Detections
Analytics
Nagios Fusion < 4.1.9 Multiple Vulnerabilities
critical Nessus Plugin ID 150054
Language:
Synopsis
The remote host has a web application affected by multiple vulnerabilities.Description
According to the self-reported version of Nagios Fusion, the remote host is affected by multiple vulnerabilities, including the following:- Insufficient Verification of Data Authenticity in Nagios Fusion 4.1.8 and earlier and Nagios XI 5.7.5 and earlier allows for Escalation of Privileges or Code Execution as root via vectors related to an untrusted update package to upgrade_to_latest.sh. (CVE-2020-28900)
- Command Injection in Nagios Fusion 4.1.8 and earlier allows Privilege Escalation from apache to root in cmd_subsys.php. (CVE-2020-28902)
- Command Injection in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation or Code Execution as root via vectors related to corrupt component installation in cmd_subsys.php. (CVE-2020-28901)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Nagios Fusion 4.1.9 or laterSee Also
Plugin Details
Severity: Critical
ID: 150054
File Name: nagiosfusion_4_1_9.nasl
Version: 1.3
Type: remote
Family: CGI abuses
Published: 5/28/2021
Updated: 12/28/2023
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2020-28907
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CVSS Score Source: CVE-2020-28908
Vulnerability Information
CPE: cpe:/a:nagios:fusion
Required KB Items: installed_sw/nagios_fusion
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 3/18/2020
Vulnerability Publication Date: 3/18/2020
Reference Information
CVE: CVE-2020-28900, CVE-2020-28901, CVE-2020-28902, CVE-2020-28903, CVE-2020-28904, CVE-2020-28905, CVE-2020-28906, CVE-2020-28907, CVE-2020-28908, CVE-2020-28909, CVE-2020-28911
IAVB: 2021-B-0030