Lucene search
K

225 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:47 a.m.17 views

SUSE CVE-2012-2147

munin-cgi-graph in Munin 2.0 rc4 allows remote attackers to cause a denial of service disk or memory consumption via many image requests with large values in the 1 sizex or 2 sizey parameters...

5CVSS6.9AI score0.01863EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:45 a.m.4 views

SUSE CVE-2012-3512

Munin before 2.0.6 stores plugin state files that run as root in the same group-writable directory as non-root plugins, which allows local users to execute arbitrary code by replacing a state file, as demonstrated using the smart plugin...

7.2CVSS7.5AI score0.0059EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:34 a.m.5 views

SUSE CVE-2013-6048

The getgrouptree function in lib/Munin/Master/HTMLConfig.pm in Munin before 2.0.18 allows remote nodes to cause a denial of service infinite loop and memory consumption in the munin-html process via crafted multigraph data...

5CVSS6.8AI score0.02502EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:34 a.m.2 views

SUSE CVE-2013-6359

Munin::Master::Node in Munin before 2.0.18 allows remote attackers to cause a denial of service abort data collection for node via a plugin that uses "multigraph" as a multigraph service name...

4.3CVSS6.8AI score0.01846EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:49 a.m.2 views

SUSE CVE-2017-6188

Munin before 2.999.6 has a local file write vulnerability when CGI graphs are enabled. Setting multiple upperlimit GET parameters allows overwriting any file accessible to the www-data user...

5.5CVSS6.8AI score0.00421EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.8 views

Mageia: Security Advisory (MGASA-2017-0101)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.00421EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.16 views

Mageia: Security Advisory (MGASA-2013-0378)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.6AI score0.02502EPSS
Exploits0References4
CNVD
CNVD
added 2021/06/10 12:0 a.m.10 views

Unauthorized Access Vulnerability in Munin

Munin is a great easy to install and setup monitoring software that monitors core system resources including memory, disk, CPU usage, server applications such as MySQL, Apache, and Squid, and more. Munin suffers from an unauthorized access vulnerability that can be exploited by attackers to obtai...

6.8AI score
Exploits0
NVD
NVD
added 2020/01/24 11:15 a.m.17 views

CVE-2019-3694

A Symbolic Link Symlink Following vulnerability in the packaging of munin in openSUSE Factory, Leap 15.1 allows local attackers to escalate from user munin to root. This issue affects: openSUSE Factory munin version 2.0.49-4.2 and prior versions. openSUSE Leap 15.1 munin version 2.0.40-lp151.1.1...

7.8CVSS7.5AI score0.00418EPSS
Exploits0References1
OSV
OSV
added 2020/01/24 11:15 a.m.4 views

CVE-2019-3694

A Symbolic Link Symlink Following vulnerability in the packaging of munin in openSUSE Factory, Leap 15.1 allows local attackers to escalate from user munin to root. This issue affects: openSUSE Factory munin version 2.0.49-4.2 and prior versions. openSUSE Leap 15.1 munin version 2.0.40-lp151.1.1...

7.8CVSS7.1AI score0.00418EPSS
Exploits0References1
Prion
Prion
added 2020/01/24 11:15 a.m.28 views

Design/Logic Flaw

A Symbolic Link Symlink Following vulnerability in the packaging of munin in openSUSE Factory, Leap 15.1 allows local attackers to escalate from user munin to root. This issue affects: openSUSE Factory munin version 2.0.49-4.2 and prior versions. openSUSE Leap 15.1 munin version 2.0.40-lp151.1.1...

7.2CVSS7.5AI score0.00418EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/24 10:50 a.m.22 views

CVE-2019-3694 Local privilege escalation from munin to root in the packaging of munin

A Symbolic Link Symlink Following vulnerability in the packaging of munin in openSUSE Factory, Leap 15.1 allows local attackers to escalate from user munin to root. This issue affects: openSUSE Factory munin version 2.0.49-4.2 and prior versions. openSUSE Leap 15.1 munin version 2.0.40-lp151.1.1...

7.7CVSS7.6AI score0.00418EPSS
Exploits0References1
CVE
CVE
added 2020/01/24 10:50 a.m.51 views

CVE-2019-3694

CVE-2019-3694 is a local privilege-escalation due to a Symbolic Link (Symlink) Following issue in the packaging of openSUSE Munin. Affected: openSUSE Factory Munin 2.0.49-4.2 and prior versions openSUSE Leap 15.1 Munin 2.0.40-lp151.1.1 and prior versionsRoot cause: vulnerable packaging workflow a...

7.8CVSS7.5AI score0.00418EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2020/01/24 12:0 a.m.6 views

PT-2020-10913 · Opensuse · Munin

Name of the Vulnerable Software and Affected Versions: openSUSE Factory munin versions 2.0.49-4.2 and prior versions openSUSE Leap 15.1 munin versions 2.0.40-lp151.1.1 and prior versions Description: A Symbolic Link Symlink Following issue in the packaging of munin allows local attackers to...

7.8CVSS7.6AI score0.00418EPSS
Exploits0References2
NVD
NVD
added 2019/08/05 1:15 p.m.23 views

CVE-2017-18470

cPanel before 62.0.4 has a fixed password for the Munin MySQL test account SEC-196...

8.8CVSS8.8AI score0.00979EPSS
Exploits0References1
OSV
OSV
added 2019/08/05 1:15 p.m.4 views

CVE-2017-18470

cPanel before 62.0.4 has a fixed password for the Munin MySQL test account SEC-196...

8.8CVSS5.8AI score0.00979EPSS
Exploits0References1
Prion
Prion
added 2019/08/05 1:15 p.m.15 views

Default credentials

cPanel before 62.0.4 has a fixed password for the Munin MySQL test account SEC-196...

4CVSS8.7AI score0.00979EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/05 12:41 p.m.21 views

CVE-2017-18470

cPanel before 62.0.4 has a fixed password for the Munin MySQL test account SEC-196...

8.8AI score0.00979EPSS
Exploits0References1
CVE
CVE
added 2019/08/05 12:41 p.m.58 views

CVE-2017-18470

CVE-2017-18470 affects cPanel prior to 62.0.4, where the Munin MySQL test account used a fixed password. Red Hat and NVD entries corroborate this description. Impact stated in sources centers on credential exposure due to a fixed/default credential for the Munin test account; no additional exploi...

8.8CVSS8.7AI score0.00979EPSS
Exploits0References1Affected Software1
ArchLinux
ArchLinux
added 2019/05/06 12:0 a.m.19 views

[ASA-201905-1] munin: arbitrary file overwrite

Arch Linux Security Advisory ASA-201905-1 ========================================= Severity: High Date : 2019-05-06 CVE-ID : CVE-2017-6188 Package : munin Type : arbitrary file overwrite Remote : Yes Link : https://security.archlinux.org/AVG-953 Summary ======= The package munin before version...

5.5CVSS2.1AI score0.00421EPSS
Exploits0References5
Rows per page
Query Builder