146 matches found
CVE-2022-39377 sysstat Incorrect Buffer Size calculation on 32-bit systems results in RCE via buffer overflow
sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...
CVE-2022-38251
Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...
CVE-2022-38251
Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...
CVE-2022-38251
Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...
CVE-2022-38251
Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...
CVE-2022-38251
Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...
Cross site scripting
Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...
UBUNTU-CVE-2022-38251
Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...
EUVD-2022-40843
Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...
CVE-2022-38251
Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...
CVE-2022-38251
CVE-2022-38251 affects Nagios XI v5.8.6, with an observed cross-site scripting (XSS) vulnerability via the System Performance Settings page in the Admin panel. The available sources consistently describe the affected component as the System Performance Settings page and confirm an XSS condition, ...
PT-2022-24314 · Nagios Xi · Nagios Xi
Name of the Vulnerable Software and Affected Versions: Nagios XI version 5.8.6 Description: A cross-site scripting XSS issue was found in Nagios XI via the System Performance Settings page under the Admin panel. This allows for potential malicious script execution. Recommendations: For Nagios XI...
Nagios XI 跨站脚本漏洞
Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems and more. A security vulnerability exists in Nagios XI version v5.8.6, which was discovered to contain a cross-site...
Holiday Readiness, Part I: Best Practices for Maintaining Peak Performance
Preparing for a post-pandemic holiday season means managing for peak application and system performance...
Schneider Electric Geo SCADA Mobile Information Disclosure Vulnerability
Schneider Electric Geo SCADA Mobile is a mobile extension from Schneider Electric, a French company. It provides real-time remote access to critical SCADA data, allowing system users to monitor performance while "on the go," increasing employee productivity and improving overall system performanc...
Citrix Hypervisor: ACPI Warning: Incorrect checksum in table [BGRT]
hostxxxx kernel: 9.091668 ACPI BIOS Warning bug: Incorrect checksum in table BGRT - 0x2B, should be 0x9C 20180810/tbprint-177...
CVE-2021-44716
There's an uncontrolled resource consumption flaw in golang's net/http library in the canonicalHeader function. An attacker who submits specially crafted requests to applications linked with net/http's http2 functionality could cause excessive resource consumption that could lead to a denial of...
CVE-2021-3714
A flaw was found in the Linux kernels memory deduplication mechanism. Previous work has shown that memory deduplication can be attacked via a local exploitation mechanism. The same technique can be used if an attacker can upload page sized files and detect the change in access time from a network...
Advanced SystemCare Ultimate Elevation of Privilege Vulnerability (CNVD-2021-57451)
Advanced SystemCare Ultimate is a Windows optimization suite from Iobit that analyzes system performance bottlenecks. advanced SystemCare Ultimate version 14.2.0.220 contains an elevation of privilege vulnerability. An attacker can exploit the vulnerability by sending a malicious I/O request pack...
pcp bug fix and enhancement update
Performance Co-Pilot PCP is a suite of tools, services, and libraries for acquisition, archiving, and analysis of system-level performance measurements. Its light-weight distributed architecture makes it particularly well-suited to centralized analysis of complex systems. Bug Fixes and...