rpm package
suse/nagios&distro=SUSE Linux Enterprise Server 11 SP4
pkg:rpm/suse/nagios&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-8641 | Med | 6.7 | < 3.0.6-1.25.36.3.1 | 3.0.6-1.25.36.3.1 | Aug 1, 2018 | A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when creating necessary files and insecurely changing the ownership afterwards. It's possible for the local attacker to create symbolic links before the files are to be created and possib | |
| CVE-2016-10089 | Hig | 7.8 | < 3.0.6-1.25.36.3.1 | 3.0.6-1.25.36.3.1 | Feb 15, 2017 | Nagios 4.3.2 and earlier allows local users to gain root privileges via a hard link attack on the Nagios init script file, related to CVE-2016-8641. |
- affected < 3.0.6-1.25.36.3.1fixed 3.0.6-1.25.36.3.1
A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when creating necessary files and insecurely changing the ownership afterwards. It's possible for the local attacker to create symbolic links before the files are to be created and possib
- affected < 3.0.6-1.25.36.3.1fixed 3.0.6-1.25.36.3.1
Nagios 4.3.2 and earlier allows local users to gain root privileges via a hard link attack on the Nagios init script file, related to CVE-2016-8641.