Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2024/09/07 12:0 a.m.20 views

Debian dla-3880 : amanda-client - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3880 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3880-1 [email protected]...

7.8CVSS6.2AI score0.01246EPSS
Exploits4References10
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.21 views

RHEL 8 : amanda (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - amanda: runtar: crafted arguments can lead to local privilege escalation CVE-2022-37705 - In Amanda 3.5.1...

6.7CVSS8.3AI score0.01246EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.35 views

RHEL 6 : amanda (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - amanda: Improper argument checking for runtar.c CVE-2023-30577 - In Amanda 3.5.1, an information leak...

6.7AI score0.01246EPSS
Exploits4References4
CVE
CVE
added 2023/04/16 12:0 a.m.137 views

CVE-2022-37704

Summary of CVE-2022-37704 : Amanda 3.5.1 contains a privilege escalation in the SUID binary /lib/amanda/rundump, which can cause root execution of /usr/sbin/dump with attacker-controlled arguments. This can enable local privilege escalation, and may also lead to denial of service and information ...

6.7CVSS6.5AI score0.00526EPSS
Exploits1References12Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/16 12:0 a.m.5 views

CVE-2022-37704

Amanda 3.5.1 allows privilege escalation from the regular user backup to root. The SUID binary located at /lib/amanda/rundump will execute /usr/sbin/dump as root with controlled arguments from the attacker which may lead to escalation of privileges, denial of service, and information disclosure...

6.8AI score0.00526EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2023/04/03 12:0 a.m.21 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : amanda regression (USN-5966-3)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5966-3 advisory. USN-5966-1 fixed vulnerabilities in amanda. Unfortunately that update caused a regression and was reverted in USN-5966-2. This...

6.7CVSS6.1AI score0.01246EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2023/04/03 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-5966-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.7CVSS5.4AI score0.01246EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2023/04/03 12:0 a.m.20 views

Fedora: Security Advisory for amanda (FEDORA-2023-e295804b3d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.7CVSS5.4AI score0.01246EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2023/04/02 12:0 a.m.33 views

Fedora 38 : amanda (2023-3d0619d767)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-3d0619d767 advisory. Update to version 3.5.3, which contains fixes for three minor security issues as well as other minor bugfixes...

6.7CVSS6.2AI score0.01246EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2023/03/24 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-5966-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.7CVSS5.4AI score0.01246EPSS
Exploits3References3
Ubuntu
Ubuntu
added 2023/03/23 6:20 a.m.56 views

USN-5966-1: amanda vulnerabilities

Maher Azzouzi discovered an information disclosure vulnerability in the calcsize binary within amanda. calcsize is a suid binary owned by root that could possibly be used by a malicious local attacker to expose sensitive file system information. CVE-2022-37703 Maher Azzouzi discovered a privilege...

6.7CVSS6.2AI score0.01246EPSS
Exploits3
OSV
OSV
added 2023/03/14 1:49 p.m.8 views

OPENSUSE-SU-2023:0069-1 Security update for amanda

This update for amanda fixes the following issues: - CVE-2022-37704: fix privilege escalation via rundump boo1208033, ghzmanda/amanda195 - CVE-2022-37705: fix privilege escalation via runtar suid binary boo1208032, ghzmanda/amanda194...

6.7CVSS6.8AI score0.01246EPSS
Exploits3References5
OSV
OSV
added 2023/03/10 11:5 a.m.6 views

OESA-2023-1149 amanda security update

AMANDA, the Advanced Maryland Automatic Network Disk Archiver, is a backup system that allows the administrator of a LAN to set up a single master backup server to back up multiple hosts to a single large capacity tape or disk drive. Amanda uses native tools such as GNUtar, dump for backup and ca...

6.7CVSS7.2AI score0.01246EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2023/02/22 12:0 a.m.15 views

Debian: Security Advisory (DLA-3330-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.7CVSS6.5AI score0.00526EPSS
Exploits1References3
Debian
Debian
added 2023/02/21 10:0 p.m.18 views

[SECURITY] [DLA 3330-1] amanda security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3330-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb February 21, 2023 https://wiki.debian.org/LTS -...

6.7CVSS6.8AI score0.00526EPSS
Exploits1
Rows per page
Query Builder