Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The check_diskio plugin 3.2.6 and earlier for Nagios and Icinga allows local users to write to arbitrary files via a symlink attack on a temporary file with a predictable name (tmp/check_diskio_status-*-*).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nagios和Icinga check_diskio插件符号链接漏洞
Vulnerability Description
Nagios是美国程序员Ethan Galstad所研发的一套开源的系统运行状态和网络信息监控程序。Icinga是Icinga项目的一套企业级开源监控系统,是一个介于Nagios社区版和企业版间的产品。check_diskio是用于其中的一个用于对Linux系统的磁盘IO(输入输出)进行监控的插件。 Nagios和Icinga的check_diskio插件3.2.5版本中存在安全漏洞。本地攻击者可通过对临时文件实施符号链接攻击利用该漏洞写入任意文件。
CVSS Information
N/A
Vulnerability Type
N/A