CVE-2020-8655: 
EyesOfNetwork vulnerability analysis and mitigation

An issue was discovered in EyesOfNetwork 5.3 that allows privilege escalation through the sudoers configuration. The vulnerability (CVE-2020-8655) enables the apache user to execute arbitrary commands as root through a crafted NSE script for nmap 7 (NVD, CISA).

The vulnerability stems from an improper privilege management in the sudoers configuration of EyesOfNetwork 5.3. The apache user is granted NOPASSWD permissions to execute specific systemctl commands and nmap, which can be exploited through specially crafted Nmap Scripting Engine (NSE) scripts to execute arbitrary commands with root privileges (GitHub Issue).

Successful exploitation of this vulnerability allows an attacker with apache user access to elevate privileges to root level, potentially leading to complete system compromise. The attacker can execute arbitrary commands with the highest system privileges (Packet Storm).

Organizations should update their EyesOfNetwork installation to a patched version. Additionally, the sudoers configuration should be reviewed and modified to restrict the apache user's permissions, particularly regarding nmap execution (Check Point).