netdata is vulnerable to Remote Code Execution (RCE). An attacker with the ability to establish a streaming connection can execute arbitrary commands on the targeted Netdata agent when an alert is triggered. This can be done by providing a specially crafted registry_hostname
as part of the health data that is streamed to a Netdata (parent) agent. The commands are executed as the user running the Netdata Agent.
CPE | Name | Operator | Version |
---|---|---|---|
netdata:sid | eq | 1.29.3-3 | |
netdata:sid | eq | 1.19.0-4 | |
netdata:sid | eq | 1.31.0-3 | |
netdata:sid | eq | 1.29.3-3 | |
netdata:sid | eq | 1.19.0-4 | |
netdata:sid | eq | 1.31.0-3 |