4 matches found
Opsview Monitor 5.x Command Execution Vulnerability
Exploit for multiple platform in category web applications Opsview Monitor Multiple Vulnerabilities 1. Advisory Information Title: Opsview Monitor Multiple Vulnerabilities Advisory ID: CORE-2018-0008 Advisory URL: http://www.coresecurity.com/advisories/opsview-monitor-multiple-vulnerabilities Dat...
CVE-2018-16146
The web management console of Opsview Monitor 5.4.x before 5.4.2 provides functionality accessible by an authenticated administrator to test notifications that are triggered under certain configurable events. The value parameter is not properly sanitized, leading to arbitrary command injection wi...
CVE-2018-16146
Opsview Monitor 5.x (5.4.x) prior to 5.4.2 contains CVE-2018-16146 where an authenticated administrator can trigger command execution by abusing the web management console test-notification feature. The issue is caused by improper sanitization of the value parameter, enabling arbitrary command in...
Multiple Remote Code-Execution Flaws Patched in Opsview Monitor
A slew of vulnerabilities have been disclosed in Opsview Monitor a proprietary IT monitoring software for networks and applications, which could enable remote code-execution, command-execution and local privilege-escalation. A total of five flaws CVE-2018-16148, CVE-2018-16147, CVE-2018-16146,...