What is CVE-2024-13986?

CVE-2024-13986 is a vulnerability in Nagios Xi, classified under Unrestricted Upload of File with Dangerous Type. Published 2025-08-28.

Is CVE-2024-13986 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Arbitrary file upload in Nagios Xi

CVE-2024-13986

Nagios XI < 2024R1.3.2 contains a remote code execution vulnerability by chaining two flaws: an arbitrary file upload and a path traversal in the Core Config Snapshots interface. The issue arises from insufficient validation of file paths…

Vulnerability class: Unrestricted File Upload

EPSS: 0.024 (85.2th percentile) — read the EPSS interpretation.

Affected products

Nagios Xi — versions 0

Weakness classification (CWE)

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

theyhack.me/Nagios-XI-Authenticated-RCE (technical-description, exploit)
www.nagios.com/changelog/nagios-xi/ (vendor-advisory, patch)
www.nagios.com/products/security/ (vendor-advisory, patch)
www.vulncheck.com/advisories/nagios-xi-authenticated-arbitrary-file-upload-path… (third-party-advisory)

Frequently asked questions

What is CVE-2024-13986?: CVE-2024-13986 is a vulnerability in Nagios Xi, classified under Unrestricted Upload of File with Dangerous Type. Published 2025-08-28.
Is CVE-2024-13986 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.