Monit Security Vulnerabilities and Issues — Monit CVE List

Lucene search

TildeslashMonit

7 matches found

CVE•added 2019/04/22 4:29 p.m.•94 views

CVE-2019-11455

A buffer over-read in Util_urlDecode in util.c in Tildeslash Monit before 5.25.3 allows a remote authenticated attacker to retrieve the contents of adjacent memory via manipulation of GET or POST parameters. The attacker can also cause a denial of service (application outage).

8.1CVSS7.5AI score0.02266EPSS

CVE•added 2023/07/18 2:15 p.m.•86 views

CVE-2022-26563

An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization.

8.8CVSS8.6AI score0.00502EPSS

CVE•added 2005/02/13 5:0 a.m.•47 views

CVE-2003-1084

Monit 1.4 to 4.1 allows remote attackers to cause a denial of service (daemon crash) via an HTTP POST request with a negative Content-Length field.

5CVSS6.5AI score0.05466EPSS

CVE•added 2019/04/22 11:29 a.m.•46 views

CVE-2019-11393

An issue was discovered in /admin/users/update in M/Monit before 3.7.3. It allows unprivileged users to escalate their privileges to an administrator by requesting a password change and specifying the admin parameter.

9.8CVSS9.4AI score0.0044EPSS

CVE•added 2005/02/13 5:0 a.m.•45 views

CVE-2003-1083

Stack-based buffer overflow in Monit 1.4 to 4.1 allows remote attackers to execute arbitrary code via a long HTTP request.

10CVSS8AI score0.55808EPSS

CVE•added 2005/05/10 4:0 a.m.•39 views

CVE-2004-1899

The administration interface in Monit 1.4 through 4.2 allows remote attackers to cause an off-by-one overflow via a POST that contains 1024 bytes.

5CVSS6.9AI score0.00745EPSS

CVE•added 2005/05/10 4:0 a.m.•32 views

CVE-2004-1898

Stack-based buffer overflow in the administration interface in Monit 1.4 through 4.2 allows remote attackers to execute arbitrary code via a long username.

10CVSS8.1AI score0.34457EPSS