CVE-2023-37154 | Nagios Nagios-plugins up to 2.4.4 check_by_ssh ProxyCommand/LocalCommand/PermitLocalCommand Privilege Escalation (GHSA-p3gv-vmpx-hhw4)

Posted by Angelo Barbosa | Oct 9, 2024 | CVE

A vulnerability was found in Nagios Nagios-plugins up to 2.4.4. It has been rated as problematic. Affected by this issue is the function check_by_ssh. The manipulation of the argument ProxyCommand/LocalCommand/PermitLocalCommand leads to Privilege Escalation.

This vulnerability is handled as CVE-2023-37154. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-37154 | Nagios Nagios-plugins up to 2.4.4 check_by_ssh ProxyCommand/LocalCommand/PermitLocalCommand Privilege Escalation (GHSA-p3gv-vmpx-hhw4)

Related Posts

CVE-2024-9041 | SourceCodester Best House Rental Management System 1.0 ajax.php firstname/lastname/email sql injection

CVE-2024-2169 | UDP Application Protocol Packet denial of service

CVE-2023-6923 | Matomo Plugin up to 4.15.3 on WordPress idsite cross site scripting

CVE-2024-0753 | Mozilla Thunderbird up to 115.6 HSTS information disclosure