Pandora FMS v7.0NG.760 and below allows an improper access control in Configuration (Credential store) where a user with the role of Operator (Write) could create, delete, view existing keys which are outside the intended role.
History

Tue, 17 Sep 2024 02:45:00 +0000

Type Values Removed Values Added
Title Improper Access Control in Configuration (Credential store) Improper Access Control in Configuration (Credential store)

cve-icon MITRE

Status: PUBLISHED

Assigner: ARTICA

Published: 2022-08-01T12:44:04.444400Z

Updated: 2024-09-17T02:31:29.597Z

Reserved: 2022-02-28T00:00:00

Link: CVE-2022-26308

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-08-01T13:15:10.257

Modified: 2024-11-21T06:53:43.783

Link: CVE-2022-26308

cve-icon Redhat

No data.