244 matches found
CVE-2020-36968
M/Monit 3.7.4 contains an authentication vulnerability that allows authenticated attackers to retrieve user password hashes through an administrative API endpoint. Attackers can send requests to the /api/1/admin/users/list and /api/1/admin/users/get endpoints to extract MD5 password hashes for al...
CVE-2020-36969
M/Monit 3.7.4 contains a privilege escalation vulnerability that allows authenticated users to modify user permissions by manipulating the admin parameter. Attackers can send a POST request to the /api/1/admin/users/update endpoint with a crafted payload to grant administrative access to a standa...
EUVD-2020-30881
M/Monit 3.7.4 contains a privilege escalation vulnerability that allows authenticated users to modify user permissions by manipulating the admin parameter. Attackers can send a POST request to the /api/1/admin/users/update endpoint with a crafted payload to grant administrative access to a standa...
CVE-2020-36968
CVE-2020-36968 affects M/Monit 3.7.4. An authentication vulnerability allows authenticated attackers to retrieve user password hashes by calling administrative API endpoints /api/1/admin/users/list and /api/1/admin/users/get, extracting MD5 hashes for all users. Multiple connected sources (Debian...
CVE-2020-36969
Removed by vendor...
CVE-2020-36968
Removed by vendor...
Tildeslash M/Monit Security Vulnerability
Tildeslash M/Monit is a server monitoring and management tool developed by Tildeslash Inc. Version 3.7.4 of Tildeslash M/Monit contains a security vulnerability. This vulnerability stems from an authentication flaw in the management API endpoints, which could lead to the retrieval of user passwor...
Linux Distros Unpatched Vulnerability : CVE-2020-36968
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - M/Monit 3.7.4 contains an authentication vulnerability that allows authenticated attackers to retrieve user password hashes through an administrative API...
Tildeslash M/Monit Security Vulnerability
Tildeslash M/Monit is a server monitoring and management tool developed by Tildeslash Inc. Version 3.7.4 of Tildeslash M/Monit contains a security vulnerability, which stems from improper handling of admin parameters, potentially leading to privilege escalation...
CVE-2019-11393
An issue was discovered in /admin/users/update in M/Monit before 3.7.3. It allows unprivileged users to escalate their privileges to an administrator by requesting a password change and specifying the admin parameter...
EUVD-2019-3071
Malware in sbrugna...
EUVD-2020-8219
Malware in sbrugna...
EUVD-2016-7947
Malware in sbrugna...
EUVD-2004-1890
Malware in sbrugna...
EUVD-2014-6486
Malware in sbrugna...
EUVD-2004-1892
Malware in sbrugna...
EUVD-2014-6289
Malware in sbrugna...
EUVD-2003-1074
Malware in sbrugna...
EUVD-2019-3130
Malware in sbrugna...
EUVD-2019-3129
Malware in sbrugna...