8 matches found
MiracleLinux 8 : pcp-5.3.7-20.el8 (AXSA:2024-8455:03)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8455:03 advisory. pcp: exposure of the redis server backend allows remote command execution via pmproxy CVE-2024-3019 Tenable has extracted the preceding description block...
RHSA-2024:6840 Red Hat Security Advisory: pcp security update
Bulletin has no description...
RHSA-2024:3322 Red Hat Security Advisory: pcp security update
Bulletin has no description...
RHSA-2024:3325 Red Hat Security Advisory: pcp security update
Bulletin has no description...
SUSE-SU-2021:1292-1 Security update for pcp
This update for pcp fixes the following issues: - Fixed completely CVE-2020-8025 bsc1171883...
Arbitrary Code Execution
pcp is vulnerable to arbitrary code execution. A user is able to run code as root by including OS commands in /var/log/pcp/configs.sh...
Hard-Coded Password in Cisco Software Lets Attackers Take Over Linux Servers
A medium yet critical vulnerability has been discovered in Cisco Prime Collaboration Provisioning software that could allow a local attacker to elevate privileges to root and take full control of a system. Cisco Prime Collaboration Provisioning PCP application allows administrators to remotely...
CVE-2018-0141
A vulnerability in Cisco Prime Collaboration Provisioning PCP Software 11.6 could allow an unauthenticated, local attacker to log in to the underlying Linux operating system. The vulnerability is due to a hard-coded account password on the system. An attacker could exploit this vulnerability by...