exploitDog

GHSA-vgwr-86cx-jp7f

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

Nagios XI before version 5.8.5 is vulnerable to local privilege escalation because getprofile.sh does not validate the directory name it receives as an argument.

Nagios XI before version 5.8.5 is vulnerable to local privilege escalation because getprofile.sh does not validate the directory name it receives as an argument.

Ссылки

EPSS

Процентиль: 25%

0.00085

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-269

Связанные уязвимости

CVE-2021-37347

CVSS3: 7.8

nvd

больше 4 лет назад

Nagios XI before version 5.8.5 is vulnerable to local privilege escalation because getprofile.sh does not validate the directory name it receives as an argument.

EPSS

Процентиль: 25%

0.00085

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-269