Description
Creation of a Temporary Directory with Insecure Permissions in Nagios XI 5.7.5 and earlier allows for Privilege Escalation via creation of symlinks, which are mishandled in getprofile.sh.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2020-21301 | Creation of a Temporary Directory with Insecure Permissions in Nagios XI 5.7.5 and earlier allows for Privilege Escalation via creation of symlinks, which are mishandled in getprofile.sh. |
References
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-04T16:41:00.310Z
Reserved: 2020-11-17T00:00:00.000Z
Link: CVE-2020-28910
No data.
Status : Modified
Published: 2021-05-24T13:15:08.167
Modified: 2026-06-17T03:10:48.753
Link: CVE-2020-28910
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-732
Incorrect Permission Assignment for Critical Resource
EUVD