EUVD-2018-1881

Malware in sbrugna...

EUVD-2018-0234

Malware in sbrugna...

CVE-2018-1000209

Sensu, Inc. Sensu Core version Before version 1.4.2-3 contains a Insecure Permissions vulnerability in Sensu Core on Windows platforms that can result in Unprivileged users may execute code in context of Sensu service account. This attack appear to be exploitable via Unprivileged user may place a...

RHSA-2018:1606 Red Hat Security Advisory: sensu security update

Bulletin has no description...

RHSA-2018:1112 Red Hat Security Advisory: sensu security update

Bulletin has no description...

RHSA-2018:0616 Red Hat Security Advisory: sensu security update

Bulletin has no description...

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (collectd-sensubility) security update

An update for collectd-sensubility is now available for Red Hat OpenStack Platform 17.1 Wallaby. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

RHEL 8 : Red Hat OpenStack Platform 17.1 (collectd-sensubility) (RHSA-2024:2767)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:2767 advisory. This project provides the possibility to switch from the Sensu-based availability monitoring solution to a monitoring solution based on...

RHEL 7 : sensu (RHSA-2018:1112)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:1112 advisory. Sensu is a monitoring framework that aims to be simple, malleable, and scalable. Security Fixes: Sensu's redaction function fails to handle the...

RHEL 7 : sensu (RHSA-2018:1606)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2018:1606 advisory. Sensu is a monitoring framework that aims to be simple, malleable, and scalable. Security fixes: Sensu's redaction function fails to handle the...

RHEL 7 : sensu (RHSA-2018:0616)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0616 advisory. Sensu is a monitoring framework that aims to be simple, malleable, and scalable. Security Fixes: sensu: Password exposure in warn level log when...

@qbunnyteam/superlogin (>=0.0.3 <=0.0.4), @sensu/superlogin (>=1.2.2 <=1.2.6) +16 more potentially affected by CVE-2020-7673 via node-extend (=0.2.0)

node-extend NPM version =0.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on node-extend and may be impacted: - @qbunnyteam/superlogin =0.0.3, =1.2.2, =0.1.0, =0.1.0, =0.0.0, =0.2.0, =4.1.4, =1.1.0, =1.4.1 and more Source cves: CVE-2020-7673 Source...

Product update: Virtuozzo 7.0 Update 13 Hotfix 1 (7.0.13-302)

The Hotfix 1 for Virtuozzo 7.0 Update 13 provides stability and usability bug fixes. Vulnerability id: PSBM-101223, PSBM-102156 Unable to live-migrate container with splunk, sensu, ossec-hids tools running inside. Vulnerability id: PSBM-102472 systemd 219-67.vl7.4 not working after the update...

Information Disclosure

sensu is vulnerable to information disclosure. The library does not properly redact passwords or keys in arrays and hashmaps, causing the sensitive information to be logged as plaintext...

Low severity vulnerability that affects sensu

The sensu rubygem prior to version 1.2.0 contains a CWE-522 Insufficiently Protected Credentials flaw that can result in sensitive configuration data e.g. passwords being logged in clear-text. Users are advised to upgrade to rubygem version 1.2.1 or later...

GHSA-69MV-3642-WJ3W Low severity vulnerability that affects sensu

The sensu rubygem prior to version 1.2.0 contains a CWE-522 Insufficiently Protected Credentials flaw that can result in sensitive configuration data e.g. passwords being logged in clear-text. Users are advised to upgrade to rubygem version 1.2.1 or later...

CVE-2018-1000209

Sensu, Inc. Sensu Core version Before version 1.4.2-3 contains a Insecure Permissions vulnerability in Sensu Core on Windows platforms that can result in Unprivileged users may execute code in context of Sensu service account. This attack appear to be exploitable via Unprivileged user may place a...

CVE-2018-1000209

Sensu, Inc. Sensu Core version Before version 1.4.2-3 contains a Insecure Permissions vulnerability in Sensu Core on Windows platforms that can result in Unprivileged users may execute code in context of Sensu service account. This attack appear to be exploitable via Unprivileged user may place a...

Design/Logic Flaw

Sensu, Inc. Sensu Core version Before version 1.4.2-3 contains a Insecure Permissions vulnerability in Sensu Core on Windows platforms that can result in Unprivileged users may execute code in context of Sensu service account. This attack appear to be exploitable via Unprivileged user may place a...

CVE-2018-1000209

CVE-2018-1000209 affects Sensu Core on Windows prior to 1.4.2-3, where an insecure permissions issue allows unprivileged users to execute code in the context of the Sensu service account by placing an arbitrary DLL in c:\opt\sensu\embedded\bin and abusing Windows DLL load order. The vulnerability...