Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2025-34280
PUBLISHED
More InfoOfficial Page
Assigner-VulnCheck
Assigner Org ID-83251b91-4cc7-4094-a5c7-464a1b83ea10
View Known Exploited Vulnerability (KEV) details
Published At-30 Oct, 2025 | 21:27
Updated At-17 Nov, 2025 | 21:36
Rejected At-
▼CVE Numbering Authority (CNA)
Nagios Network Analyzer < 2024R2.0.1 RCE in LDAP Certificate Removal Function

Nagios Network Analyzer versions prior to 2024R2.0.1 contain a vulnerability in the LDAP certificate management functionality whereby the certificate removal operation fails to apply adequate input sanitation. An authenticated administrator can trigger command execution on the underlying host in the context of the web application service, resulting in remote code execution with the service's privileges.

Affected Products
Vendor
Nagios Enterprises, LLCNagios
Product
Network Analyzer
Modules
  • LDAP certificate management
Default Status
unaffected
Versions
Affected
  • From 0 before 2024R2.0.1 (custom)
Problem Types
TypeCWE IDDescription
CWECWE-78CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Type: CWE
CWE ID: CWE-78
Description: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Metrics
VersionBase scoreBase severityVector
4.08.6HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Version: 4.0
Base score: 8.6
Base severity: HIGH
Vector:
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Metrics Other Info
Impacts
CAPEC IDDescription
CAPEC-88CAPEC-88 OS Command Injection
CAPEC ID: CAPEC-88
Description: CAPEC-88 OS Command Injection
Solutions

Nagios addresses this vulnerability as "Nagios Network Analyzer was vulnerable to remote code execution through the function used to remove an LDAP certificate" and "Fixed a security vulnerability while removing a AD/LDAP certificate."

Configurations
Workarounds
Exploits
Credits
finder
Haoyu Li
finder
Shiwu Zhao
finder
rmb122
finder
rry
finder
Xingchen Chen
finder
Ru Tan
finder
Qixu Liu
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.nagios.com/products/security/#network-analyzer
vendor-advisory
patch
https://www.nagios.com/changelog/nagios-network-analyzer/
release-notes
patch
https://www.vulncheck.com/advisories/nagios-network-analyzer-rce-in-ldap-certificate-removal-function
third-party-advisory
Hyperlink: https://www.nagios.com/products/security/#network-analyzer
Resource:
vendor-advisory
patch
Hyperlink: https://www.nagios.com/changelog/nagios-network-analyzer/
Resource:
release-notes
patch
Hyperlink: https://www.vulncheck.com/advisories/nagios-network-analyzer-rce-in-ldap-certificate-removal-function
Resource:
third-party-advisory
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found