37 matches found
EUVD-2020-16337
Malware in sbrugna...
EUVD-2004-0450
Malware in sbrugna...
EUVD-2020-6089
Malware in sbrugna...
EUVD-2011-2750
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2020-13881
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In support.c in pamtacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog if the DEBUG loglevel and journald are used. CVE-2020-13881 Not...
CVE-2025-54319
An issue was discovered in Westermo WeOS 5 5.24 through 5.24.4. A threat actor potentially can gain unauthorized access to sensitive information via system logging information syslog verbose logging that includes credentials...
PT-2025-30217 · Westermo · Westermo Weos
Name of the Vulnerable Software and Affected Versions: Westermo WeOS versions 5.24 through 5.24.4 Description: An issue was discovered that allows a threat actor to potentially gain unauthorized access to sensitive information via system logging information, specifically through verbose syslog...
CVE-2025-54319
Westermo WeOS versions 5.24–5.24.4 are affected by CVE-2025-54319 due to verbose syslog logging that can disclose credentials, enabling potential unauthorized access to sensitive information. Root cause: logging configuration exposes credentials in syslog. Affected software: Westermo WeOS 5.x (5....
SUSE CVE-2004-0623
Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote attackers to execute arbitrary code via format string specifiers in a string that gets logged by syslog...
CVE-2020-23593
A vulnerability in OPTILINK OP-XT71000N Hardware Version: V2.2, Firmware Version: OPV3.3.1-191028 allows an unauthenticated, remote attacker to conduct a cross site request forgery CSRF attack to enable syslog mode through ' /mgmlogcfg.asp.' The system starts to log events, 'Remote' mode or 'Both...
openGauss: Enabling the Log Collector
The parameter loggingcollector specifies whether the log collector is enabled. The log collection process captures log messages sent to stderr or csvlog and writes them to log files, avoiding data loss during Syslog logging. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be...
CVE-2020-13881
CVE-2020-13881 affects pam_tacplus where the TACACS+ shared secret is logged via journald/syslog when DEBUG is enabled. The initial description notes logging of the shared secret for versions 1.3.8–1.5.1. Connected advisories confirm affected packages and provide remediation: Debian/Ubuntu adviso...
CVE-2020-13881
Removed by vendor...
CVE-2019-0021
On Juniper ATP, secret passphrase CLI inputs, such as "set mcm", are logged to /var/log/syslog in clear text, allowing authenticated local user to be able to view these secret information. This issue affects Juniper ATP 5.0 versions prior to 5.0.4...
Debian Security Advisory DSA 2383-1 (super)
The remote host is missing an update to super announced via advisory DSA 2383-1. OpenVAS Vulnerability Test $Id: deb23831.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2383-1 super Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
CVE-2011-2776
Buffer overflow in the Error function in super.c in Super 3.30.0 might allow local users to execute arbitrary code via vectors related to syslog logging. NOTE: some of these details are obtained from third party information...
CVE-2011-2776
Buffer overflow in the Error function in super.c in Super 3.30.0 might allow local users to execute arbitrary code via vectors related to syslog logging. NOTE: some of these details are obtained from third party information...
CVE-2011-2776
Buffer overflow in the Error function in super.c in Super 3.30.0 might allow local users to execute arbitrary code via vectors related to syslog logging. NOTE: some of these details are obtained from third party information...
Buffer overflow
Buffer overflow in the Error function in super.c in Super 3.30.0 might allow local users to execute arbitrary code via vectors related to syslog logging. NOTE: some of these details are obtained from third party information...
CVE-2011-2776
CVE-2011-2776 describes a buffer overflow in the Error function of the Super project (version 3.30.0) caused by the syslog logging path, allowing local users to execute arbitrary code. Multiple sources confirm the root cause in super.c and the impact is local code execution with partial confident...