI/tree/main

cve.org (CVE-2025-67255)

nvd.nist.gov (CVE-2025-67255)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.