Lucene search
K

146 matches found

Vulnrichment
Vulnrichment
added 2022/11/08 12:0 a.m.5 views

CVE-2022-39377 sysstat Incorrect Buffer Size calculation on 32-bit systems results in RCE via buffer overflow

sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...

7CVSS8.3AI score0.01096EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2022/10/18 7:10 a.m.42 views

CVE-2022-38251

Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...

4.8CVSS2.3AI score0.0168EPSS
Exploits0References3
OSV
OSV
added 2022/09/07 10:15 p.m.5 views

CVE-2022-38251

Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...

4.8CVSS5.7AI score0.0168EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/09/07 10:15 p.m.4 views

CVE-2022-38251

Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...

4.8CVSS5.6AI score0.0168EPSS
Exploits0References2
NVD
NVD
added 2022/09/07 10:15 p.m.28 views

CVE-2022-38251

Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...

4.8CVSS0.0168EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/09/07 10:15 p.m.35 views

CVE-2022-38251

Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...

4.8CVSS5.8AI score0.0168EPSS
Exploits0References2
Prion
Prion
added 2022/09/07 10:15 p.m.23 views

Cross site scripting

Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...

4.3CVSS4.9AI score0.0168EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/09/07 10:15 p.m.2 views

UBUNTU-CVE-2022-38251

Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...

4.8CVSS5.7AI score0.0168EPSS
Exploits0References3
EUVD
EUVD
added 2022/09/07 9:14 p.m.5 views

EUVD-2022-40843

Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...

4.8CVSS4.9AI score0.0168EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/09/07 9:14 p.m.37 views

CVE-2022-38251

Nagios XI v5.8.6 was discovered to contain a cross-site scripting XSS vulnerability via the System Performance Settings page under the Admin panel...

5.2AI score0.0168EPSS
Exploits0References1
CVE
CVE
added 2022/09/07 9:14 p.m.65 views

CVE-2022-38251

CVE-2022-38251 affects Nagios XI v5.8.6, with an observed cross-site scripting (XSS) vulnerability via the System Performance Settings page in the Admin panel. The available sources consistently describe the affected component as the System Performance Settings page and confirm an XSS condition, ...

4.8CVSS4.9AI score0.0168EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/09/07 12:0 a.m.5 views

PT-2022-24314 · Nagios Xi · Nagios Xi

Name of the Vulnerable Software and Affected Versions: Nagios XI version 5.8.6 Description: A cross-site scripting XSS issue was found in Nagios XI via the System Performance Settings page under the Admin panel. This allows for potential malicious script execution. Recommendations: For Nagios XI...

4.8CVSS4.8AI score0.0168EPSS
Exploits0References7
CNNVD
CNNVD
added 2022/09/07 12:0 a.m.6 views

Nagios XI 跨站脚本漏洞

Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems and more. A security vulnerability exists in Nagios XI version v5.8.6, which was discovered to contain a cross-site...

4.8CVSS4.9AI score0.0168EPSS
Exploits0References2
Akamai Blog
Akamai Blog
added 2022/09/01 1:0 p.m.2 views

Holiday Readiness, Part I: Best Practices for Maintaining Peak Performance

Preparing for a post-pandemic holiday season means managing for peak application and system performance...

7AI score
Exploits0
CNVD
CNVD
added 2022/06/30 12:0 a.m.29 views

Schneider Electric Geo SCADA Mobile Information Disclosure Vulnerability

Schneider Electric Geo SCADA Mobile is a mobile extension from Schneider Electric, a French company. It provides real-time remote access to critical SCADA data, allowing system users to monitor performance while "on the go," increasing employee productivity and improving overall system performanc...

7.8CVSS2AI score0.00408EPSS
Exploits0References1
Citrix
Citrix
added 2022/06/21 12:0 a.m.8 views

Citrix Hypervisor: ACPI Warning: Incorrect checksum in table [BGRT]

hostxxxx kernel: 9.091668 ACPI BIOS Warning bug: Incorrect checksum in table BGRT - 0x2B, should be 0x9C 20180810/tbprint-177...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2022/05/07 2:12 p.m.51 views

CVE-2021-44716

There's an uncontrolled resource consumption flaw in golang's net/http library in the canonicalHeader function. An attacker who submits specially crafted requests to applications linked with net/http's http2 functionality could cause excessive resource consumption that could lead to a denial of...

7.5CVSS3AI score0.03958EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/03/31 8:40 p.m.37 views

CVE-2021-3714

A flaw was found in the Linux kernels memory deduplication mechanism. Previous work has shown that memory deduplication can be attacked via a local exploitation mechanism. The same technique can be used if an attacker can upload page sized files and detect the change in access time from a network...

6.5CVSS0.5AI score0.01095EPSS
Exploits1References5
CNVD
CNVD
added 2021/07/08 12:0 a.m.17 views

Advanced SystemCare Ultimate Elevation of Privilege Vulnerability (CNVD-2021-57451)

Advanced SystemCare Ultimate is a Windows optimization suite from Iobit that analyzes system performance bottlenecks. advanced SystemCare Ultimate version 14.2.0.220 contains an elevation of privilege vulnerability. An attacker can exploit the vulnerability by sending a malicious I/O request pack...

8.8CVSS4.1AI score0.00295EPSS
Exploits1References1
AlmaLinux
AlmaLinux
added 2021/02/16 7:34 a.m.15 views

pcp bug fix and enhancement update

Performance Co-Pilot PCP is a suite of tools, services, and libraries for acquisition, archiving, and analysis of system-level performance measurements. Its light-weight distributed architecture makes it particularly well-suited to centralized analysis of complex systems. Bug Fixes and...

2.3AI score
Exploits0
Rows per page
Query Builder