5 matches found
📄 NagVis 1.9.33 Arbitrary File Read
NagVis version 1.9.33 suffers from an arbitrary file read vulnerability. Exploit Title: NagVis 1.9.33 - Arbitrary File Read Date: 03/12/2024 Exploit Author: David Rodríguez a.k.a. xerosec Vendor Homepage: https://www.nagvis.org/ Software Link: https://www.nagvis.org/downloads/archive Version:...
NagVis 1.9.33 - Arbitrary File Read
Exploit Title: NagVis 1.9.33 - Arbitrary File Read Date: 03/12/2024 Exploit Author: David Rodríguez a.k.a. xerosec Vendor Homepage: https://www.nagvis.org/ Software Link: https://www.nagvis.org/downloads/archive Version: 1.9.33 Tested on: Linux CVE: CVE-2022-46945 import requests import argparse...
Linux Distros Unpatched Vulnerability : CVE-2022-46945
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nagvis before 1.9.34 was discovered to contain an arbitrary file read vulnerability via the component /core/classes/NagVisHoverUrl.php. CVE-2022-46945 Note that...
CVE-2022-46945
Nagvis before 1.9.34 was discovered to contain an arbitrary file read vulnerability via the component /core/classes/NagVisHoverUrl.php...
CVE-2022-46945
CVE-2022-46945 affects NagVis prior to 1.9.34, allowing an arbitrary file read via /core/classes/NagVisHoverUrl.php. Affected software is NagVis; root cause is improper file read handling in that component. Impact is exposure of sensitive files (confidentiality). Remediation: upgrade to 1.9.34 or...