CVE-2025-44824 | Nagios Log Server up to 2024R1.3.1 Elasticsearch Service stop?subsystem=elasticsearch authorization

A vulnerability was found in Nagios Log Server up to 2024R1.3.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /nagioslogserver/index.php/api/system/stop?subsystem=elasticsearch of the component Elasticsearch Service. Such manipulation leads to incorrect authorization.

This vulnerability is documented as CVE-2025-44824. The attack can be executed remotely. There is not any exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More