Insufficient Verification of Data Authenticity in Nagios Fusion 4.1.8 and earlier and Nagios XI 5.7.5 and earlier allows for Escalation of Privileges or Code Execution as root via vectors related to an untrusted update package to upgrade_to_latest.sh.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-05-24T12:43:22

Updated: 2024-08-04T16:40:59.950Z

Reserved: 2020-11-17T00:00:00

Link: CVE-2020-28900

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-05-24T13:15:07.617

Modified: 2024-11-21T05:23:15.077

Link: CVE-2020-28900

cve-icon Redhat

No data.