CVE-2019-3698

28.02.2020, 14:15

UNIX Symbolic Link (Symlink) Following vulnerability in the cronjob shipped with nagios of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 11; openSUSE Factory allows local attackers to cause cause DoS or potentially escalate privileges by winning a race. This issue affects: SUSE Linux Enterprise Server 12 nagios version 3.5.1-5.27 and prior versions. SUSE Linux Enterprise Server 11 nagios version 3.0.6-1.25.36.3.1 and prior versions. openSUSE Factory nagios version 4.4.5-2.1 and prior versions.

Link Following

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5.7 MEDIUM	LOCAL	HIGH	NONE	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L
suse	CNA	5.7 MEDIUM	LOCAL	HIGH	NONE	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 39%

Vendor	Product	Version
nagios	nagios	𝑥 < 3.5.1
nagios	nagios	𝑥 < 3.0.6
opensuse	backports_sle	15.0:sp1
opensuse	leap	15.1

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

icinga

eoan	not-affected
bionic	not-affected
xenial	not-affected
trusty	dne

nagios3

eoan	dne
bionic	not-affected
xenial	not-affected
trusty	dne

Known Exploits!

Common Weakness Enumeration

CWE-59 - Improper Link Resolution Before File Access ('Link Following')
The software attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

References

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00014.html

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00022.html

https://bugzilla.suse.com/show_bug.cgi?id=1156309

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00014.html

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00022.html

https://bugzilla.suse.com/show_bug.cgi?id=1156309