CVE-2025-34287 (GCVE-0-2025-34287)

Vulnerability from cvelistv5 – Published: 2025-10-30 21:39 – Updated: 2025-11-17 18:21
VLAI?
Summary
Nagios XI versions prior to 2024R2 contain an improperly owned script, process_perfdata.pl, which is executed periodically as the nagios user but owned by www-data. Because the file was writable by www-data, an attacker with web server privileges could modify its contents, leading to arbitrary code execution as the nagios user when the script is next run. This improper ownership and permission configuration enables local privilege escalation.
Severity ?
8.4 (High)
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N
CWE
  • CWE-732 - Incorrect Permission Assignment for Critical Resource
Assigner
References
Impacted products
Vendor Product Version
Nagios XI Affected: 0 , < 2024R2 (custom)
Create a notification for this product.
Credits
M. Cory Billington of theyhack.me
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-34287",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-10-31T13:45:14.832334Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-31T13:56:07.335Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "modules": [
            "process_perfdata.pl"
          ],
          "product": "XI",
          "vendor": "Nagios",
          "versions": [
            {
              "lessThan": "2024R2",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:nagios:nagios_xi:2024:*:*:*:*:*:*:*",
                  "versionEndExcluding": "r2",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ],
          "operator": "OR"
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "M. Cory Billington of theyhack.me"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Nagios XI versions prior to 2024R2 contain an improperly owned script, process_perfdata.pl, which is executed periodically as the nagios user but owned by www-data. Because the file was writable by www-data, an attacker with web server privileges could modify its contents, leading to arbitrary code execution as the nagios user when the script is next run. This improper ownership and permission configuration enables local privilege escalation.\u003cbr\u003e"
            }
          ],
          "value": "Nagios XI versions prior to 2024R2 contain an improperly owned script, process_perfdata.pl, which is executed periodically as the nagios user but owned by www-data. Because the file was writable by www-data, an attacker with web server privileges could modify its contents, leading to arbitrary code execution as the nagios user when the script is next run. This improper ownership and permission configuration enables local privilege escalation."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-233",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-233 Privilege Escalation"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "LOCAL",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "privilegesRequired": "LOW",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "LOW",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-732",
              "description": "CWE-732 Incorrect Permission Assignment for Critical Resource",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-17T18:21:51.502Z",
        "orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
        "shortName": "VulnCheck"
      },
      "references": [
        {
          "tags": [
            "release-notes",
            "patch"
          ],
          "url": "https://www.nagios.com/changelog/nagios-xi/"
        },
        {
          "tags": [
            "third-party-advisory"
          ],
          "url": "https://www.vulncheck.com/advisories/nagios-xi-privilege-escalation-via-improperly-owned-script"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eNagios addresses this vulnerability as \"\u003c/span\u003e\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eChanged ownership on process_perfdata.pl to prevent permission escalation\"\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "Nagios addresses this vulnerability as \"Changed ownership on process_perfdata.pl to prevent permission escalation\""
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Nagios XI \u003c 2024R2 Privilege Escalation via process_perfdata.pl",
      "x_generator": {
        "engine": "vulncheck"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
    "assignerShortName": "VulnCheck",
    "cveId": "CVE-2025-34287",
    "datePublished": "2025-10-30T21:39:43.482Z",
    "dateReserved": "2025-04-15T19:15:22.581Z",
    "dateUpdated": "2025-11-17T18:21:51.502Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-34287\",\"sourceIdentifier\":\"disclosure@vulncheck.com\",\"published\":\"2025-10-30T22:15:49.080\",\"lastModified\":\"2025-11-06T18:12:41.207\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Nagios XI versions prior to 2024R2 contain an improperly owned script, process_perfdata.pl, which is executed periodically as the nagios user but owned by www-data. Because the file was writable by www-data, an attacker with web server privileges could modify its contents, leading to arbitrary code execution as the nagios user when the script is next run. This improper ownership and permission configuration enables local privilege escalation.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"disclosure@vulncheck.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":8.4,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"HIGH\",\"vulnIntegrityImpact\":\"HIGH\",\"vulnAvailabilityImpact\":\"LOW\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"disclosure@vulncheck.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-732\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2024\",\"matchCriteriaId\":\"62CF7BF4-6AAA-443E-93B4-B2F080091C13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1:*:*:*:*:*:*\",\"matchCriteriaId\":\"85F1764D-1DD8-44B0-BF5A-2420CB519A3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.0.1:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1FE1A0B-78D1-4626-A4CD-21B843DA596E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.0.2:*:*:*:*:*:*\",\"matchCriteriaId\":\"CCAB888E-F030-4640-9A18-9E423E553308\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.1:*:*:*:*:*:*\",\"matchCriteriaId\":\"C648B0A4-053C-4884-8A37-4AF03053ED1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.1.1:*:*:*:*:*:*\",\"matchCriteriaId\":\"893EEA99-0096-4C9F-BA8A-246A3E3F6C15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.1.2:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1FDA3F3-DF79-4807-9451-F04B2DB9A2B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.1.3:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E055065-35A7-458A-A2DB-26634B97EE7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.1.4:*:*:*:*:*:*\",\"matchCriteriaId\":\"76946B2D-093C-4981-8465-5ADBB98C0676\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.1.5:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9112876-7C61-4A72-8F91-023378E82E6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.2:*:*:*:*:*:*\",\"matchCriteriaId\":\"1443759F-EBD7-4366-A5D3-9FB15CE15B40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.2.1:*:*:*:*:*:*\",\"matchCriteriaId\":\"F85D8CA4-F1AC-4538-925C-1AD00FF7B9C1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.2.2:*:*:*:*:*:*\",\"matchCriteriaId\":\"7FFC081E-728A-4643-A8DF-5CC8E94E7D78\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.3:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3D8A858-2F40-4568-BCA0-59CF6033A7FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.3.1:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D1C8647-F0EB-443F-B18B-338335CE54B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.3.2:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A695A21-8F5A-4588-91E9-F7AF101B77AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.3.3:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA587E9E-86DA-41A4-BF3B-56B1488B326A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.3.4:*:*:*:*:*:*\",\"matchCriteriaId\":\"BBCC6B6F-E627-49D4-9FA6-72283B07973A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.4:*:*:*:*:*:*\",\"matchCriteriaId\":\"450E4C8D-FC6B-42E6-A574-61F89AEB1800\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.4.1:*:*:*:*:*:*\",\"matchCriteriaId\":\"838E2FEE-8707-4CA9-B877-EE69D32615E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.4.2:*:*:*:*:*:*\",\"matchCriteriaId\":\"F82CD561-A42C-447C-8869-1136170674E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.4.3:*:*:*:*:*:*\",\"matchCriteriaId\":\"6AC31313-7C30-4D67-A437-EAA7EDA71AF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:nagios_xi:2024:r1.4.4:*:*:*:*:*:*\",\"matchCriteriaId\":\"3FCC4C68-A056-41F5-B4BF-677FF2B6F245\"}]}]}],\"references\":[{\"url\":\"https://www.nagios.com/changelog/nagios-xi/\",\"source\":\"disclosure@vulncheck.com\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.vulncheck.com/advisories/nagios-xi-privilege-escalation-via-improperly-owned-script\",\"source\":\"disclosure@vulncheck.com\",\"tags\":[\"Third Party Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-34287\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-10-31T13:45:14.832334Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-10-31T13:53:01.621Z\"}}], \"cna\": {\"title\": \"Nagios XI \u003c 2024R2 Privilege Escalation via process_perfdata.pl\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"M. Cory Billington of theyhack.me\"}], \"impacts\": [{\"capecId\": \"CAPEC-233\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-233 Privilege Escalation\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NOT_DEFINED\", \"version\": \"4.0\", \"Recovery\": \"NOT_DEFINED\", \"baseScore\": 8.4, \"Automatable\": \"NOT_DEFINED\", \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"valueDensity\": \"NOT_DEFINED\", \"vectorString\": \"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N\", \"providerUrgency\": \"NOT_DEFINED\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"LOW\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"HIGH\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"LOW\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"HIGH\", \"vulnerabilityResponseEffort\": \"NOT_DEFINED\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Nagios\", \"modules\": [\"process_perfdata.pl\"], \"product\": \"XI\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2024R2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"Nagios addresses this vulnerability as \\\"Changed ownership on process_perfdata.pl to prevent permission escalation\\\"\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003eNagios addresses this vulnerability as \\\"\u003c/span\u003e\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003eChanged ownership on process_perfdata.pl to prevent permission escalation\\\"\u003c/span\u003e\u003cbr\u003e\", \"base64\": false}]}], \"references\": [{\"url\": \"https://www.nagios.com/changelog/nagios-xi/\", \"tags\": [\"release-notes\", \"patch\"]}, {\"url\": \"https://www.vulncheck.com/advisories/nagios-xi-privilege-escalation-via-improperly-owned-script\", \"tags\": [\"third-party-advisory\"]}], \"x_generator\": {\"engine\": \"vulncheck\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Nagios XI versions prior to 2024R2 contain an improperly owned script, process_perfdata.pl, which is executed periodically as the nagios user but owned by www-data. Because the file was writable by www-data, an attacker with web server privileges could modify its contents, leading to arbitrary code execution as the nagios user when the script is next run. This improper ownership and permission configuration enables local privilege escalation.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Nagios XI versions prior to 2024R2 contain an improperly owned script, process_perfdata.pl, which is executed periodically as the nagios user but owned by www-data. Because the file was writable by www-data, an attacker with web server privileges could modify its contents, leading to arbitrary code execution as the nagios user when the script is next run. This improper ownership and permission configuration enables local privilege escalation.\u003cbr\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-732\", \"description\": \"CWE-732 Incorrect Permission Assignment for Critical Resource\"}]}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:a:nagios:nagios_xi:2024:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"r2\"}], \"operator\": \"OR\"}], \"operator\": \"OR\"}], \"providerMetadata\": {\"orgId\": \"83251b91-4cc7-4094-a5c7-464a1b83ea10\", \"shortName\": \"VulnCheck\", \"dateUpdated\": \"2025-11-17T18:21:51.502Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-34287\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-17T18:21:51.502Z\", \"dateReserved\": \"2025-04-15T19:15:22.581Z\", \"assignerOrgId\": \"83251b91-4cc7-4094-a5c7-464a1b83ea10\", \"datePublished\": \"2025-10-30T21:39:43.482Z\", \"assignerShortName\": \"VulnCheck\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.