HIGH🇬🇧 English

CVE-2025-34323

CVSS 8.5v4.0pub. 2025-11-17upd. 2025-11-26

Nagios Log Server versions prior to 2026R1.0.1 are vulnerable to local privilege escalation due to a combination of sudo misconfiguration and group-writable application directories. The 'www-data' user is a member of the 'nagios' group, which has write access to '/usr/local/nagioslogserver/scripts', while several scripts in this directory are owned by root and may be executed via sudo without a password. A local attacker running as 'www-data' can move one of these root-owned scripts to a backup name and create a replacement script with attacker-controlled content at the original path, then invoke it with sudo. This allows arbitrary commands to be executed with root privileges, providing full compromise of the underlying operating system.

oryginał EN
CVSS Vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Nagios Log Server

    APP
    Nagios
    2026< 2026
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
LPE
CWE
Referencje

Powiązane podatności

CVE-2025-34277CRITICAL9.4PL ✓ten sam produkt

RCE w Nagios Log Server — code injection przez malformed dashboard ID

CVE-2025-34274CRITICAL9.3PL ✓ten sam produkt

Nagios Log Server: uruchamianie Logstash z uprawnieniami root (privilege escalation)

CVE-2025-44823CRITICAL9.9PL ✓ten sam produkt

Nagios Log Server: ujawnienie kluczy API w postaci jawnej przez authenticated użytkownika

CVE-2025-34322HIGH8.6ten sam produkt

Nagios Log Server versions prior to 2026R1.0.1 contain an authenticated command injection vulnerability in the...

CVE-2023-7322HIGH8.7ten sam produkt

Nagios Log Server versions prior to 2024R1 contain an incorrect authorization vulnerability. Users who lacked ...

CVE-2025-34323 — HIGH 8.5 | CVEbaza.pl