Fusion Security Vulnerabilities and Issues — Fusion CVE List

Lucene search

NagiosFusion

4 matches found

CVE•added 2021/05/24 1:15 p.m.•48 views

CVE-2020-28904

Execution with Unnecessary Privileges in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation as nagios via installation of a malicious component containing PHP code.

9.8CVSS9.5AI score0.0026EPSS

CVE•added 2021/05/24 1:15 p.m.•47 views

CVE-2020-28906

Incorrect File Permissions in Nagios XI 5.7.5 and earlier and Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation to root. Low-privileged users are able to modify files that are included (aka sourced) by scripts executed by root.

9CVSS9AI score0.00279EPSS

CVE•added 2021/05/24 1:15 p.m.•40 views

CVE-2020-28908

Command Injection in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation to nagios.

9.8CVSS9.7AI score0.05955EPSS

CVE•added 2021/05/24 1:15 p.m.•36 views

CVE-2020-28909

Incorrect File Permissions in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation to root via modification of scripts. Low-privileges users are able to modify files that can be executed by sudo.

9CVSS9.2AI score0.00307EPSS