MiracleLinux 7 : pacemaker-1.1.15-11.el7.2 (AXSA:2016-833:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-833:03 advisory. Pacemaker is an advanced, scalable High-Availability cluster resource manager for Corosync, CMAN and/or Linux-HA. It supports more than 16 node clusters with...

EUVD-2016-8647

Malware in sbrugna...

EUVD-2020-18318

Malware in sbrugna...

EUVD-2017-4253

Malware in sbrugna...

PT-2022-4669 · Unknown +7 · Corosync/Pacemaker Pcs +7

Name of the Vulnerable Software and Affected Versions: corosync/pacemaker PCS affected versions not specified Description: The issue is related to insufficient authentication procedure in the corosync/pacemaker PCS utility, which can be exploited by a remote attacker to escalate privileges. This...

Scientific Linux Security Update : pacemaker on SL7.x i686/x86_64 (2020:5453)

The remote Scientific Linux 7 host has packages installed that are affected by a vulnerability as referenced in the SLSA-2020:5453-1 advisory. - pacemaker: ACL restrictions bypass CVE-2020-25654 Note that Nessus has not tested for this issue but has instead relied only on the application's...

CVE-2011-5271

Pacemaker before 1.1.6 configure script creates temporary files insecurely...

Denial Of Service (DoS)

pacemaker is vulnerable to denial of service attacks. Local unauthenticated user can cause a system hang due to insufficient verification inflicted preference of uncontrolled processes...

pacemaker: Insufficient local IPC client-server authentication on the client's side can lead to local privesc

A flaw was found in the way pacemaker's client-server authentication was implemented. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation...

Unauthorized Access Vulnerability in Various Abbott Laboratories Pacemaker Products

Accent, Anthem, Accent MRI, Assurity, Allure and Assurity MRI are implantable medical devices from Abbott Laboratories USA. An unauthorized access vulnerability exists in several Abbott Laboratories pacemaker products, where pacemaker authentication algorithms involving authentication keys and...

CVE-2013-0281

Pacemaker 1.1.10, when remote Cluster Information Base CIB configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote attackers to cause a denial of service connection blocking...

Medical Device Security in Need of Major Upgrade

Security researchers and hackers have spent the last 20 years or so tearing apart all manner of software and hardware, looking for vulnerabilities, attack vectors and bugs, and the advent of embedded and implantable devices has now drawn their attention to this new class of targets. Medical...