CVE-2018-17148

Published: 2019-06-19T18:15Z

Last Modified: 2024-11-21T03:53Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An Insufficient Access Control vulnerability (leading to credential disclosure) in coreconfigsnapshot.php (aka configuration snapshot page) in Nagios XI before 5.5.4 allows remote attackers to gain access to configuration files containing confidential credentials. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt