Nagios Log Server Flaws Expose API Keys

Two significant vulnerabilities have been discovered in Nagios Log Server, affecting versions prior to 2024R1.3.2. The most critical flaw, CVE-2025-44823, allows any authenticated user to retrieve administrative API keys in cleartext, potentially leading to a full system compromise. A second high-severity vulnerability, CVE-2025-44824, enables users with only read-only access to shut down the Elasticsearch service, causing a denial of service. These flaws expose critical monitoring infrastructure to unauthorized access and disruption. Administrators are urged to upgrade to the patched version immediately and rotate all API keys as a precaution.

Latest mentioned: 10-08

Earliest mentioned: 10-08

Sources

securityonline.info gbhackers.com cybersum.net

Also Read

Cyber Espionage Campaign Targets Diplomats with PlugX Malware

A threat actor known as UNC6384 has been targeting European diplomatic entities in a cyber-espionage campaign since September. The group exploits a high-severity Windows vulnerability and uses refined social engineering tactics to deliver PlugX malware. The campaign, which initially targeted entities in specific regions, is expanding across the broader diplomatic community. The attack chain involves spear-phishing emails leading to malicious LNK files that exploit the vulnerability and execute obfuscated PowerShell commands. Researchers recommend organizations review and block command-and-control infrastructures and conduct security awareness training to mitigate such attacks.

11-01Read more →