Lucene search
+L

446 matches found

Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.16 views

PT-2026-34833

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the haproxy section save interface presents a vulnerability that could lead to remote code execution due to path traversal and writing into scheduled tasks. Version 8.2.6.4 fixes the...

9.3CVSS6.4AI score0.0082EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.14 views

PT-2026-34834

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the oldconfig parameter in the haproxy section save interface has an arbitrary file read vulnerability. Version 8.2.6.4 fixes the issue...

8.7CVSS5.8AI score0.00428EPSS
Exploits1References4
OSV
OSV
added 2026/04/20 8:24 p.m.3 views

CVE-2026-33431 Roxy-WI Vulnerable to Authenticated Arbitrary File Read via Path Traversal in Config Version Viewer

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the POST /config//show API endpoint accepts a configver parameter that is directly appended to a base directory path to construct a local file path, which is subsequently opened and it...

7.1CVSS6.1AI score0.00392EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/04/20 12:0 a.m.6 views

PT-2026-33845

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the POST /config//show API endpoint accepts a configver parameter that is directly appended to a base directory path to construct a local file path, which is subsequently opened and it...

7.1CVSS5.9AI score0.00392EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/04/20 12:0 a.m.13 views

PT-2026-33846

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions up to and including 8.2.8.2, when LDAP authentication is enabled, Roxy-WI constructs an LDAP search filter by directly concatenating the user-supplied login username into the filter string without...

8.7CVSS5.7AI score0.00423EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/04/20 12:0 a.m.10 views

Roxy-WI 安全漏洞

Roxy-WI is an open-source web interface designed for managing Haproxy, Nginx, and Keepalived servers. Roxy-WI versions 8.2.8.2 and earlier contain security vulnerabilities. These vulnerabilities stem from the lack of escaping special characters in usernames during LDAP authentication, which could...

9.1CVSS5.8AI score0.00423EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: keepalived (CVE-2024-41184)

The version of keepalived installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-41184 advisory. - In the vrrpipsetshandler handler fglobalparser.c of keepalived through 2.3.1, an integer overflow can...

9.8CVSS5.7AI score0.00616EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : keepalived-2.1.5-8.el8.ML.1 (AXSA:2022-3396:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-3396:02 advisory. keepalived: dbus access control bypass CVE-2021-44225 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

5.5CVSS5.6AI score0.01159EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

MiracleLinux 7 : keepalived-1.3.5-16.el7 (AXSA:2019-4318:03)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2019-4318:03 advisory. keepalived: Improper pathname validation allows for overwrite of arbitrary filenames via symlinks CVE-2018-19044 Tenable has extracted the preceding...

4.7CVSS6.6AI score0.00501EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

MiracleLinux 7 : keepalived-1.3.5-8.el7 (AXSA:2019-3747:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2019-3747:01 advisory. Security Fix - keepalived DoSCVE-2018-19115 CVEJVNhttp://jvndb.jvn.jp/ Tenable has extracted the preceding description block directly from the MiracleLinux...

9.8CVSS7.8AI score0.03746EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 9 : keepalived-2.2.8-4.el9_5 (AXSA:2025-9635:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-9635:02 advisory. keepalived: Integer overflow vulnerability in vrrpipsetshandler CVE-2024-41184 Tenable has extracted the preceding description block directly from the...

9.8CVSS7.6AI score0.00616EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.6 views

MiracleLinux 8 : keepalived-2.1.5-10.el8_10 (AXSA:2025-9597:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-9597:01 advisory. keepalived: Integer overflow vulnerability in vrrpipsetshandler CVE-2024-41184 Tenable has extracted the preceding description block directly from the...

9.8CVSS7.6AI score0.00616EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2025/11/01 10:54 a.m.12 views

Astra Linux – Vulnerability in Keepalived

The vulnerability of the Keepalived network traffic balancing system is related to unvalidated array indexing. Exploiting this vulnerability allows an attacker to cause service failures...

1.9CVSS5.5AI score
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-1782

Malware in sbrugna...

3.6CVSS6.1AI score0.00367EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-10763

Malware in sbrugna...

7.5CVSS7.6AI score0.02377EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-10828

Malware in sbrugna...

9.8CVSS9.2AI score0.03746EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-10764

Malware in sbrugna...

4.7CVSS5AI score0.00366EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-10762

Malware in sbrugna...

4.7CVSS5AI score0.00501EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-32620

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00902EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-31074

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.01159EPSS
Exploits0References11
Rows per page
Query Builder