Unrated severityNVD Advisory· Published May 24, 2021· Updated Aug 4, 2024
CVE-2020-28910
CVE-2020-28910
Description
Creation of a Temporary Directory with Insecure Permissions in Nagios XI 5.7.5 and earlier allows for Privilege Escalation via creation of symlinks, which are mishandled in getprofile.sh.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Nagios/XIdescription
Patches
Vulnerability mechanics
References
3- packetstormsecurity.com/files/162783/Nagios-XI-Fusion-Privilege-Escalation-Cross-Site-Scripting-Code-Execution.htmlmitrex_refsource_MISC
- skylightcyber.com/2021/05/20/13-nagios-vulnerabilities-7-will-shock-you/mitrex_refsource_MISC
- www.nagios.com/downloads/nagios-xi/change-log/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.