Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Manager Client Tools 12 package icinga, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (5)
CVE-2016-10089 — CVSS 7.8 (high): Nagios 4.3.2 and earlier allows local users to gain root privileges via a hard link attack on the Nagios init script file, related to…
CVE-2016-9566 — CVSS 7.8 (high): base/logging.c in Nagios Core before 4.2.4 allows local users with access to an account in the nagios group to gain root privileges via a…
CVE-2016-8641 — CVSS 6.7 (medium): A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when creating necessary files and insecurely…
CVE-2015-8010 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows…
CVE-2019-3698 — CVSS 5.7 (medium): UNIX Symbolic Link (Symlink) Following vulnerability in the cronjob shipped with nagios of SUSE Linux Enterprise Server 12, SUSE Linux…