Описание
Nagios XI before version 5.8.5 is vulnerable to local privilege escalation because xi-sys.cfg is being imported from the var directory for some scripts with elevated permissions.
Ссылки
- Vendor Advisory
- Release NotesVendor Advisory
- Vendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.8.5 (исключая)
cpe:2.3:a:nagios:nagios_xi:*:*:*:*:*:*:*:*
EPSS
Процентиль: 5%
0.00023
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-269
Связанные уязвимости
github
больше 3 лет назад
Nagios XI before version 5.8.5 is vulnerable to local privilege escalation because xi-sys.cfg is being imported from the var directory for some scripts with elevated permissions.
EPSS
Процентиль: 5%
0.00023
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-269