Lucene search
K

20 matches found

OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.24 views

Debian: Security Advisory (DLA-60-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7.6AI score0.59546EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2014-0186)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.8AI score0.03134EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2018/12/27 12:0 a.m.112 views

Debian: Security Advisory (DLA-1615-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.59546EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2018/12/27 12:0 a.m.36 views

Debian DLA-1615-1 : nagios3 security update

Several issues were corrected in nagios3, a monitoring and management system for hosts, services and networks. CVE-2018-18245 Maximilian Boehner of usd AG found a cross-site scripting XSS vulnerability in Nagios Core. This vulnerability allows attackers to place malicious JavaScript code into the...

7.8CVSS6.6AI score0.59546EPSS
Exploits10References7
Debian
Debian
added 2018/12/24 6:11 p.m.127 views

[SECURITY] [DLA 1615-1] nagios3 security update

Package : nagios3 Version : 3.5.1.dfsg-2+deb8u1 CVE ID : CVE-2013-7108 CVE-2013-7205 CVE-2014-1878 CVE-2016-9566 CVE-2018-18245 Debian Bug : 771466 823721 917138 Several issues were corrected in nagios3, a monitoring and management system for hosts, services and networks. CVE-2018-18245 Maximilia...

7.8CVSS8.5AI score0.59546EPSS
Exploits10
OpenVAS
OpenVAS
added 2017/06/08 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-3253-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.9AI score0.59546EPSS
Exploits9References3
Tenable Nessus
Tenable Nessus
added 2017/06/08 12:0 a.m.63 views

Ubuntu 14.04 LTS / 16.04 LTS : Nagios regression (USN-3253-2)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3253-2 advisory. USN-3253-1 fixed vulnerabilities in Nagios. The update prevented log files from being displayed in the web interface. This update fixes the problem. W...

5.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/04/04 12:0 a.m.49 views

Ubuntu 14.04 LTS / 16.04 LTS : Nagios vulnerabilities (USN-3253-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3253-1 advisory. It was discovered that Nagios incorrectly handled certain long strings. A remote authenticated attacker could use this issue to cause Nagios ...

7.8CVSS7.5AI score0.59546EPSS
Exploits9References5
OpenVAS
OpenVAS
added 2017/04/04 12:0 a.m.58 views

Ubuntu: Security Advisory (USN-3253-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.9AI score0.59546EPSS
Exploits9References2
Debian
Debian
added 2016/05/07 7:25 p.m.29 views

[SECURITY] [DLA 461-1] nagios3 security update

Package : nagios3 Version : 3.4.1-3+deb7u2 CVE ID : CVE-2014-1878 A stack-based buffer overflow in the cmdsubmitf function in cgi/cmd.c in Nagios, a monitoring and management system for hosts, services and networks, allowed remote attackers to cause a denial of service segmentation fault via a lo...

5CVSS7.7AI score0.03134EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/03/26 12:0 a.m.33 views

Debian DLA-60-1 : icinga security update

Two fixes for the Classic UI : - fix off-by-one memory access in processcgivars CVE-2013-7108 - prevent possible buffer overflows in cmd.cgi CVE-2014-1878 NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to...

5.5CVSS7.7AI score0.59546EPSS
Exploits0References4
Debian
Debian
added 2014/09/24 4:14 p.m.29 views

[SECURITY] [DLA 60-1] icinga security update

Package : icinga Version : 1.0.2-2+squeeze2 CVE ID : CVE-2013-7108 CVE-2014-1878 Two fixes for the Classic UI: - fix off-by-one memory access in processcgivars CVE-2013-7108 - prevent possible buffer overflows in cmd.cgi CVE-2014-1878...

5.5CVSS7.3AI score0.59546EPSS
Exploits0
OSV
OSV
added 2014/09/24 12:0 a.m.35 views

DLA-60-1 icinga - security update

Bulletin has no description...

5.5CVSS7.6AI score0.59546EPSS
Exploits0
securityvulns
securityvulns
added 2014/06/14 12:0 a.m.67 views

[SECURITY] [DSA 2956-1] icinga security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2956-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 11, 2014 http://www.debian.org/security/faq -...

6.8CVSS2.6AI score0.59546EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.31 views

openSUSE Security Update : nagios (openSUSE-SU-2014:0516-1)

Nagios was updated to fix a stack-based buffer overflow in the cmdsubmitf function in the CGI handler. CVE-2014-1878 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-291. The text...

5CVSS7.8AI score0.03134EPSS
Exploits0References3
Debian
Debian
added 2014/06/11 2:34 p.m.29 views

[SECURITY] [DSA 2956-1] icinga security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2956-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 11, 2014 http://www.debian.org/security/faq -...

6.8CVSS8.6AI score0.59546EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/04/25 12:0 a.m.35 views

SuSE 11.3 Security Update : nagios (SAT Patch Number 9071)

The monitoring service Nagios has been updated to fix potential buffer overflows in its CGI scripts. CVE-2014-1878 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyrig...

5CVSS7.2AI score0.03134EPSS
Exploits0References3
Mageia
Mageia
added 2014/04/23 4:1 p.m.36 views

Updated nagios packages fix CVE-2014-1878

Updated nagios packages fix security vulnerability: Stack-based buffer overflow in the cmdsubmitf function in cgi/cmd.c in Nagios Core, possibly 4.0.3rc1 and earlier, and Icinga before 1.8.6, 1.9 before 1.9.5, and 1.10 before 1.10.3 allows remote attackers to cause a denial of service segmentatio...

5CVSS7.8AI score0.03134EPSS
Exploits0References2
Cvelist
Cvelist
added 2014/02/28 3:0 p.m.25 views

CVE-2014-1878

Stack-based buffer overflow in the cmdsubmitf function in cgi/cmd.c in Nagios Core, possibly 4.0.3rc1 and earlier, and Icinga before 1.8.6, 1.9 before 1.9.5, and 1.10 before 1.10.3 allows remote attackers to cause a denial of service segmentation fault via a long message to cmd.cgi...

7.6AI score0.03134EPSS
Exploits0References7
CVE
CVE
added 2014/02/28 3:0 p.m.86 views

CVE-2014-1878

The CVE-2014-1878 entry concerns a stack-based buffer overflow in the cmd_submitf function of cgi/cmd.c used by Nagios Core (affected up to 4.0.3rc1) and Icinga (before 1.8.6, 1.9 before 1.9.5, 1.10 before 1.10.3). The root cause is improper bounds checking when handling a long message sent to cm...

5CVSS7.5AI score0.03134EPSS
Exploits0References7Affected Software2
Rows per page
Query Builder