CVE-2017-12847 — MEDIUM (6.3)

Q: How severe is CVE-2017-12847?

CVE-2017-12847 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2017-12847?

Check the references section above for vendor advisories and patch information. Affected products include: Nagios Nagios.

Vulnerability Description

Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for nagios.lock modification before a root script executes a "kill `cat /pathname/nagios.lock`" command.

CVSS Score

6.3

MEDIUM

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Nagios	Nagios	<= 4.3.2

Related Weaknesses (CWE)

CWE-665

References

http://www.securityfocus.com/bid/100403Third Party AdvisoryVDB Entry
https://github.com/NagiosEnterprises/nagioscore/blob/master/ChangelogRelease NotesVendor Advisory
https://github.com/NagiosEnterprises/nagioscore/commit/1b197346d490df2e2d3b1dccePatchVendor Advisory
https://github.com/NagiosEnterprises/nagioscore/commit/3baffa78bafebbbdf9f448890PatchVendor Advisory
https://github.com/NagiosEnterprises/nagioscore/issues/404Issue TrackingVendor Advisory
https://security.gentoo.org/glsa/201710-20Third Party Advisory
http://www.securityfocus.com/bid/100403Third Party AdvisoryVDB Entry
https://github.com/NagiosEnterprises/nagioscore/blob/master/ChangelogRelease NotesVendor Advisory
https://github.com/NagiosEnterprises/nagioscore/commit/1b197346d490df2e2d3b1dccePatchVendor Advisory
https://github.com/NagiosEnterprises/nagioscore/commit/3baffa78bafebbbdf9f448890PatchVendor Advisory
https://github.com/NagiosEnterprises/nagioscore/issues/404Issue TrackingVendor Advisory
https://security.gentoo.org/glsa/201710-20Third Party Advisory

FAQ

What is CVE-2017-12847?

CVE-2017-12847 is a vulnerability with a CVSS score of 6.3 (MEDIUM). Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root...

How severe is CVE-2017-12847?

CVE-2017-12847 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-12847?

Check the references section above for vendor advisories and patch information. Affected products include: Nagios Nagios.