3 matches found
CVE-2020-35488
The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers to cause a denial of service daemon crash via a crafted Syslog payload to the Syslog service. This attack requires a specific configuration. Also, the name of the directory created must use a Syslo...
CVE-2020-35488
NXLog Community Edition 2.10.2150 is affected via the fileop module, where a crafted Syslog payload can cause a daemon crash (DoS) when the Syslog field is used to name a directory. Exploitation requires a specific configuration (CreateDir enabled and a Syslog-derived directory name), as shown by...
Nxlog Community Edition 2.10.2150 - DoS (Poc)
Exploit Title: Nxlog Community Edition 2.10.2150 - DoS Poc Date: 15/12/2020 Exploit Author: Guillaume PETIT Vendor Homepage: https://nxlog.co Software Link: https://nxlog.co/products/nxlog-community-edition/download Version: 2.10.2150 Tested on: Linux Debian 10 && Windows Server 2019 CVE:...