paessler

Top products

The 15 most recently published vulnerabilities affecting paessler.

• CVE-2025-67835Paessler PRTG Network Monitor before 25.4.114 allows Denial-of-Service (DoS) by an authenticated attacker via the Notification Contacts functionality.6.5Jan 14, 2026
• CVE-2025-67834Paessler PRTG Network Monitor before 25.4.114 allows XSS by an unauthenticated attacker via the filter parameter.5.4Jan 14, 2026
• CVE-2025-67833Paessler PRTG Network Monitor before 25.4.114 allows XSS by an unauthenticated attacker via the tag parameter.6.1Jan 14, 2026
• CVE-2024-12833Paessler PRTG Network Monitor SNMP Cross-Site Scripting Authentication Bypass Vulnerability6.1Feb 11, 2025
• CVE-2023-51630Paessler PRTG Network Monitor Cross-Site Scripting Authentication Bypass Vulnerability6.1Feb 8, 2024
• CVE-2023-31452A cross-site request forgery (CSRF) token bypass was identified in PRTG 23.2.84.1566 and earlier versions that allows remote attackers to perform actions with the permissions of a victim user, prov...8.8Aug 9, 2023
• CVE-2023-31450A path traversal vulnerability was identified in the SQL v2 sensors in PRTG 23.2.84.1566 and earlier versions where an authenticated user with write permissions could trick the SQL v2 sensors into ...4.7Aug 9, 2023
• CVE-2023-31449A path traversal vulnerability was identified in the WMI Custom sensor in PRTG 23.2.84.1566 and earlier versions where an authenticated user with write permissions could trick the WMI Custom sensor...4.7Aug 9, 2023
• CVE-2023-31448A path traversal vulnerability was identified in the HL7 sensor in PRTG 23.2.84.1566 and earlier versions where an authenticated user with write permissions could trick the HL7 sensor into behaving...4.7Aug 9, 2023
• CVE-2023-32782A command injection was identified in PRTG 23.2.84.1566 and earlier versions in the Dicom C-ECHO sensor where an authenticated user with write permissions could abuse the debug option to write new ...7.2Aug 9, 2023
• CVE-2023-32781A command injection vulnerability was identified in PRTG 23.2.84.1566 and earlier versions in the HL7 sensor where an authenticated user with write permissions could abuse the debug option to write...7.2Aug 9, 2023
• CVE-2022-35739PRTG Network Monitor through 22.2.77.2204 does not prevent custom input for a device’s icon, which can be modified to insert arbitrary content into the style tag for that device. When the device ...5.3Oct 25, 2022
• CVE-2021-29643PRTG Network Monitor before 21.3.69.1333 allows stored XSS via an unsanitized string imported from a User Object in a connected Active Directory instance.5.4Sep 13, 2021
• CVE-2021-34547PRTG Network Monitor 20.1.55.1775 allows /editsettings CSRF for user account creation.4.3Jun 10, 2021
• CVE-2021-27220An issue was discovered in PRTG Network Monitor before 21.1.66.1623. By invoking the screenshot functionality with prepared context paths, an attacker is able to verify the existence of certain fil...5.3Mar 31, 2021