nagios cron job allows privilege escalation from user nagios to root
CVE-2019-3698

5.7MEDIUM

Key Information:

Vendor: Suse
Status: Suse Linux Enterprise Server 12; Suse Linux Enterprise Server 11; Factory
Vendor: CVE Published:; 28 February 2020

What is CVE-2019-3698?

UNIX Symbolic Link (Symlink) Following vulnerability in the cronjob shipped with nagios of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 11; openSUSE Factory allows local attackers to cause cause DoS or potentially escalate privileges by winning a race. This issue affects: SUSE Linux Enterprise Server 12 nagios version 3.5.1-5.27 and prior versions. SUSE Linux Enterprise Server 11 nagios version 3.0.6-1.25.36.3.1 and prior versions. openSUSE Factory nagios version 4.4.5-2.1 and prior versions.

Affected Version(s)

Factory nagios <= 4.4.5-2.1

SUSE Linux Enterprise Server 11 nagios <= 3.0.6-1.25.36.3.1

SUSE Linux Enterprise Server 12 nagios <= 3.5.1-5.27

References

http://lists.opensuse.org/opensuse-security-announce/2020...

vendor-advisoryx_refsource_SUSE

http://lists.opensuse.org/opensuse-security-announce/2020...

vendor-advisoryx_refsource_SUSE

https://bugzilla.suse.com/show_bug.cgi?id=1156309

x_refsource_CONFIRM

CVSS V3.1

Score:

5.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 28, 2020
Vulnerability Reserved
Jan 3, 2019

Credit

Matthias Gerstner

Suse

What is CVE-2019-3698?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit