CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

NVD•added 2024/07/24 6:15 p.m.•17 views

CVE-2024-41666

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Argo CD has a Web-based terminal that allows users to get a shell inside a running pod, just as they would with kubectl exec. Starting in version 2.6.0, when the administrator enables this function and grants permission to...

6.5CVSS0.00105EPSS

Exploits1References5

OSV•added 2024/07/24 5:16 p.m.•12 views

CVE-2024-41666 The Argo CD web terminal session does not handle the revocation of user permissions properly.

4.7CVSS4.7AI score0.00105EPSS

Exploits1References7

CNVD•added 2020/03/26 12:0 a.m.•1 views

openITCOCKPIT Command Execution Vulnerability

It-novum OpenITCOCKPIT is a set of open source system monitoring tools from Germany's It-novum. A security vulnerability exists in the Web-based terminal in It-novum openITCOCKPIT versions prior to 3.7.3. An attacker can exploit this vulnerability to execute arbitrary operating system commands wi...

10CVSS7.5AI score0.00593EPSS

Exploits0

Prion•added 2020/03/25 2:15 p.m.•15 views

Design/Logic Flaw

openITCOCKPIT before 3.7.3 has a web-based terminal that allows attackers to execute arbitrary OS commands via shell metacharacters that are mishandled on an su command line in app/Lib/SudoMessageInterface.php...

10CVSS9.7AI score0.00593EPSS

Exploits0References2Affected Software1

Cvelist•added 2020/03/25 2:0 p.m.•10 views

CVE-2020-10789

9.9AI score0.00593EPSS

Exploits0References2

OpenVAS•added 2011/01/04 12:0 a.m.•21 views

Fedora Update for Ajaxterm FEDORA-2010-18867

Check for the Version of Ajaxterm OpenVAS Vulnerability Test Fedora Update for Ajaxterm FEDORA-2010-18867 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

6.8CVSS0.2AI score0.00989EPSS

Exploits1References2