Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-5027
HistoryNov 10, 2008 - 3:23 p.m.

CVE-2008-5027

2008-11-1015:23:00
CWE-264
[email protected]
web.nvd.nist.gov
28
nagios
op5 monitor
cve-2008-5027
remote execution
authorization bypass
security vulnerability

6.1 Medium

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.032 Low

EPSS

Percentile

91.0%

JSON

The Nagios process in (1) Nagios before 3.0.5 and (2) op5 Monitor before 4.0.1 allows remote authenticated users to bypass authorization checks, and trigger execution of arbitrary programs by this process, via an (a) custom form or a (b) browser addon.

Related

prion 1
nessus 8
securityvulns 3
ubuntu 3
openvas 21
freebsd 1
fedora 1
ubuntucve 2
gentoo 1
prion
prion
Authorization
2008-11-10 15:23:00
nessus
nessus
FreeBSD : nagios -- web interface privilege escalation vulnerability (d4a358d3-e09a-11dd-a765-0030843d3802)
2009-01-12 00:00:00
Ubuntu 6.06 LTS : nagios vulnerability (USN-698-1)
2009-04-23 00:00:00
Fedora 10 : nagios-3.0.5-1.fc10 (2008-10323)
2009-04-23 00:00:00
securityvulns
securityvulns
[USN-698-1] Nagios vulnerability
2008-12-23 00:00:00
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2008-12-26 00:00:00
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2008-12-23 00:00:00
ubuntu
ubuntu
Nagios vulnerability
2008-12-22 00:00:00
Nagios3 vulnerabilities
2008-12-22 00:00:00
Nagios vulnerabilities
2008-12-23 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-698-1)
2009-03-23 00:00:00
Nagios Web Interface < 3.0.5 Privilege Escalation Vulnerability
2009-05-06 00:00:00
Ubuntu Update for nagios vulnerability USN-698-1
2009-03-23 00:00:00
freebsd
freebsd
nagios -- web interface privilege escalation vulnerability
2008-11-06 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: nagios-3.0.5-1.fc10
2008-11-26 06:19:44
ubuntucve
ubuntucve
CVE-2008-6373
2009-03-02 00:00:00
CVE-2008-5027
2008-11-10 00:00:00
gentoo
gentoo
Nagios: Execution of arbitrary code
2009-07-19 00:00:00

6.1 Medium

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.032 Low

EPSS

Percentile

91.0%

JSON
Related for CVE-2008-5027
prion1nessus8securityvulns3ubuntu3openvas21freebsd1fedora1ubuntucve2gentoo1