Pandora FMS v7.0NG.760 and below allows an improper access control in Configuration (Credential store) where a user with the role of Operator (Write) could create, delete, view existing keys which are outside the intended role.
Metrics
Affected Vendors & Products
References
History
Tue, 17 Sep 2024 02:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Title | Improper Access Control in Configuration (Credential store) | Improper Access Control in Configuration (Credential store) |
MITRE
Status: PUBLISHED
Assigner: ARTICA
Published: 2022-08-01T12:44:04.444400Z
Updated: 2024-09-17T02:31:29.597Z
Reserved: 2022-02-28T00:00:00
Link: CVE-2022-26308
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-08-01T13:15:10.257
Modified: 2024-11-21T06:53:43.783
Link: CVE-2022-26308
Redhat
No data.