Lucene search
K

21 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 4: cockpit (TSSA-2025:0181)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0181 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.3CVSS7.2AI score0.01181EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 3: cockpit (TSSA-2024:0238)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0238 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.3CVSS7.2AI score0.01181EPSS
Exploits0References2
OSV
OSV
added 2024/06/14 1:59 p.m.23 views

RLSA-2024:3667 Moderate: cockpit security update

Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, and more. Security Fixes: cockpit: command injection when deleting a sosreport with a crafted...

7.3CVSS7.4AI score0.01181EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2024/06/14 1:59 p.m.26 views

cockpit security update

An update is available for cockpit. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Cockpit enables users to administer GNU/Linux servers using a web browser. It...

7.3CVSS7.3AI score0.01181EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/14 12:0 a.m.17 views

AlmaLinux 9 : cockpit (ALSA-2024:3843)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:3843 advisory. cockpit: command injection when deleting a sosreport with a crafted name CVE-2024-2947 Tenable has extracted the preceding description block directly from the...

7.3CVSS7.3AI score0.01181EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/12 12:0 a.m.16 views

Oracle Linux 9 : cockpit (ELSA-2024-3843)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-3843 advisory. 311.2-1.0.1 - Replaced upstream urls in documentation with oracle links Orabug: 36528753 - Drop subscription-manager-cockpit requirement for ol Orabug: 34681110...

7.3CVSS7.3AI score0.01181EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/06/11 7:38 p.m.46 views

Moderate: Red Hat Security Advisory: cockpit security update

An update for cockpit is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.3CVSS7.1AI score0.01181EPSS
Exploits0References2
OSV
OSV
added 2024/06/11 12:0 a.m.20 views

ALSA-2024:3843 Moderate: cockpit security update

Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, and more. Security Fixes: cockpit: command injection when deleting a sosreport with a crafted...

7.3CVSS7.2AI score0.01181EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/06/06 8:49 a.m.367 views

Moderate: Red Hat Security Advisory: cockpit security update

An update for cockpit is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.3CVSS7.1AI score0.01181EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2024/06/06 12:0 a.m.369 views

cockpit security update

310.4-1.0.1 - Update documentation links Orabug: 34706402 - Drop subscription-manager-cockpit requirement for ol Orabug: 34681110 - Remove duplicate reference to server in cockpit Orabug: 33862832 - Update documentation links Orabug: 32795691 - Make documentation links point to Oracle Linux...

7.3CVSS6.9AI score0.01181EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/06 12:0 a.m.25 views

AlmaLinux 8 : cockpit (ALSA-2024:3667)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:3667 advisory. cockpit: command injection when deleting a sosreport with a crafted name CVE-2024-2947 Tenable has extracted the preceding description block directly from the...

7.3CVSS7.3AI score0.01181EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/06 12:0 a.m.46 views

RHEL 8 : cockpit (RHSA-2024:3667)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:3667 advisory. Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELin...

7.3CVSS7.4AI score0.01181EPSS
Exploits0References5
OSV
OSV
added 2024/06/06 12:0 a.m.18 views

ALSA-2024:3667 Moderate: cockpit security update

Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, and more. Security Fixes: cockpit: command injection when deleting a sosreport with a crafted...

7.3CVSS7.4AI score0.01181EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/06/06 12:0 a.m.30 views

Moderate: cockpit security update

Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, and more. Security Fixes: cockpit: command injection when deleting a sosreport with a crafted...

7.3CVSS7.5AI score0.01181EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/04/29 12:0 a.m.19 views

Fedora 40 : cockpit (2024-4e95f130fc)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-4e95f130fc advisory. Automatic update for cockpit-314-1.fc40. Changelog for cockpit Thu Mar 28 2024 Packit - 314-1 - Diagnostic reports: Fix command injection...

7.3CVSS7.4AI score0.01181EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/04/18 12:0 a.m.24 views

Debian dsa-5655 : cockpit - security update

The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5655 advisory. - A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege...

7.3CVSS7.2AI score0.01181EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/04/18 12:0 a.m.17 views

Fedora 38 : cockpit (2024-31e83b461d)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-31e83b461d advisory. sosreport: Fix command injection with crafted report names CVE-2024-2947 Tenable has extracted the preceding description block directly from the Fedora...

7.3CVSS7.4AI score0.01181EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/03/30 12:0 a.m.23 views

Fedora 39 : cockpit (2024-6065341780)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-6065341780 advisory. Automatic update for cockpit-314-1.fc39. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

7.3CVSS7.4AI score0.01181EPSS
Exploits0References2
NVD
NVD
added 2024/03/28 7:15 p.m.10 views

CVE-2024-2947

A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer...

7.3CVSS7.2AI score0.01181EPSS
Exploits0References7
OSV
OSV
added 2024/03/28 7:15 p.m.6 views

CVE-2024-2947

A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer...

7.3CVSS7.3AI score0.01181EPSS
Exploits0References7
Rows per page
Query Builder