EUVD-2017-8053

Malware in sbrugna...

SUSE CVE-2017-16882

Icinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration options in which this file is owned by a non-root account and similarly can have etc/icinga.cfg owned by a non-root account, which allows local users to gain privileges by leveraging access to this non-roo...

Icinga Core Elevation of Privilege Vulnerability

Icinga Core is an enterprise-grade open source monitoring system from the Icinga project. The system can monitor network resources , find network errors and generate performance data reports . An elevation of privilege vulnerability exists in Icinga Core 1.14.0 and earlier versions. A local...

CVE-2017-16882

Icinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration options in which this file is owned by a non-root account and similarly can have etc/icinga.cfg owned by a non-root account, which allows local users to gain privileges by leveraging access to this non-roo...

CVE-2017-16882

Icinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration options in which this file is owned by a non-root account and similarly can have etc/icinga.cfg owned by a non-root account, which allows local users to gain privileges by leveraging access to this non-roo...

CVE-2017-16882

Icinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration options in which this file is owned by a non-root account and similarly can have etc/icinga.cfg owned by a non-root account, which allows local users to gain privileges by leveraging access to this non-roo...

Design/Logic Flaw

Icinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration options in which this file is owned by a non-root account and similarly can have etc/icinga.cfg owned by a non-root account, which allows local users to gain privileges by leveraging access to this non-roo...

CVE-2017-16882

Removed by vendor...

CVE-2017-16882

Icinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration options in which this file is owned by a non-root account and similarly can have etc/icinga.cfg owned by a non-root account, which allows local users to gain privileges by leveraging access to this non-roo...

CVE-2017-16882

Technical specifics for CVE-2017-16882 are not provided in the connected documents. The initial entry notes a local privilege escalation in Icinga Core up to v1.14.0 via non-root-owned bin/icinga and icinga.cfg, with related components mentioned. Monitor for updates.