23 matches found
CVE-2026-45448
CVE-2026-45448 is associated with an open redirect (CWE-601) affecting ntopng per CVE listings. The vulnerability involves URL redirection to an untrusted site. Concrete exploit details, affected versions, and remediation steps are not provided in the connected documents. The CVSS-based impact is...
AZL-75542 CVE-2026-24809 affecting package ntopng for versions less than 5.2.1-4
An issue from the component luaGrunerror in dependencies/lua/src/ldebug.c in praydog/REFramework version before 1.5.5 leads to a heap-buffer overflow when a recursive error occurs...
AZL-75470 CVE-2026-24809 affecting package ntopng for versions less than 5.2.1-4
An issue from the component luaGrunerror in dependencies/lua/src/ldebug.c in praydog/REFramework version before 1.5.5 leads to a heap-buffer overflow when a recursive error occurs...
CVE-2021-44964 affecting package ntopng for versions less than 5.2.1-6
CVE-2021-44964 affecting package ntopng for versions less than 5.2.1-6. A patched version of the package is available...
EUVD-2017-16440
Malware in sbrugna...
EUVD-2017-16483
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2017-5473
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site request forgery CSRF vulnerability in ntopng through 2.4 allows remote attackers to hijack the authentication of arbitrary users, as demonstrated by...
Linux Distros Unpatched Vulnerability : CVE-2017-7458
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The NetworkInterface::getHost function in NetworkInterface.cpp in ntopng before 3.0 allows remote attackers to cause a denial of service NULL pointer dereferenc...
CVE-2021-44964 affecting package ntopng for versions less than 5.2.1-3
CVE-2021-44964 affecting package ntopng for versions less than 5.2.1-3. A patched version of the package is available...
Azure Linux 3.0 Security Update: ntopng / reaper (CVE-2017-18214)
The version of ntopng / reaper installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2017-18214 advisory. - The moment module before 2.19.3 for Node.js is prone to a regular expression denial of service via ...
CVE-2024-53426
A heap-buffer-overflow vulnerability has been identified in ntopng 6.2 in the Flow::dissectMDNS function...
Ubuntu 16.04 ESM / 18.04 ESM : ntopng vulnerability (USN-4842-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4842-1 advisory. It was discovered that ntopng did not properly seed its random number generator, leading to predictable session tokens. An attacker could use this...
AZL-26158 CVE-2021-45985 affecting package ntopng for versions less than 5.2.1-2
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read...
AZL-40979 CVE-2021-44964 affecting package ntopng for versions less than 5.2.1-6
Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.05.4.3 allows attackers to perform Sandbox Escape via a crafted script file...
AZL-41797 CVE-2021-44647 affecting package ntopng for versions less than 5.2.1-5
Lua v5.4.3 and above are affected by SEGV by type confusion in funcnamefromcode function in ldebug.c which can cause a local denial of service...
The vulnerability of the ntopng monitoring software, related to uncontrolled resource consumption, allows a hacker to cause a service failure.
The vulnerability of the ntopng network traffic monitoring software is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
AZL-41019 CVE-2017-18214 affecting package ntopng for versions less than 5.2.1-4
The moment module before 2.19.3 for Node.js is prone to a regular expression denial of service via a crafted date string, a different vulnerability than CVE-2016-4055...
ntopng HTTP Response Splitting Vulnerability
NTOPNG is the next generation version of NTOP, computer software for monitoring traffic on a computer network. A split vulnerability exists in the ntopng HTTP response, which can be exploited by an attacker to have an impact on the integrity of the data...
CVE-2017-7458
The CVE-2017-7458 issue affects ntopng prior to version 3.0. The vulnerability is due to NetworkInterface::getHost in NetworkInterface.cpp, where an empty hostname/IP field can cause a NULL pointer dereference, resulting in a denial of service/crash. Affected: ntopng before 3.0. Remediation: upgr...
Design/Logic Flaw
ntopng before 3.0 allows HTTP Response Splitting...