CVE-2018-10737

Published: 16 May 2018

A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/logbook.php txtSearch parameter.

Priority

CVSS 3 base score: 7.2

Status

Package	Release	Status
nagios3 Launchpad, Ubuntu, Debian	Upstream	Needs triage




	Ubuntu 18.04 LTS (Bionic Beaver)	Not vulnerable (file not present)
	Ubuntu 16.04 ESM (Xenial Xerus)	Not vulnerable (file not present)
	Ubuntu 14.04 ESM (Trusty Tahr)	Does not exist (trusty was not-affected [file not present])

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.