Privilege Escalation Vulnerability in Nagios XI and Nagios Fusion
CVE-2020-28906
8.8HIGH
What is CVE-2020-28906?
A security issue exists in Nagios XI versions 5.7.5 and earlier, as well as Nagios Fusion versions 4.1.8 and earlier, involving incorrect file permissions. This vulnerability permits low-privileged users to modify files utilized by scripts running with root privileges, leading to potential privilege escalation. If exploited, it could allow an unauthorized user to gain elevated access to system resources, providing them unauthorized control over the affected systems.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
References
CVSS V3.1
Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved