Snyk has a proof-of-concept or detailed explanation of how to exploit this vulnerability.
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade linuxfabrik-lib to version 5.1.0 or higher.
linuxfabrik-lib is a Python libraries used in various Linuxfabrik projects, including the 'Linuxfabrik Monitoring Plugins' project.
Affected versions of this package are vulnerable to Arbitrary Argument Injection in the configuration of the sudoers file, which allows arbitrary arguments to be passed to apt-get. An attacker can gain root privileges by supplying crafted arguments to execute arbitrary commands as root. This is only exploitable if the attacker has already compromised the nagios account and the provided sudoers configuration is in use.