| Max CVSS | 7.5 | Min CVSS | 6.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-12847 | 6.3 |
Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for nagios.lock modification before a roo
|
03-10-2019 - 00:03 | 23-08-2017 - 21:29 | |
| CVE-2016-9566 | 7.2 |
base/logging.c in Nagios Core before 4.2.4 allows local users with access to an account in the nagios group to gain root privileges via a symlink attack on the log file. NOTE: this can be leveraged by remote attackers using CVE-2016-9565.
|
25-12-2018 - 11:29 | 15-12-2016 - 22:59 | |
| CVE-2016-9565 | 7.5 |
MagpieRSS, as used in the front-end component in Nagios Core before 4.2.2 might allow remote attackers to read or write to arbitrary files by spoofing a crafted response from the Nagios RSS feed server. NOTE: this vulnerability exists because of an
|
09-10-2018 - 20:00 | 15-12-2016 - 22:59 |