PT-2020-16936 · Fluentd · Td-Agent-Builder Plugin

Published

2020-12-24

Updated

2025-03-24

CVE-2020-28169

CVSS v3.1

7.0

High

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions td-agent-builder plugin for Fluentd versions prior to 2020-12-18

Description The issue allows attackers to gain privileges because the bin directory is writable by a user account, but a file in bin is executed as NT AUTHORITYSYSTEM.

Recommendations For versions prior to 2020-12-18, update the td-agent-builder plugin to a version released after 2020-12-18 to resolve the issue. As a temporary workaround, consider restricting write access to the bin directory to prevent exploitation.

Exploit

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

CVE-2020-28169

DSA-4949-1

Affected Products

Td-Agent-Builder Plugin

PT-2020-16936 · Fluentd · Td-Agent-Builder Plugin

CVE-2020-28169

Weakness Enumeration

Related Identifiers

Affected Products

References · 14