CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

SUSE CVE•added 2023/02/15 4:22 a.m.•1 views

SUSE CVE-2018-18836

An issue was discovered in Netdata 1.10.0. JSON injection exists via the api/v1/data tqx parameter because of webclientapirequestv1data in web/api/webapiv1.c...

6.5CVSS7AI score0.00209EPSS

Exploits1References6

NVD•added 2019/06/18 4:15 p.m.•9 views

CVE-2018-18839

An issue was discovered in Netdata 1.10.0. Full Path Disclosure FPD exists via api/v1/alarms. NOTE: the vendor says "is intentional...

5.3CVSS5.2AI score0.00429EPSS

Exploits0References3

OSV•added 2019/06/18 4:15 p.m.•0 views

UBUNTU-CVE-2018-18839

DISPUTED An issue was discovered in Netdata 1.10.0. Full Path Disclosure FPD exists via api/v1/alarms. NOTE: the vendor says "is intentional."...

5.3CVSS7.1AI score0.00429EPSS

Exploits0References4

Cvelist•added 2019/06/18 3:13 p.m.•11 views

CVE-2018-18836

An issue was discovered in Netdata 1.10.0. JSON injection exists via the api/v1/data tqx parameter because of webclientapirequestv1data in web/api/webapiv1.c...

6.9AI score0.00209EPSS

Exploits1References5

Positive Technologies•added 2019/03/09 12:0 a.m.•5 views

PT-2019-9646 · Netdata +4 · Netdata +4

Name of the Vulnerable Software and Affected Versions: Netdata version 1.10.0 Description: An issue exists where Log Injection or Log Forgery is possible via a %0a sequence in the url parameter to the "api/v1/registry" endpoint. Recommendations: For Netdata version 1.10.0, avoid using the url...

9.1CVSS6.5AI score0.00879EPSS

Exploits8References58

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by