Critical flaws fixed in Nagios Log Server - Help Net Security

Three critical vulnerabilities affecting Nagios Log Server have been fixed. The vulnerabilities, including a stored XSS, DoS, and information disclosure flaw, could allow privilege escalation, remote code execution, and unauthorized access to API keys. Users are advised to upgrade to the fixed versions 2024R2 or 2024R1.3.2.