112 matches found
EUVD-2017-5815
Malware in sbrugna...
EUVD-2018-9981
Malware in sbrugna...
EUVD-2018-5395
Malware in sbrugna...
EUVD-2018-5396
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2017-12847
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary process...
Linux Distros Unpatched Vulnerability : CVE-2013-7108
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple off-by-one errors in Nagios Core 3.5.1, 4.0.2, and earlier, and Icinga before 1.8.5, 1.9 before 1.9.4, and 1.10 before 1.10.2 allow remote authenticate...
Linux Distros Unpatched Vulnerability : CVE-2018-18245
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nagios Core 4.4.2 has XSS via the alert summary reports of plugin results, as demonstrated by a SCRIPT element delivered by a modified checkload plugin to NRPE...
Linux Distros Unpatched Vulnerability : CVE-2020-35269
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross-Site Request Forgery CSRF in many functions, like adding deleting for hosts or servers...
SUSE CVE-2013-4214
rss-newsfeed.php in Nagios Core 3.4.4, 3.5.1, and earlier, when MAGPIECACHEON is set to 1, allows local users to overwrite arbitrary files via a symlink attack on /tmp/magpiecache...
SUSE CVE-2013-7108
Multiple off-by-one errors in Nagios Core 3.5.1, 4.0.2, and earlier, and Icinga before 1.8.5, 1.9 before 1.9.4, and 1.10 before 1.10.2 allow remote authenticated users to obtain sensitive information from process memory or cause a denial of service crash via a long string in the last key value in...
Nagios XI file inclusion vulnerability
Nagios XI is a commercial monitoring solution built on Nagios Core, including dashboards, web-based configuration, advanced reporting, and rich data visualization.A local file inclusion vulnerability exists in versions of Nagios XI prior to 5.8.5. The vulnerability stems from an improper...
Nagios XI代码问题漏洞
Nagios XI is a commercial monitoring solution built on Nagios Core, including dashboards, web-based configuration, advanced reporting and rich data visualization. An arbitrary file upload vulnerability exists in Nagios XI 5.7.5 and earlier versions. The vulnerability stems from improper validatio...
CVE-2020-35269
A flaw was found in the Nagios Core application, where it is vulnerable to Site-Wide Cross-Site Request Forgery CSRF in many functions, such as adding – deleting for hosts or servers. The vulnerability is due to insufficient CSRF protections for the web UI on an affected version. This flaw allows...
CVE-2020-35269
Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross-Site Request Forgery CSRF in many functions, like adding – deleting for hosts or servers...
CVE-2020-35269
Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross-Site Request Forgery CSRF in many functions, like adding – deleting for hosts or servers...
CVE-2020-35269
Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross-Site Request Forgery CSRF in many functions, like adding – deleting for hosts or servers...
CVE-2020-35269
CVE-2020-35269 affects Nagios Core 4.2.4. The vulnerability is a Site-Wide Cross-Site Request Forgery (CSRF) in the web UI that enables CSRF-like actions across many functions (e.g., adding/deleting hosts or servers). Root cause cited: insufficient CSRF protections in the affected UI. Impact rang...
CVE-2020-35269
Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross-Site Request Forgery CSRF in many functions, like adding – deleting for hosts or servers...
Nagios Core < 4.4.6 Multiple Vulnerabilities
Nagios Core is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nagios:nagios"; ifdescription...
CVE-2018-13458
qhcore in Nagios Core 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attackers to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...