CVE-2025-34274CRITICAL 9.8EPSS p74.7%

CVE-2025-34274CVE-2025-34274

Description

Nagios Log Server versions prior to 2024R2.0.3 contain an execution with unnecessary privileges vulnerability as it runs its embedded Logstash process as the root user. If an attacker is able to compromise the Logstash process - for example by exploiting an insecure plugin, pipeline configuration injection, or a vulnerability in input parsing - the attacker could execute code with root privileges, resulting in full system compromise. The Logstash service has been altered to run as the lower-privileged 'nagios' user to reduce this risk associated with a network-facing service that can accept untrusted input or load third-party components.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS1.73% probability of exploitation · percentile 74.7% · 2026-06-19T12:03:05Z
Published2025-10-30
Last modified2025-11-06

Underlying weaknesses· 1

CWE-250

References

  1. https://www.nagios.com/changelog/#log-server
  2. https://www.nagios.com/products/security/#log-server-2024R2
  3. https://www.vulncheck.com/advisories/nagios-log-server-logstash-process-root-privileges

1

TypeTargetConfidenceTier
WeaknessExecution with Unnecessary Privilegescwe-2500%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-34298
CVE
CVE-2025-34277
CVE
CVE-2025-34271
CVE
CVE-2025-44823
CVE
CVE-2025-34284
CVE
CVE-2025-29471
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.