CVE-2025-44823 | Nagios Log Server up to 2024R1.3.1 Administrative API Key get_users exposure of sensitive system information to an unauthorized control sphere (EDB-52177)

A vulnerability has been found in Nagios Log Server up to 2024R1.3.1 and classified as problematic. This affects an unknown function of the file /nagioslogserver/index.php/api/system/get_users of the component Administrative API Key Handler. The manipulation leads to exposure of sensitive system information to an unauthorized control sphere.

This vulnerability is listed as CVE-2025-44823. The attack may be initiated remotely. In addition, an exploit is available.

The affected component should be upgraded.VulDB Recent EntriesRead More