Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

43 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2007-5338

Malware in sbrugna...

7.5CVSS6AI score0.10478EPSS
Exploits3References19
SUSE CVE
SUSE CVEadded 2023/02/15 6:10 a.m.1 views

SUSE CVE-2007-5360

Buffer overflow in OpenPegasus Management server, when compiled to use PAM and with PEGASUSUSEPAMSTANDALONEPROC defined, as used in VMWare ESX Server 3.0.1 and 3.0.2, might allow remote attackers to execute arbitrary code via vectors related to PAM authentication, a different vulnerability than...

7.5CVSS8.4AI score0.10478EPSS
Exploits3References4
SUSE CVE
SUSE CVEadded 2023/02/15 6:9 a.m.0 views

SUSE CVE-2008-0003

Stack-based buffer overflow in the PAMBasicAuthenticator::PAMCallback function in OpenPegasus CIM management server tog-pegasus, when compiled to use PAM and without PEGASUSUSEPAMSTANDALONEPROC defined, might allow remote attackers to execute arbitrary code via unknown vectors, a different...

10CVSS8.6AI score0.2951EPSS
Exploits1References3
Veracode
Veracodeadded 2020/04/10 12:35 a.m.21 views

Access Control Bypass

tog-pegasus is vulnerable to access control bypass. After re-basing to version 2.7.0 of the OpenGroup Pegasus code, these additional security enhancements were no longer being applied. As a consequence, access to OpenPegasus WBEM services was not restricted to the dedicated users as described in...

6CVSS4AI score0.00556EPSS
Exploits0References12Affected Software1
Veracode
Veracodeadded 2020/04/10 12:35 a.m.18 views

Inadequate Logging

tog-pegasus does not log authentication attempts. Failed authentication attempts against the OpenPegasus CIM server were not logged to the system log as documented in README.RedHat.Security. An attacker could use this flaw to perform password guessing attacks against a user account without leavin...

6.8CVSS3AI score0.01577EPSS
Exploits0References11Affected Software1
Veracode
Veracodeadded 2020/04/10 12:19 a.m.21 views

Arbitrary Code Execution

top-pegasus is vulnerable to arbitrary code execution. A stack buffer overflow flaw was found in the PAM authentication code in the OpenPegasus CIM management server. An unauthenticated remote user could trigger this flaw and potentially execute arbitrary code with root privileges...

10CVSS5.9AI score0.2951EPSS
Exploits1References26Affected Software1
Tenable Nessus
Tenable Nessusadded 2012/08/01 12:0 a.m.19 views

Scientific Linux Security Update : tog-pegasus on SL5.x, SL4.x i386/x86_64

During a security audit, a stack-based buffer overflow flaw was found in the PAM authentication code in the OpenPegasus CIM management server. An unauthenticated remote user could trigger this flaw and potentially execute arbitrary code with root privileges. CVE-2008-0003 Users of tog-pegasus...

10CVSS6.4AI score0.2951EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2010/01/06 12:0 a.m.19 views

CentOS 5 : tog-pegasus (CESA-2008:1001)

Updated tog-pegasus packages that fix security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The tog-pegasus packages provide OpenPegasus Web-Based Enterprise Management WBEM services...

6.8CVSS5.5AI score0.01577EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2009/07/27 12:0 a.m.26 views

VMSA-2008-0007 : Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus

a. Updated pcre Service Console package addresses several security issues The pcre package contains the Perl-Compatible Regular Expression library. pcre is used by various Service Console utilities. Several security issues were discovered in the way PCRE handles regular expressions. If an...

10CVSS8.7AI score0.2951EPSS
Exploits2References5
Tenable Nessus
Tenable Nessusadded 2009/07/27 12:0 a.m.38 views

VMSA-2008-0001 : Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages

I Service Console package security updates a. OpenPegasus PAM Authentication Buffer Overflow Alexander Sotirov from VMware Security Research discovered a buffer overflow vulnerability in the OpenPegasus Management server. This flaw could be exploited by a malicious remote user on the service...

9.3CVSS8.2AI score0.53124EPSS
Exploits7References8
OpenVAS
OpenVASadded 2009/06/09 12:0 a.m.16 views

RedHat Security Advisory RHSA-2008:0002

The remote host is missing updates announced in advisory RHSA-2008:0002. OpenVAS Vulnerability Test $Id: RHSA20080002.nasl 6683 2017-07-12 09:41:57Z cfischer $ Description: Auto-generated from advisory RHSA-2008:0002 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

10CVSS1.2AI score0.2951EPSS
Exploits1
OpenVAS
OpenVASadded 2009/03/06 12:0 a.m.23 views

RedHat Update for tog-pegasus RHSA-2008:0002-01

Check for the Version of tog-pegasus OpenVAS Vulnerability Test RedHat Update for tog-pegasus RHSA-2008:0002-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

10CVSS6.3AI score0.2951EPSS
Exploits1References2
OpenVAS
OpenVASadded 2009/03/06 12:0 a.m.24 views

RedHat Update for tog-pegasus RHSA-2008:1001-01

Check for the Version of tog-pegasus OpenVAS Vulnerability Test RedHat Update for tog-pegasus RHSA-2008:1001-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

6.8CVSS6.4AI score0.01577EPSS
Exploits0References2
OpenVAS
OpenVASadded 2009/02/27 12:0 a.m.34 views

CentOS Update for tog-pegasus CESA-2008:0002 centos4 i386

Check for the Version of tog-pegasus OpenVAS Vulnerability Test CentOS Update for tog-pegasus CESA-2008:0002 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

10CVSS6.3AI score0.2951EPSS
Exploits1References2
OpenVAS
OpenVASadded 2009/02/27 12:0 a.m.22 views

CentOS Update for tog-pegasus CESA-2008:0002 centos4 x86_64

Check for the Version of tog-pegasus OpenVAS Vulnerability Test CentOS Update for tog-pegasus CESA-2008:0002 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

10CVSS6.3AI score0.2951EPSS
Exploits1References2
OpenVAS
OpenVASadded 2009/02/17 12:0 a.m.17 views

Fedora Update for tog-pegasus FEDORA-2008-0572

Check for the Version of tog-pegasus OpenVAS Vulnerability Test Fedora Update for tog-pegasus FEDORA-2008-0572 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

10CVSS6.3AI score0.2951EPSS
Exploits1References2
OpenVAS
OpenVASadded 2009/02/17 12:0 a.m.39 views

Fedora Update for tog-pegasus FEDORA-2008-0506

Check for the Version of tog-pegasus OpenVAS Vulnerability Test Fedora Update for tog-pegasus FEDORA-2008-0506 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

10CVSS6.3AI score0.2951EPSS
Exploits1References2
NVD
NVDadded 2008/11/27 12:30 a.m.10 views

CVE-2008-4313

A certain Red Hat patch for tog-pegasus in OpenGroup Pegasus 2.7.0 does not properly configure the PAM tty name, which allows remote authenticated users to bypass intended access restrictions and send requests to OpenPegasus WBEM services...

6CVSS6.2AI score0.00556EPSS
Exploits0References10
Cent OS
Cent OSadded 2008/11/26 10:30 p.m.65 views

tog security update

CentOS Errata and Security Advisory CESA-2008:1001 Updated tog-pegasus packages that fix security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The tog-pegasus packages provide...

6.8CVSS5.8AI score0.01577EPSS
Exploits0References7
RedHat Linux
RedHat Linuxadded 2008/11/25 9:5 a.m.1 views

tog-pegasus: failed authentication attempts not logged via PAM

tog-pegasus in OpenGroup Pegasus 2.7.0 on Red Hat Enterprise Linux RHEL 5, Fedora 9, and Fedora 10 does not log failed authentication attempts to the OpenPegasus CIM server, which makes it easier for remote attackers to avoid detection of password guessing attacks...

6.8CVSS5.9AI score0.01577EPSS
Exploits0References4
Rows per page
Query Builder