EUVD-2019-4949

Malware in sbrugna...

EUVD-2019-4925

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2019-13486

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Xymon through 4.3.28, a stack-based buffer overflow exists in the status-log viewer component because of expansion in svcstatus.c. CVE-2019-13486 Note that...

Linux Distros Unpatched Vulnerability : CVE-2019-13273

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Xymon through 4.3.28, a buffer overflow vulnerability exists in the csvinfo CGI script. The overflow may be exploited by sending a crafted GET request that...

CVE-2019-13273

In Xymon through 4.3.28, a buffer overflow vulnerability exists in the csvinfo CGI script. The overflow may be exploited by sending a crafted GET request that triggers an sprintf of the srcdb parameter...

CVE-2019-13452

In Xymon through 4.3.28, a buffer overflow vulnerability exists in reportlog.c...

RHBA-2020:2804 Red Hat Bug Fix Advisory: OpenShift Container Platform 4.3.28 packages update

Bulletin has no description...

Moderate: Red Hat Bug Fix Advisory: OpenShift Container Platform 4.3.28 packages update

Red Hat OpenShift Container Platform release 4.3.28 is now available with updates to packages and images that fix several bugs. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This...

Xymon history.c Buffer Overflow Vulnerability

Xymon is an open source cross-platform system status monitoring software. A buffer overflow vulnerability exists in history.c in Xymon 4.3.28 and earlier versions. No details of the vulnerability are provided at this time...

Xymon reportlog.c Buffer Overflow Vulnerability

Xymon is an open source cross-platform system status monitoring software. A buffer overflow vulnerability exists in reportlog.c in Xymon 4.3.28 and earlier versions. No details of the vulnerability are available at this time...

Xymon Stack Buffer Overflow Vulnerability

Xymon is an open source cross-platform system status monitoring software. A stack buffer overflow vulnerability exists in the status log viewer component in Xymon 4.3.28 and earlier versions. No details of the vulnerability are provided at this time...

DEBIAN-CVE-2019-13486

In Xymon through 4.3.28, a stack-based buffer overflow exists in the status-log viewer component because of expansion in svcstatus.c...

UBUNTU-CVE-2019-13484

In Xymon through 4.3.28, a buffer overflow exists in the status-log viewer CGI because of expansion in appfeed.c...

CVE-2019-13273

CVE-2019-13273 affects Xymon up to version 4.3.28, where the csvinfo CGI script contains a buffer overflow caused by a crafted GET request that triggers an sprintf on the srcdb parameter. This is a server-side vulnerability in the web interface (csvinfo.c) that can lead to memory corruption. The ...

CVE-2019-13274

In Xymon through 4.3.28, an XSS vulnerability exists in the csvinfo CGI script due to insufficient filtering of the db parameter...

CVE-2019-13451

CVE-2019-13451 affects Xymon up to version 4.3.28, with a buffer overflow in history.c identified as the root cause. The issue is documented across multiple feeds (NVD, CNVD, OSV, osv.dev, Debian/Ubuntu trackers) and is characterized by exposure via a network vector with high impact on confidenti...

CVE-2019-13455

Xymon is affected by CVE-2019-13455:

CVE-2019-13484

Xymon ≤ 4.3.28 contains a buffer overflow in the status-log viewer CGI caused by expansion in appfeed.c. This CVE-2019-13484 entry is documented across multiple sources (NVD, OSV, Debian/Ubuntu trackers, Nessus/NASL plugins, etc.), consistently stating the flaw exists in the status-log viewer com...

CVE-2019-13485

CVE-2019-13485 affects Xymon up to version 4.3.28. The history viewer component (history.c) is vulnerable to a stack-based buffer overflow triggered by a long hostname or service parameter. The vulnerability is documented with a high/critical impact profile (CVSS v3 base score 9.8, network access...

Oracle VM VirtualBox Denial of Service Vulnerability

Oracle Virtualization Oracle VirtualBox is a virtual machine component of Oracle's virtualization solution. Oracle VM VirtualBox version 4.3.28 has a denial of service vulnerability in files with the '.ovf' extension, which can be exploited by an attacker to cause a denial of service program cras...