Linux Distros Unpatched Vulnerability : CVE-2020-13881

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In support.c in pamtacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog if the DEBUG loglevel and journald are used. CVE-2020-13881 Not...

CVE-2025-10084

A vulnerability was identified in elunez eladmin up to 2.7. This affects the function queryErrorLogDetail of the file /api/logs/error/1 of the component SysLogController. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit is publicly...

CVE-2025-10084 elunez eladmin SysLogController 1 queryErrorLogDetail improper authorization

A vulnerability was identified in elunez eladmin up to 2.7. This affects the function queryErrorLogDetail of the file /api/logs/error/1 of the component SysLogController. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit is publicly...

CVE-2025-10084

CVE-2025-10084 affects elunez eladmin up to version 2.7, targeting the SysLogController function queryErrorLogDetail in the file /api/logs/error/1. The issue enables improper authorization and can be exploited remotely; the exploit is publicly available. Several sources corroborate the vulnerabil...

An Ethically Grounded LLM-Based Approach to Insider Threat Synthesis and Detection

Insider threats are a growing organizational problem due to the complexity of identifying their technical and behavioral elements. A large research body is dedicated to the study of insider threats from technological, psychological, and educational perspectives. However, research in this domain h...

Linux Distros Unpatched Vulnerability : CVE-2024-9026

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, when using PHP-FPM SAPI and it is configured to catch workers output through...

Linux Distros Unpatched Vulnerability : CVE-2024-47619

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - syslog-ng is an enhanced log daemo. Prior to version 4.8.2, tlswildcardmatch matches on certificates such as foo..bar although that is not allowed. It is also...

Linux Distros Unpatched Vulnerability : CVE-2022-38725

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow in the RFC3164 parser in One Identity syslog-ng 3.0 through 3.37 allows remote attackers to cause a Denial of Service via crafted syslog inp...

Solaris 10 (i386): 146574-03

SunOS 5.10: SunOS 5.10x86: syslogd patch. Date this patch was last updated by Sun : Jul/14/25 %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include"compat.inc"; if description scriptid255251; scriptversion"1.1";...

CVE-2025-7051

On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...

CVE-2025-7051

On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...

CVE-2025-7051

On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...

CVE-2025-7051 N-central Syslog Configuration Insecure Direct Object Reference

On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...

CVE-2025-7051

CVE-2025-7051 concerns N-able N-Central. Affected: N-Central deployments prior to 2025.2. Describe vulnerability: an authenticated user can read, write, and modify syslog configurations across customers on an N-Central server. This is an insecure direct object access-like issue enabling cross-ten...

CVE-2025-7051 N-central Syslog Configuration Insecure Direct Object Reference

On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...

N‑able N-Central 安全漏洞

N-able N-Central is a powerful, customizable remote monitoring and management platform from N-able. A security vulnerability exists in N-able N-Central versions prior to 2025.2 that originates from an authenticated user being able to read and write modify syslog configuration...

PT-2025-34268 · Solarwinds · N-Central

Name of the Vulnerable Software and Affected Versions: N-central versions prior to 2025.2 Description: An authenticated user can read, write, and modify syslog configurations across customers on an N-central server. Recommendations: Update to version 2025.2 or later...

BIT-LIBPHP-2024-9026 PHP-FPM logs from children may be altered

In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, when using PHP-FPM SAPI and it is configured to catch workers output through catchworkersoutput = yes, it may be possible to pollute the final log or remove up to 4 characters from the log messages by manipulating log...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an over-warning by the ath6kl wifi driver of incorrect firmware inputs, which could lead to syslog...

CVE-2025-54319

An issue was discovered in Westermo WeOS 5 5.24 through 5.24.4. A threat actor potentially can gain unauthorized access to sensitive information via system logging information syslog verbose logging that includes credentials...