4 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-22496
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Netdata is an open source option for real-time infrastructure monitoring and troubleshooting. An attacker with the ability to establish a streaming connection c...
CVE-2023-22496 Netdata vulnerable to command injection
Netdata is an open source option for real-time infrastructure monitoring and troubleshooting. An attacker with the ability to establish a streaming connection can execute arbitrary commands on the targeted Netdata agent. When an alert is triggered, the function healthalarmexecute is called. This...
CVE-2023-22496 Netdata vulnerable to command injection
Netdata is an open source option for real-time infrastructure monitoring and troubleshooting. An attacker with the ability to establish a streaming connection can execute arbitrary commands on the targeted Netdata agent. When an alert is triggered, the function healthalarmexecute is called. This...
CVE-2023-22496
CVE-2023-22496 affects Netdata. An attacker able to establish a streaming connection can manipulate a health alert’s non-sanitized argument (registry_hostname) to cause the Netdata agent to execute arbitrary commands on the remote host as the netdata user. This is triggered during health_alarm_ex...