CVE-2020-6586 is a vulnerability in Nagios
Published on March 16, 2020

Nagios Log Server 2.1.3 allows XSS by visiting /profile and entering a crafted name field that is mishandled on the /admin/users page. Any malicious user with limited access can store an XSS payload in his Name. When any admin views this, the XSS is triggered.

NVD

Products Associated with CVE-2020-6586

Want to know whenever a new CVE is published for Nagios? stack.watch will email you.

Nagios

Exploit Probability

EPSS

7.33%

Percentile

91.80%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-6586 is a vulnerability in NagiosPublished on March 16, 2020

Products Associated with CVE-2020-6586

Exploit Probability

CVE-2020-6586 is a vulnerability in Nagios
Published on March 16, 2020