Log server
This hub aggregates every CVE we track for Log server, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.
24
CVEs tracked
4
Critical
7
High
0
In CISA KEV
Severity distribution
MEDIUM13HIGH7CRITICAL4
Monthly trend
0
0
0
0
0
0
0
0
0
1
0
0
0
1
0
15
2
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Log server.
- CVE-2025-34323Nagios Log Server < 2026R1.0.1 Local Privilege Escalation via Writable Scripts and Sudo Rules7.8
- CVE-2025-34322Nagios Log Server < 2026R1.0.1 Authenticated Command Injection via Natural Language Queries7.2
- CVE-2023-7321Nagios Log Server < 2.1.14 XSS via Snapshots Page5.4
- CVE-2023-7323Nagios Log Server < 2024R1 XSS via Create User Function5.4
- CVE-2020-36858Nagios Log Server < 2.1.6 XSS via Create User, Edit User, & Manage Host Lists Pages5.4
- CVE-2025-34298Nagios Log Server < 2024R1.3.2 Set Email Privilege Escalation8.8
- CVE-2025-34277Nagios Log Server < 2024R1.3.1 RCE via Malformed Dashboard ID9.8
- CVE-2025-34272Nagios Log Server < 2024R2.0.3 Non-Empty Default Dashboard Fallback6.5
- CVE-2025-34273Nagios Log Server < 2024R2.0.3 Non-Admin Dashboard Deletion6.5
- CVE-2024-58273Nagios Log Server < 2024R1.0.2 LPE from Apache/Backend Shell User to Root7.8
- CVE-2025-34274Nagios Log Server < 2024R2.0.3 Logstash Process Root Privileges9.8
- CVE-2023-7322Nagios Log Server < 2024R1 Incorrect Authorization Granting Full API Access8.1
- CVE-2016-15049Nagios Log Server < 1.4.2 Dashboards Logs Table XSS5.4
- CVE-2025-34271Nagios Log Server < 2024R2.0.2 Cluster Manager Credential Requests Sent Over Plaintext9.8
- CVE-2025-34270Nagios Log Server < 2024R2.0.2 AD/LDAP Import Password Not Obfuscated4.9
Product normalization is registry-driven with AI assist and human review. How it works