Lucene search
K

244 matches found

Prion
Prion
added 2023/07/18 2:15 p.m.20 views

Authorization

An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization...

6.5CVSS8.7AI score0.00667EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2023/07/18 2:15 p.m.28 views

CVE-2022-26563

An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization...

8.8CVSS7.7AI score0.00667EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2023/07/18 2:15 p.m.39 views

CVE-2022-26563

An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization...

8.8CVSS7.2AI score0.00667EPSS
Exploits0References4
OSV
OSV
added 2023/07/18 2:15 p.m.2 views

UBUNTU-CVE-2022-26563

An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization...

8.8CVSS7.3AI score0.00667EPSS
Exploits0References5
CVE
CVE
added 2023/07/18 12:0 a.m.100 views

CVE-2022-26563

CVE-2022-26563 affects Monit before 5.31.0. The issue is due to improper PAM authorization, enabling remote attackers to gain escalated privileges. Affected versions are Monit prior to 5.31.0; multiple advisories general guidance to update. Remediation: upgrade to Monit 5.31.0 or later (or apply ...

8.8CVSS8.6AI score0.00667EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/18 12:0 a.m.17 views

CVE-2022-26563

An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization...

7.5AI score0.00667EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2023/07/18 12:0 a.m.18 views

CVE-2022-26563

An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization...

8.8CVSS8.8AI score0.00667EPSS
Exploits0
Cvelist
Cvelist
added 2023/07/18 12:0 a.m.48 views

CVE-2022-26563

An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization...

9AI score0.00667EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/18 12:0 a.m.5 views

Tildeslash Monit 安全漏洞

Tildeslash Monit is a small open source utility for managing and monitoring Unix and Linux systems from Tildeslash Norway. A security vulnerability exists in Tildeslash Monit versions prior to 5.31.0, which stems from a vulnerability that allows a remote attacker to gain escalated privileges due ...

8.8CVSS7.9AI score0.00667EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.12 views

Debian: Security Advisory (DLA-732-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.00882EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:58 a.m.5 views

SUSE CVE-2016-7067

Monit before version 5.20.0 is vulnerable to a cross site request forgery attack. Successful exploitation will enable an attacker to disable/enable all monitoring for a particular host or disable/enable monitoring for a specific service...

6.5CVSS6.8AI score0.00882EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:12 a.m.4 views

SUSE CVE-2019-11393

An issue was discovered in /admin/users/update in M/Monit before 3.7.3. It allows unprivileged users to escalate their privileges to an administrator by requesting a password change and specifying the admin parameter...

9.8CVSS9.7AI score0.02086EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:12 a.m.5 views

SUSE CVE-2019-11454

Persistent cross-site scripting XSS in http/cervlet.c in Tildeslash Monit before 5.25.3 allows a remote unauthenticated attacker to introduce arbitrary JavaScript via manipulation of an unsanitized user field of the Authorization header for HTTP Basic Authentication, which is mishandled during an...

6.1CVSS5.9AI score0.02414EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:12 a.m.3 views

SUSE CVE-2019-11455

A buffer over-read in UtilurlDecode in util.c in Tildeslash Monit before 5.25.3 allows a remote authenticated attacker to retrieve the contents of adjacent memory via manipulation of GET or POST parameters. The attacker can also cause a denial of service application outage...

8.1CVSS7.8AI score0.03138EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.16 views

Ubuntu: Security Advisory (USN-4860-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.03138EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.15 views

Mageia: Security Advisory (MGASA-2019-0246)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.03138EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.4 views

Mageia: Security Advisory (MGASA-2018-0490)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References4
Veracode
Veracode
added 2021/12/29 6:55 a.m.21 views

Denial Of Service (DoS)

monit is vulnerable to denial of service. The vulnerability exists due to a buffer over-read in UtilurlDecode in util.c in Tildeslash Monit...

8.1CVSS2.6AI score0.03138EPSS
Exploits1References11Affected Software1
OpenVAS
OpenVAS
added 2021/12/28 12:0 a.m.15 views

Debian: Security Advisory (DLA-2855-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.1AI score0.03138EPSS
Exploits2References4
Debian
Debian
added 2021/12/27 7:18 p.m.30 views

[SECURITY] [DLA 2855-1] monit security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2855-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk December 27, 2021 https://wiki.debian.org/LTS -...

8.1CVSS8AI score0.03138EPSS
Exploits2
Rows per page
Query Builder