Lucene search
Ubuntu.comUB:CVE-2014-5340HistorySep 02, 2014 - 12:00 a.m.
CVE-2014-5340
2014-09-0200:00:00
ubuntu.com
ubuntu.com
3
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.055 Low
EPSS
Percentile
93.1%
The wato component in Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 uses
the pickle Python module unsafely, which allows remote attackers to execute
arbitrary code via a crafted serialized object, related to an automation
URL.
Bugs
Related
cve
cve
CVE-2014-5340
2014-09-02 14:55:00
prion
prion
Design/Logic Flaw
2014-09-02 14:55:00
fedora
fedora
[SECURITY] Fedora 21 Update: check-mk-1.2.4p5-2.fc21
2014-10-05 08:14:05
[SECURITY] Fedora 21 Update: check-mk-1.2.4p5-1.fc21
2014-09-27 10:06:43
[SECURITY] Fedora 19 Update: check-mk-1.2.4p5-1.fc19
2014-09-27 09:43:00
nessus
nessus
Fedora 21 : check-mk-1.2.4p5-2.fc21 (2014-11896)
2014-10-06 00:00:00
Fedora 21 : check-mk-1.2.4p5-1.fc21 (2014-11160)
2014-09-29 00:00:00
Check_MK 1.2.4 < 1.2.4p4 / 1.2.5 < 1.2.5i4 Multiple Vulnerabilities
2017-06-28 00:00:00
securityvulns
securityvulns
redhat
redhat
(RHSA-2015:1495) Important: Red Hat Gluster Storage 3.1 update
2015-07-29 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 05:41:25
Improper Access Control
2019-05-02 05:41:24
openvas
openvas
Fedora Update for check-mk FEDORA-2014-10972
2014-10-01 00:00:00
Fedora Update for check-mk FEDORA-2014-11082
2014-10-01 00:00:00
Fedora Update for check-mk FEDORA-2014-11929
2014-10-11 00:00:00
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.055 Low
EPSS
Percentile
93.1%
Related for UB:CVE-2014-5340