Nagios Log Server < 2024R2.0.2 Cluster Manager Credential Requests Sent...

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/SC:N

Description

Nagios Log Server versions prior to 2024R2.0.2 contain a vulnerability in the cluster manager component when requesting sensitive credentials from peer nodes over an unencrypted channel even when SSL/TLS is enabled in the product configuration. As a result, an attacker positioned on the network path can intercept credentials in transit. Captured credentials could allow the attacker to authenticate as a cluster node or service account, enabling further unauthorized access, lateral movement, or system compromise.

AI Analysis

Unencrypted cluster manager credential requests allow attackers to intercept credentials and gain unauthorized access

Basic Information

ID CVE-2025-34271

Source VulnCheck

Published Oct 30, 2025 at 21:22

Affected Product

Vendor Nagios

Product Log Server

Affected Versions Nagios Log Server 0

CWE Classification

CWE-319

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor Nagios

Product Nagios Log Server

Version < 2024R2.0.2

References

{
    "lastseen": "",
    "description": "Nagios Log Server versions prior to\u00a02024R2.0.2 contain a vulnerability in the cluster manager component when requesting sensitive credentials from peer nodes over an unencrypted channel even when SSL/TLS is enabled in the product configuration. As a result, an attacker positioned on the network path can intercept credentials in transit. Captured credentials could allow the attacker to authenticate as a cluster node or service account, enabling further unauthorized access, lateral movement, or system compromise.",
    "published": "2025-10-30T21:22:51.043Z",
    "modified": "2025-10-30T21:22:51.043Z",
    "type": "cve",
    "title": "Nagios Log Server < 2024R2.0.2 Cluster Manager Credential Requests Sent Over Plaintext",
    "source": "VulnCheck",
    "references": "https://www.nagios.com/products/security/#log-server-2024R2\nhttps://www.nagios.com/changelog/#log-server\nhttps://www.vulncheck.com/advisories/nagios-log-server-cluster-manager-credential-requests-sent-over-plaintext",
    "id": "CVE-2025-34271",
    "bulletinFamily": "",
    "cwe": [
        "CWE-319"
    ],
    "cvelist": null,
    "sourceData": "Nagios Log Server 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/SC:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Log Server",
    "version": "0",
    "vendor": "Nagios",
    "ai_description": "Unencrypted cluster manager credential requests allow attackers to intercept credentials and gain unauthorized access",
    "ai_severity": "High",
    "ai_vendor": "Nagios",
    "ai_product": "Nagios Log Server",
    "ai_version": "< 2024R2.0.2",
    "ai_score": 8.7
}

Nagios Log Server < 2024R2.0.2 Cluster Manager Credential Requests Sent Over Plaintext_CVE-2025-34271