CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

855 matches found

OpenVAS•added 2025/05/07 12:0 a.m.•1 views

Correctly Configure the Log Records of Each Service

Logs should be configured so that important system behaviors and security-related information are recorded by rsyslog. The configuration files /etc/rsyslog.conf and /etc/rsyslog.d/.conf specify the rules for logging and the files for recording specific types of logs. If logging is not configured,...

6.7AI score

Exploits0References4

OpenVAS•added 2025/05/07 12:0 a.m.•2 views

Enable the rsyslog Service

System logs are stored in the memory by default. If the rsyslog service is disabled, system logs cannot be dumped to persistent storage devices and will be lost after the system is restarted. The rsyslog service is used to dump and distribute system logs, supporting the following functions: 1...

6.6AI score

Exploits0References4

OpenVAS•added 2025/05/07 12:0 a.m.•4 views

Correctly Configure the Default File Permission For rsyslog

Log files record system behaviors. The rsyslog log tool records logs in specified files. When the specified log file does not exist in the system, rsyslog creates a log file. The permission of the created log file can be configured in the rsyslog configuration file. The configuration of the defau...

6.4AI score

Exploits0References4

Tenable Nessus•added 2025/03/04 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2014-3634

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service crash, possibly execute arbitrary...

7.5CVSS6.1AI score0.07546EPSS

Exploits1References2

Rosalinux•added 2025/02/24 12:28 p.m.•17 views

Advisory ROSA-SA-2025-2717

Software: rsyslog 8.2102.0 OS: ROSA Virtualization 3.0 packageevrstring: rsyslog-8.2102.0 CVE-ID: CVE-2022-24903 BDU-ID: 2022-04363 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the TCP modules of the Rsyslog log processing software utility is related to writes beyond buffer boundaries in memory...

8.1CVSS7.7AI score0.03553EPSS

Exploits0

Tenable Nessus•added 2024/11/14 12:0 a.m.•6 views

Fedora 37 : rsyslog (2022-f2c4c83cc1)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-f2c4c83cc1 advisory. Automatic update for rsyslog-8.2204.0-1.fc37. Changelog Mon May 9 2022 Attila Lakatos - 8.2204.0-1 - rebase to 8.2204.0 resolves: rhbz1951970 - CVE-2022-2490...

8.1CVSS6.8AI score0.03553EPSS

Exploits0References2

Tenable Nessus•added 2024/10/09 12:0 a.m.•19 views

CentOS 7 : rsyslog (RHSA-2022:4803)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:4803 advisory. - Rsyslog is a rocket-fast system for log processing. Modules for TCP syslog reception have a potential heap buffer overflow when octet-counted framing is used...

8.1CVSS7.5AI score0.03553EPSS

Exploits0References2