2 matches found
CVE-2022-37108
An injection vulnerability in the syslog-ng configuration wizard in Securonix Snypr 6.4 allows an application user with the "Manage Ingesters" permission to execute arbitrary code on remote ingesters by appending arbitrary text to text files that are executed by the system, such as users' crontab...
CVE-2022-37108
Summary: CVE-2022-37108 is an injection vulnerability in the syslog-ng configuration wizard of Securonix Snypr 6.4. An application user with the Manage Ingesters permission can coerce remote ingesters to execute arbitrary code by appending text to system-executed files (e.g., crontab entries). Te...