11 security vulnerabilities have been discovered in Nagios in the past 5 months. The miscreants have exploited the network monitoring software to run crypto-mining malware, resulting in an average score of 7.8. While Nagios had 22 vulnerabilities in 2020, the average CVE base score has increased by 1.04 in 2021.
Threat actors have been actively targeting the Nagios XI application to exploit the vulnerability CVE-2021-25296, a remote command injection vulnerability impacting Nagios XI version 5.7.5. The end goal is to conduct a cryptojacking attack, thereby deploying the XMRig coin miner on victims’ machines. It is to be noted that the attack is still in the wild.