ГлавнаяУязвимости → CVE-2024-58273
7.8высокая

CVE-2024-58273

→ есть в БДУ: BDU:2025-15158 (на русском)
Описание (на английском; русское — в БДУ выше)

Nagios Log Server versions prior to 2024R1.0.2 contain a local privilege escalation vulnerability that allows an attacker who could execute commands as the Apache web user (or the backend shell user) to escalate to root on the host.

Затрагиваемое ПО
Nagios Log server
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.nagios.com/changelog/#log-server-2024R1https://www.nagios.com/products/security/#log-serverhttps://www.vulncheck.com/advisories/nagios-log-server-lpe-from-apache-backend-shell-user-to-root