QwikSec

Security Database

CVE

CWE

Training

CVE-2021-33178

Published: Oct 14, 2021

Modified: Nov 3, 2025

PUBLISHED

Description

The Manage Backgrounds functionality within NagVis versions prior to 1.9.29 is vulnerable to an authenticated path traversal vulnerability. Exploitation of this results in a malicious actor having the ability to arbitrarily delete files on the local system.

Vendor	Product	Versions
NagVis	NagVis	affected `<1.9.29`

Weaknesses (CWE)

References

https://www.synopsys.com/blogs/software-security/cyrc-advisory-nagios-xi

x_refsource_MISC

https://nagvis.org/downloads/changelog/1.9.29

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.