exploitDog

CVE-2019-20327

Опубликовано: 16 янв. 2020

Источник: nvd

CVSS3: 7.8

CVSS2: 7.2

EPSS Низкий

Описание

Insecure permissions in cwrapper_perl in Centreon Infrastructure Monitoring Software through 19.10 allow local attackers to gain privileges. (cwrapper_perl is a setuid executable allowing execution of Perl scripts with root privileges.)

Ссылки

https://gist.github.com/Diefunction/9237f46b8659a65ab08de8ec9c258139
Broken Link
Third Party Advisory
https://www.centreon.com/en/
Product
https://gist.github.com/Diefunction/9237f46b8659a65ab08de8ec9c258139
Broken Link
Third Party Advisory
https://www.centreon.com/en/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:centreon:centreon:*:*:*:*:*:*:*:*

Версия до 19.10 (включая)

EPSS

Процентиль: 30%

0.00113

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-732

Связанные уязвимости

GHSA-p43q-wjv5-rf63

github

больше 3 лет назад

Insecure permissions in cwrapper_perl in Centreon Infrastructure Monitoring Software through 19.10 allow local attackers to gain privileges. (cwrapper_perl is a setuid executable allowing execution of Perl scripts with root privileges.)

EPSS

Процентиль: 30%

0.00113

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-732