14 matches found
MiracleLinux 9 : cockpit-323.1-1.el9.ML.1 (AXSA:2024-9119:16)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9119:16 advisory. cockpit: Authenticated user can kill any process when enabling pamenv's userreadenv option CVE-2024-6126 Tenable has extracted the preceding description bloc...
Mageia: Security Advisory (MGASA-2025-0181)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RLSA-2024:9325 Low: cockpit security update
Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, and more. Security Fixes: cockpit: Authenticated user can kill any process when enabling...
cockpit security update
An update is available for cockpit. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Cockpit enables users to administer GNU/Linux servers using a web browser. It...
Linux Distros Unpatched Vulnerability : CVE-2024-6126
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the cockpit package. This flaw allows an authenticated user to kill any process when enabling the pamenv's userreadenv option, which leads t...
openSUSE Security Advisory (openSUSE-SU-2024:0206-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 9 : cockpit (ELSA-2024-9325)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-9325 advisory. - pam-ssh-add: Fix insecure killing of session ssh-agent CVE-2024-6126 Tenable has extracted the preceding description block directly from the Oracle Linux...
RHEL 9 : cockpit (RHSA-2024:9325)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:9325 advisory. Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELin...
Fedora: Security Advisory (FEDORA-2024-9eb3674b7c)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for cockpit (moderate)
openSUSE Security Update: Security update for cockpit Announcement ID: openSUSE-SU-2024:0206-1 Rating: moderate References: 1226040 1227299 Cross-References: CVE-2024-6126 CVSS scores: CVE-2024-6126 SUSE: 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Backports...
SUSE-SU-2024:2494-1 Security update for cockpit
This update for cockpit fixes the following issues: - CVE-2024-6126: Fixed Integer overflow in pamsmclosesession bsc1226040...
SUSE-SU-2024:2478-1 Security update for cockpit
This update for cockpit fixes the following issues: - CVE-2024-6126: Fixed Integer overflow in pamsmclosesession bsc1226040...
SUSE-SU-2024:2477-1 Security update for cockpit
This update for cockpit fixes the following issues: - CVE-2024-6126: Fixed Integer overflow in pamsmclosesession bsc1226040...
CVE-2024-6126
A flaw was found in the cockpit package. This flaw allows an authenticated user to kill any process when enabling the pamenv's userreadenv option, which leads to a denial of service DoS attack...