Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2008-1926
HistoryApr 24, 2008 - 5:05 a.m.

CVE-2008-1926

2008-04-2405:05:00
CWE-94
[email protected]
web.nvd.nist.gov
4

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.7

Confidence

Low

EPSS

0.013

Percentile

86.0%

JSON

Argument injection vulnerability in login (login-utils/login.c) in util-linux-ng 2.14 and earlier makes it easier for remote attackers to hide activities by modifying portions of log events, as demonstrated by appending an β€œaddr=” statement to the login name, aka β€œaudit log injection.”

Affected configurations

Nvd
Node
linuxutil-linuxMatch2.13
OR
linuxutil-linuxMatch2.13.0.1
OR
linuxutil-linuxMatch2.13.1
OR
linuxutil-linuxMatch2.13.1.1
OR
linuxutil-linuxMatch2.14rc1
VendorProductVersionCPE
linuxutil-linux2.13cpe:2.3:a:linux:util-linux:2.13:*:*:*:*:*:*:*
linuxutil-linux2.13.0.1cpe:2.3:a:linux:util-linux:2.13.0.1:*:*:*:*:*:*:*
linuxutil-linux2.13.1cpe:2.3:a:linux:util-linux:2.13.1:*:*:*:*:*:*:*
linuxutil-linux2.13.1.1cpe:2.3:a:linux:util-linux:2.13.1.1:*:*:*:*:*:*:*
linuxutil-linux2.14cpe:2.3:a:linux:util-linux:2.14:rc1:*:*:*:*:*:*

References

Related

veracode 1
nessus 4
openvas 6
seebug 1
fedora 1
centos 1
prion 1
cve 1
cvelist 1
redhat 1
oraclelinux 1
debiancve 1
ubuntucve 1
veracode
veracode
Log Injection
2020-04-10 00:33:10
nessus
nessus
Mandriva Linux Security Advisory : util-linux-ng (MDVSA-2008:114)
2009-04-23 00:00:00
Fedora 8 : util-linux-ng-2.13.1-2.fc8 (2008-3419)
2008-05-01 00:00:00
RHEL 4 : util-linux (RHSA-2009:0981)
2009-05-19 00:00:00
openvas
openvas
RedHat Security Advisory RHSA-2009:0981
2009-05-20 00:00:00
Fedora Update for util-linux-ng FEDORA-2008-3419
2009-02-17 00:00:00
Mandriva Update for util-linux-ng MDVSA-2008:114 (util-linux-ng)
2009-04-09 00:00:00
seebug
seebug
util-linux-ngη™»ε½•θΏœη¨‹ζ—₯志注ε…₯漏洞
2008-04-30 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: util-linux-ng-2.13.1-2.fc8
2008-04-29 21:01:18
centos
centos
util security update
2009-05-21 14:46:18
prion
prion
Design/Logic Flaw
2008-04-24 05:05:00
cve
cve
CVE-2008-1926
2008-04-24 05:05:00
cvelist
cvelist
CVE-2008-1926
2008-04-23 17:00:00
redhat
redhat
(RHSA-2009:0981) Low: util-linux security and bug fix update
2009-05-18 00:00:00
oraclelinux
oraclelinux
util-linux security and bug fix update
2009-05-26 00:00:00
debiancve
debiancve
CVE-2008-1926
2008-04-24 05:05:00
ubuntucve
ubuntucve
CVE-2008-1926
2008-04-24 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.7

Confidence

Low

EPSS

0.013

Percentile

86.0%

JSON
Related for NVD:CVE-2008-1926
veracode1nessus4openvas6seebug1fedora1centos1prion1cve1cvelist1redhat1oraclelinux1debiancve1ubuntucve1