20 matches found
CVE-2024-39934
Robotmk before 2.0.1 allows a local user to escalate privileges e.g., to SYSTEM if automated Python environment setup is enabled, because the "shared holotree usage" feature allows any user to edit any Python environment...
EUVD-2024-37645
Malicious code in bioql PyPI...
EUVD-2024-38308
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-38858
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper neutralization of input in Checkmk before version 2.3.0p14 allows attackers to inject and run malicious scripts in the Robotmk logs view. CVE-2024-3885...
CVE-2024-38858
Improper neutralization of input in Checkmk before version 2.3.0p14 allows attackers to inject and run malicious scripts in the Robotmk logs view...
CVE-2024-38858
Improper neutralization of input in Checkmk before version 2.3.0p14 allows attackers to inject and run malicious scripts in the Robotmk logs view...
CVE-2024-38858
Improper neutralization of input in Checkmk before version 2.3.0p14 allows attackers to inject and run malicious scripts in the Robotmk logs view...
UBUNTU-CVE-2024-38858
Improper neutralization of input in Checkmk before version 2.3.0p14 allows attackers to inject and run malicious scripts in the Robotmk logs view...
CVE-2024-38858 Cross-site scripting in Robotmk logs view
Improper neutralization of input in Checkmk before version 2.3.0p14 allows attackers to inject and run malicious scripts in the Robotmk logs view...
CVE-2024-38858 Cross-site scripting in Robotmk logs view
Improper neutralization of input in Checkmk before version 2.3.0p14 allows attackers to inject and run malicious scripts in the Robotmk logs view...
CVE-2024-38858
CVE-2024-38858 affects Checkmk versions before 2.3.0p14. The vulnerability is due to improper neutralization of user input in the Robotmk logs view, enabling an attacker to inject and execute malicious scripts. The issue is characterized as a cross-site scripting risk observed in multiple sources...
Checkmk 安全漏洞
Checkmk is an IT monitoring platform from Checkmk, Inc. A security vulnerability exists in versions prior to Checkmk 2.3.0p14 that stems from improper neutralization of user input. An attacker exploiting this vulnerability could inject and run malicious scripts in the Robotmk log view...
PT-2024-28239 · Checkmk · Checkmk
Name of the Vulnerable Software and Affected Versions: Checkmk versions prior to 2.3.0p14 Description: The issue is related to improper neutralization of input in Checkmk, allowing attackers to inject and run malicious scripts in the Robotmk logs view. This could potentially lead to arbitrary cod...
CVE-2024-39934
Robotmk before 2.0.1 allows a local user to escalate privileges e.g., to SYSTEM if automated Python environment setup is enabled, because the "shared holotree usage" feature allows any user to edit any Python environment...
CVE-2024-39934
Robotmk before 2.0.1 allows a local user to escalate privileges e.g., to SYSTEM if automated Python environment setup is enabled, because the "shared holotree usage" feature allows any user to edit any Python environment...
CVE-2024-39934
Robotmk before 2.0.1 allows a local user to escalate privileges e.g., to SYSTEM if automated Python environment setup is enabled, because the "shared holotree usage" feature allows any user to edit any Python environment...
Robotmk Security Vulnerabilities
Robotmk is an open source Robot framework integration for Checkm k by ELABIT. A security vulnerability exists in Robotmk versions prior to 2.0.1, which stems from a shared holotree usage feature that allows any user to edit any Python environment, resulting in elevated privileges for the local us...
CVE-2024-39934
Robotmk before 2.0.1 allows a local user to escalate privileges e.g., to SYSTEM if automated Python environment setup is enabled, because the "shared holotree usage" feature allows any user to edit any Python environment...
CVE-2024-39934
Robotmk prior to 2.0.1 is vulnerable to local privilege escalation. The issue stems from the "+shared holotree usage+" feature, which allows any user to edit any Python environment, enabling a local user to escalate to SYSTEM. Affected software: Robotmk
PT-2024-28742 · Robotmk · Robotmk
Name of the Vulnerable Software and Affected Versions: Robotmk versions prior to 2.0.1 Description: The issue allows a local user to escalate privileges, for example, to SYSTEM, if automated Python environment setup is enabled. This is due to the "shared holotree usage" feature, which allows any...