Lucene search
K

4 matches found

0day.today
0day.today
added 2018/09/06 12:0 a.m.132 views

Opsview Monitor 5.x Command Execution Vulnerability

Exploit for multiple platform in category web applications Opsview Monitor Multiple Vulnerabilities 1. Advisory Information Title: Opsview Monitor Multiple Vulnerabilities Advisory ID: CORE-2018-0008 Advisory URL: http://www.coresecurity.com/advisories/opsview-monitor-multiple-vulnerabilities Dat...

0.3AI score0.32692EPSS
Exploits9
NVD
NVD
added 2018/09/05 9:29 p.m.16 views

CVE-2018-16146

The web management console of Opsview Monitor 5.4.x before 5.4.2 provides functionality accessible by an authenticated administrator to test notifications that are triggered under certain configurable events. The value parameter is not properly sanitized, leading to arbitrary command injection wi...

9CVSS7.3AI score0.06197EPSS
Exploits3References3
CVE
CVE
added 2018/09/05 9:0 p.m.42 views

CVE-2018-16146

Opsview Monitor 5.x (5.4.x) prior to 5.4.2 contains CVE-2018-16146 where an authenticated administrator can trigger command execution by abusing the web management console test-notification feature. The issue is caused by improper sanitization of the value parameter, enabling arbitrary command in...

9CVSS7.8AI score0.06197EPSS
Exploits3References3Affected Software1
ThreatPost
ThreatPost
added 2018/09/04 8:21 p.m.28 views

Multiple Remote Code-Execution Flaws Patched in Opsview Monitor

A slew of vulnerabilities have been disclosed in Opsview Monitor a proprietary IT monitoring software for networks and applications, which could enable remote code-execution, command-execution and local privilege-escalation. A total of five flaws CVE-2018-16148, CVE-2018-16147, CVE-2018-16146,...

10CVSS1.1AI score0.32692EPSS
Exploits7References1
Rows per page
Query Builder