Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

CNNVD
CNNVDadded 2024/04/12 12:0 a.m.1 views

Netdata 安全漏洞

Netdata is a high-fidelity infrastructure monitoring and troubleshooting application from the Netdata open source. A security vulnerability exists in Netdata. An attacker could exploit the vulnerability to run arbitrary programs with root privileges...

8.8CVSS6.5AI score0.00576EPSS
Exploits15References3
SUSE CVE
SUSE CVEadded 2023/02/15 4:14 a.m.4 views

SUSE CVE-2019-9834

The Netdata web application through 1.13.0 allows remote attackers to inject their own malicious HTML code into an imported snapshot, aka HTML Injection. Successful exploitation will allow attacker-supplied HTML to run in the context of the affected browser, potentially allowing the attacker to...

6.1CVSS7.1AI score0.0653EPSS
Exploits1References3
OSV
OSVadded 2023/01/14 1:15 a.m.2 views

DEBIAN-CVE-2023-22496

Netdata is an open source option for real-time infrastructure monitoring and troubleshooting. An attacker with the ability to establish a streaming connection can execute arbitrary commands on the targeted Netdata agent. When an alert is triggered, the function healthalarmexecute is called. This...

9.8CVSS8.6AI score0.01884EPSS
Exploits1References1
CNNVD
CNNVDadded 2023/01/14 12:0 a.m.3 views

Netdata 命令注入漏洞

Netdata is a high-fidelity infrastructure monitoring and troubleshooting application open-sourced by Netdata. Netdata is vulnerable to a command injection vulnerability that stems from the fact that an attacker who is able to establish a streaming connection can execute arbitrary commands on the...

9.8CVSS9.2AI score0.01884EPSS
Exploits1References2
CNNVD
CNNVDadded 2023/01/14 12:0 a.m.2 views

Netdata 授权问题漏洞

Netdata is a high-fidelity infrastructure monitoring and troubleshooting application open-sourced by Netdata.Netdata suffers from an authorization issue vulnerability that stems from the fact that anyone with access to the Netdata agent can access its MACHINEGUID.No details of the vulnerability a...

9.1CVSS7.5AI score0.00116EPSS
Exploits1References3
CNVD
CNVDadded 2019/06/19 12:0 a.m.1 views

Netdata HTTP Header Injection Vulnerability

Netdata is a real-time Linux performance monitoring tool. Netdata 1.10.0 suffers from an HTTP Header injection vulnerability. An attacker can exploit this vulnerability via the api/v1/data filename parameter to perform HTTP Header injection attacks...

6.1CVSS7.3AI score0.00268EPSS
Exploits1References1
OSV
OSVadded 2019/06/18 4:15 p.m.2 views

DEBIAN-CVE-2018-18839

An issue was discovered in Netdata 1.10.0. Full Path Disclosure FPD exists via api/v1/alarms. NOTE: the vendor says "is intentional...

5.3CVSS7.5AI score0.00429EPSS
Exploits0References1
OSV
OSVadded 2019/06/18 4:15 p.m.1 views

UBUNTU-CVE-2018-18836

An issue was discovered in Netdata 1.10.0. JSON injection exists via the api/v1/data tqx parameter because of webclientapirequestv1data in web/api/webapiv1.c...

6.5CVSS6.9AI score0.00209EPSS
Exploits1References8
OSV
OSVadded 2019/03/15 5:29 p.m.4 views

DEBIAN-CVE-2019-9834

The Netdata web application through 1.13.0 allows remote attackers to inject their own malicious HTML code into an imported snapshot, aka HTML Injection. Successful exploitation will allow attacker-supplied HTML to run in the context of the affected browser, potentially allowing the attacker to...

6.1CVSS7AI score0.0653EPSS
Exploits1References1
Rows per page
Query Builder