Path Traversal in Sni Thruk
CVE-2023-34096
Thruk is a multibackend monitoring webinterface which currently supports Naemon, Icinga, Shinken and Nagios as backends. In versions 3.06 and prior, the file `panorama.pm` is vulnerable to a Path Traversal vulnerability which allows an att…
Vulnerability class: Path Traversal (Directory Traversal)
EPSS: 0.627 (99.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N.
Affected products
- Sni Thruk — versions < 3.06.2
Weakness classification (CWE)
Public proof-of-concept exploits
References
- https://github.com/sni/Thruk/security/advisories/GHSA-vhqc-649h-994h (x_refsource_CONFIRM)
- https://github.com/sni/Thruk/commit/26de047275c355c5ae2bbbc51b164f0f8bef5c5b (x_refsource_MISC)
- https://github.com/sni/Thruk/commit/cf03f67621b7bb20e2c768bc62b30e976206aa17 (x_refsource_MISC)
- https://github.com/sni/Thruk/blob/1bc5a5804bf9fc22e82a4eadb21a1795954f0867/plugins/plugins-available/panorama/lib/Thruk/Controller/panorama.pm#L690 (x_refsource_MISC)
- https://github.com/sni/Thruk/blob/1bc5a5804bf9fc22e82a4eadb21a1795954f0867/plugins/plugins-available/panorama/lib/Thruk/Controller/panorama.pm#L705 (x_refsource_MISC)
- https://github.com/sni/Thruk/blob/1bc5a5804bf9fc22e82a4eadb21a1795954f0867/plugins/plugins-available/panorama/lib/Thruk/Controller/panorama.pm#L727 (x_refsource_MISC)
- https://github.com/sni/Thruk/blob/1bc5a5804bf9fc22e82a4eadb21a1795954f0867/plugins/plugins-available/panorama/lib/Thruk/Controller/panorama.pm#L735 (x_refsource_MISC)
- packetstormsecurity.com/files/172822/Thruk-Monitoring-Web-Interface-3.06-Path-T…
- galogetlatorre.blogspot.com/2023/06/cve-2023-34096-path-traversal-thruk.html
- www.exploit-db.com/exploits/51509
Frequently asked questions
- What is CVE-2023-34096?
- CVE-2023-34096 is a medium-severity vulnerability in Sni Thruk, classified under Path Traversal. CVSS score: 6.5/10. Published 2023-06-08.
- How severe is CVE-2023-34096?
- Medium severity. CVSS v3 base score is 6.5 out of 10.
- Is CVE-2023-34096 known to be exploited?
- 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.