Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-34288

Nagios XI versions prior to 2026R1.1 are vulnerable to local privilege escalation due to an unsafe interaction between sudo permissions and application file permissions. A user‑accessible maintenance script may be executed as root via sudo and includes an application file that is writable by a lower‑privileged user. A local attacker with access to the application account can modify this file to introduce malicious code, which is then executed with elevated privileges when the script is run. Successful exploitation results in arbitrary code execution as the root user.

Published

2025-12-16T23:15:44.720

Last Modified

2025-12-24T17:57:41.600

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.7 (MEDIUM)

Weaknesses

Type: Primary
CWE-732

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	nagios	nagios_xi	≤ 2024	Yes
Application	nagios	nagios_xi	2026	Yes
Application	nagios	nagios_xi	2026	Yes

References

https://www.nagios.com/changelog/nagios-xi/2026r1-1/ Release Notes ([email protected])
https://www.vulncheck.com/advisories/nagios-xi-privilege-escalation-via-writable-php-include-executed-with-sudo Third Party Advisory ([email protected])