Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2020/07/27 12:0 a.m.27 views

GLSA-202007-31 : Icinga: Root privilege escalation

The remote host is affected by the vulnerability described in GLSA-202007-31 Icinga: Root privilege escalation It was discovered that Icingas installed files have insecure permissions, possibly allowing root privilege escalation. Impact : A local attacker could escalate privileges to root...

7.8CVSS7.5AI score0.00311EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/11/18 6:29 p.m.24 views

CVE-2017-16882

Icinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration options in which this file is owned by a non-root account and similarly can have etc/icinga.cfg owned by a non-root account, which allows local users to gain privileges by leveraging access to this non-roo...

7.8CVSS7.1AI score0.00311EPSS
Exploits0References2
OSV
OSV
added 2017/11/18 6:29 p.m.27 views

CVE-2017-16882

Icinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration options in which this file is owned by a non-root account and similarly can have etc/icinga.cfg owned by a non-root account, which allows local users to gain privileges by leveraging access to this non-roo...

7.8CVSS6.7AI score
Exploits0References2
CVE
CVE
added 2017/11/18 6:0 p.m.68 views

CVE-2017-16882

Technical specifics for CVE-2017-16882 are not provided in the connected documents. The initial entry notes a local privilege escalation in Icinga Core up to v1.14.0 via non-root-owned bin/icinga and icinga.cfg, with related components mentioned. Monitor for updates.

7.8CVSS7.6AI score0.00311EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/11/18 6:0 p.m.30 views

CVE-2017-16882

Icinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration options in which this file is owned by a non-root account and similarly can have etc/icinga.cfg owned by a non-root account, which allows local users to gain privileges by leveraging access to this non-roo...

7.7AI score0.00311EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2017/11/18 6:0 p.m.40 views

CVE-2017-16882

Removed by vendor...

7.8CVSS7.8AI score0.00311EPSS
Exploits0
Rows per page
Query Builder