CVE-2019-3698

Опубликовано: 28 фев. 2020

Источник: ubuntu

Приоритет: medium

CVSS2: 6.9

CVSS3: 5.7

Описание

UNIX Symbolic Link (Symlink) Following vulnerability in the cronjob shipped with nagios of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 11; openSUSE Factory allows local attackers to cause cause DoS or potentially escalate privileges by winning a race. This issue affects: SUSE Linux Enterprise Server 12 nagios version 3.5.1-5.27 and prior versions. SUSE Linux Enterprise Server 11 nagios version 3.0.6-1.25.36.3.1 and prior versions. openSUSE Factory nagios version 4.4.5-2.1 and prior versions.

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	DNE
eoan	not-affected	code not present
esm-apps/bionic	not-affected	code not present
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE
upstream	needs-triage

Показывать по

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	DNE
eoan	DNE
esm-apps/bionic	not-affected	code not present
esm-infra-legacy/trusty	DNE
esm-infra/xenial	not-affected	code not present
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE
upstream	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2019-3698

6.9 Medium

CVSS2

5.7 Medium

CVSS3

Связанные уязвимости

CVE-2019-3698

CVSS3: 5.7

nvd

почти 6 лет назад

GHSA-q8m8-7jgv-237q

github

больше 3 лет назад

SUSE-SU-2024:1629-1

suse-cvrf

больше 1 года назад

Security update for SUSE Manager Client Tools Beta

openSUSE-SU-2020:0500-1

suse-cvrf

почти 6 лет назад

Security update for nagios

6.9 Medium

CVSS2

5.7 Medium

CVSS3

CVE-2019-3698

Описание

Пакет icinga

Пакет nagios3

Ссылки на источники

Связанные уязвимости