PT-2025-43928

Name of the Vulnerable Software and Affected Versions Centreon Infra Monitoring versions 23.10.0 through 23.10.15 Centreon Infra Monitoring versions 24.04.0 through 24.04.9 Centreon Infra Monitoring versions 24.10.0 through 24.10.6 Description A flaw exists in Centreon Infra Monitoring MBI module...

EUVD-2019-14199

Malware in sbrugna...

APM Server 8.16.1 Security Update (ESA-2024-41)

APM Server Insertion of Sensitive Information into Log File ESA-2024-41 APM server logs could contain parts of the document body from a partially failed bulk index request. Depending on the nature of the document, this could disclose sensitive information in APM Server error logs. Affected...

Elastic APM Server 安全漏洞

Elastic APM Server is a lightweight Agent from the Dutch company Elastic. A security vulnerability exists in Elastic APM Server that stems from a partially failed indexing request leading to the disclosure of sensitive information...

[SECURITY] Fedora 40 Update: zabbix-6.0.39-1.fc40

Zabbix is software that monitors numerous parameters of a network and the health and integrity of servers. Zabbix uses a flexible notification mechanism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. Zabbix offers...

APM Server 8.12.1 Security Update (ESA-2024-03)

APM Server Insertion of Sensitive Information into Log File ESA-2024-03 An issue was discovered whereby APM Server could log at ERROR level, a response from Elasticsearch indicating that indexing the document failed and that response would contain parts of the original document. Depending on the...

SUSE CVE-2016-3461

Unspecified vulnerability in the MySQL Enterprise Monitor component in Oracle MySQL 3.0.25 and earlier and 3.1.2 and earlier allows remote administrators to affect confidentiality, integrity, and availability via vectors related to Monitoring: Server...

GHSA-P373-JQFM-J6WR Shinken Solutions Shinken Monitoring vulnerable to Incorrect Access Control

Shinken Solutions Shinken Monitoring Version 2.4.3 affected is vulnerable to Incorrect Access Control. The SafeUnpickler class found in shinken/safepickle.py implements a weak authentication scheme when unserializing objects passed from monitoring nodes to the Shinken monitoring server...

Exploit for Improper Authentication in Shinken-Monitoring Shinken_Monitoring

CVE-2022-37298: RCE in Shinken Monitoring Versions affecte...

Deserialization of arbitrary data leads to RCE

Description LibreNMS includes support for monitoring applications, one of which is memcached. When polling for memcached, the data returned by the agent to the LibreNMS server is not verified before it is deserialized. Because LibreNMS has quite a few dependencies, it is easy to find a working...

Razer: SQL injection in Razer Gold List Admin at /lists/index.php via the `list[]` parameter.

The tester discovered a monitoring server in a Razer Gold environment was running legacy software with a SQL injection vulnerability. Razer thanks the tester for his diligence and helping keep Razer's customer data secure. A Razer Gold asset suffered from an SQL injection due to an outdated...

Ajenti Remote Command Execution Vulnerability

Ajenti is a web control panel written in python and angularjs. Ajenti suffers from a remote command execution vulnerability. An attacker can execute commands on a local monitoring server while testing...

ServersCheck Monitoring Server Detection (HTTP)

HTTP based detection of the ServersCheck Monitoring Server. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

Oracle MySQL Enterprise Monitor Remote Vulnerability (CNVD-2017-06479)

Oracle MySQL is an open source relational database management system from Oracle Corporation. The database system is characterized by high performance, low cost and good reliability.MySQL Enterprise Monitor is an enterprise-level monitoring software designed for MySQL database. A security...

MySQL Enterprise Monitor 3.1.x < 3.1.7.8023 / 3.2.x < 3.2.7.1204 / 3.3.x < 3.3.3.1199 Multiple Vulnerabilities (April 2017 CPU)

According to its self-reported version, the MySQL Enterprise Monitor application running on the remote host is 3.1.x prior to 3.1.7.8023, 3.2.x prior to 3.2.7.1204, or 3.3.x prior to 3.3.3.1199. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists in...

Description of the cumulative update for Office Communications Server 2007 R2, Core Components: September 2011

Describes the cumulative update for Office Communications Server 2007 R2, Core Component that is dated September 2011.SummaryThis article describes the cumulative update for Microsoft Office Communications Server 2007 R2, Core Component that is dated September 2011. ResolutionUpdate package...

Shopify: Authentication Bypass on monitoring server

Hello, This issue has the same impact as this one: 143482. But the fix is not complete, there is a shopify subdomain VPN server where you still can connect your google account. This should be hide and protected. So you guys need to change this so that only shopify.com Google accounts are accepted...

Unspecified Vulnerability in Oracle MySQL Enterprise Monitor Component

Oracle MySQL is an open source relational database management system. A security vulnerability exists in the Monitoring: Server subcomponent of the MySQL Enterprise Monitor component of Oracle MySQL, which can be exploited by remote attackers to compromise the confidentiality, integrity, and...

CVE-2016-3461

Unspecified vulnerability in the MySQL Enterprise Monitor component in Oracle MySQL 3.0.25 and earlier and 3.1.2 and earlier allows remote administrators to affect confidentiality, integrity, and availability via vectors related to Monitoring: Server...

CVE-2013-5467

Monitoring Agent for UNIX Logs 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP09, and 6.2.3 through FP04 and Monitoring Server ms and Shared Libraries ax 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP08, 6.2.3 through FP01, and 6.3.0 through FP01 in IBM Tivoli Monitoring ITM on...