Published: 12/06/2020 Updated: 16/11/2022

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

An issue exists in Icinga2 before v2.12.0-rc1. The prepare-dirs script (run as part of the icinga2 systemd service) executes chmod 2750 /run/icinga2/cmd. /run/icinga2 is under control of an unprivileged user by default. If /run/icinga2/cmd is a symlink, then it will by followed and arbitrary files can be changed to mode 2750 by the unprivileged icinga2 user.

Vulnerable Product	Search on Vulmon	Subscribe to Product
icinga icinga 2.12.0
icinga icinga
opensuse leap 15.1
opensuse backports sle 15.0
opensuse leap 15.2

Debian Bug report logs - #970252 CVE-2020-14004 Package: icinga2; Maintainer for icinga2 is Debian Nagios Maintainer Group <pkg-nagios-devel@listsaliothdebianorg>; Source for icinga2 is src:icinga2 (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Sun, 13 Sep 2020 20:42:01 UTC Severity: ...

CWE-59 https://bugzilla.suse.com/show_bug.cgi?id=CVE-2020-14004 https://github.com/Icinga/icinga2/pull/8045/commits/2f0f2e8c355b75fa4407d23f85feea037d2bc4b6 http://www.openwall.com/lists/oss-security/2020/06/12/1 https://github.com/Icinga/icinga2/releases https://github.com/Icinga/icinga2/compare/v2.12.0-rc1...master http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00014.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970252 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-14004

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect