Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:CTS:CVE-2018-8736-PRI-ESC |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Nagios XI 5.2.x through 5.4.x before 5.4.13 privilege escalation |
Release Date |
2019/09/05 |
Update Number |
3205 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Nagios XI 5.2.x through 5.4.x before 5.4.13 privilege escalation
This signature detects attempts to exploit a known vulnerability against Nagios XI. A successful attack can lead to arbitrary code execution.
Extended Description
A privilege escalation vulnerability in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attacker to leverage an RCE vulnerability escalating to root.
Affected Products
- Nagios nagios_xi 5.2.0
- Nagios nagios_xi 5.2.1
- Nagios nagios_xi 5.2.2
- Nagios nagios_xi 5.2.3
- Nagios nagios_xi 5.2.4
- Nagios nagios_xi 5.2.5
- Nagios nagios_xi 5.2.6
- Nagios nagios_xi 5.2.7
- Nagios nagios_xi 5.2.8
- Nagios nagios_xi 5.2.9
- Nagios nagios_xi 5.3.0
- Nagios nagios_xi 5.3.1
- Nagios nagios_xi 5.3.2
- Nagios nagios_xi 5.3.3
- Nagios nagios_xi 5.3.4
- Nagios nagios_xi 5.4.0
- Nagios nagios_xi 5.4.1
- Nagios nagios_xi 5.4.10
- Nagios nagios_xi 5.4.11
- Nagios nagios_xi 5.4.12
- Nagios nagios_xi 5.4.2
- Nagios nagios_xi 5.4.3
- Nagios nagios_xi 5.4.4
- Nagios nagios_xi 5.4.5
- Nagios nagios_xi 5.4.6
- Nagios nagios_xi 5.4.7
- Nagios nagios_xi 5.4.8
- Nagios nagios_xi 5.4.9
References