CVE-2019-13035

Name of the Vulnerable Software and Affected Versions Artica Pandora FMS versions 7.0 NG before 735

Description The issue is related to improper permissions on the C:PandoraFMS directory and its sub-folders, allowing standard users to create new files. When the Apache service httpd.exe receives web requests to the portal, it attempts to execute cmd.exe from the C:PandoraFMS directory as NT AUTHORITYSYSTEM. This allows non-privileged users to escalate privileges to NT AUTHORITYSYSTEM.

Recommendations For Artica Pandora FMS version 7.0 NG before 735, update to version 735 or later to resolve the issue. As a temporary workaround, consider restricting write access to the C:PandoraFMS directory and its sub-folders to prevent standard users from creating new files. Additionally, restrict the execution of cmd.exe by the Apache service httpd.exe to minimize the risk of privilege escalation.