Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-06075
HistoryJan 17, 2023 - 12:00 a.m.

Netdata Command Injection Vulnerability

2023-01-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
23
netdata
command injection
vulnerability
streaming connection
arbitrary commands
privilege escalation

0.002 Low

EPSS

Percentile

54.6%

JSON

Netdata is a high-fidelity infrastructure monitoring and troubleshooting application open-sourced by Netdata. Netdata is vulnerable to a command injection vulnerability that stems from the fact that an attacker who is able to establish a streaming connection can execute arbitrary commands on the target agent, which can be exploited to escalate privileges by escalating other vulnerabilities in the system as that user.

CPENameOperatorVersion
netdata netdatalt1.37.0

Related

ubuntucve 1
cve 1
debiancve 1
cvelist 1
veracode 1
alpinelinux 1
osv 1
prion 1
nvd 1
ubuntucve
ubuntucve
CVE-2023-22496
2023-01-14 00:00:00
cve
cve
CVE-2023-22496
2023-01-14 01:15:15
debiancve
debiancve
CVE-2023-22496
2023-01-14 01:15:15
cvelist
cvelist
CVE-2023-22496 Netdata vulnerable to command injection
2023-01-14 00:59:53
veracode
veracode
Remote Code Execution (RCE)
2023-03-12 04:41:57
alpinelinux
alpinelinux
CVE-2023-22496
2023-01-14 01:15:00
osv
osv
CVE-2023-22496
2023-01-14 01:15:15
prion
prion
Design/Logic Flaw
2023-01-14 01:15:00
nvd
nvd
CVE-2023-22496
2023-01-14 01:15:15

0.002 Low

EPSS

Percentile

54.6%

JSON
Related for CNVD-2023-06075
ubuntucve1cve1debiancve1cvelist1veracode1alpinelinux1osv1prion1nvd1