High
CVSS 7.0
Overview
The td-agent-builder plugin before 2020-12-18 for Fluentd allows attackers to gain privileges because the bin directory is writable by a user account, but a file in bin is executed as NT AUTHORITY\SYSTEM.
CVE-2020-28169
The td-agent-builder plugin before 2020-12-18 for Fluentd allows attackers to ga...
Risk analysis
This vulnerability is rated 🟠 HIGH.
- CVSS: 7.0 (HIGH)
- Detected tags: none (tag impact: LOW)
Recommended actions:
- Prioritize remediation based on business criticality and exposure.
- Limit exposure and increase monitoring until fixed.