CVE-2021-40343

2021-10-2610:51:53

mitre

www.cve.org

nagios xi

file permissions

user privileges

cve-2021-40343

AI Score

7.8

Confidence

High

EPSS

0.002

Percentile

52.9%

JSON

An issue was discovered in Nagios XI 5.8.5. Insecure file permissions on the nagios_unbundler.py file allow the nagios user to elevate their privileges to the root user.

References

assets.nagios.com/downloads/nagiosxi/CHANGES-5.TXT

synacktiv.com

www.synacktiv.com/sites/default/files/2021-10/Nagios_XI_multiple_vulnerabilities_0.pdf