Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2020-28911
HistoryMay 24, 2021 - 12:44 p.m.

CVE-2020-28911

2021-05-2412:44:30
mitre
www.cve.org
5
nagios fusion
access control
low-privileged users
password extraction
test server command
ajaxhelper.php
cve-2020-28911

AI Score

7.2

Confidence

High

EPSS

0.022

Percentile

89.7%

JSON

Incorrect Access Control in Nagios Fusion 4.1.8 and earlier allows low-privileged authenticated users to extract passwords used to manage fused servers via the test_server command in ajaxhelper.php.

Related

cve 1
nvd 1
prion 1
nessus 1
thn 1
cve
cve
CVE-2020-28911
2021-05-24 13:15:08
nvd
nvd
CVE-2020-28911
2021-05-24 13:15:08
prion
prion
Improper access control
2021-05-24 13:15:00
nessus
nessus
Nagios Fusion < 4.1.9 Multiple Vulnerabilities
2021-05-28 00:00:00
thn
thn
Details Disclosed On Critical Flaws Affecting Nagios IT Monitoring Software
2021-05-24 07:39:00

AI Score

7.2

Confidence

High

EPSS

0.022

Percentile

89.7%

JSON
Related for CVELIST:CVE-2020-28911
cve1nvd1prion1nessus1thn1