Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rsyslog rsyslog 4.1.1 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2008-5618
imudp in rsyslog 4.x prior to 4.1.2, 3.21 prior to 3.21.9 beta, and 3.20 prior to 3.20.2 generates a message even when it is sent by an unauthorized sender, which allows remote malicious users to cause a denial of service (disk consumption) via a large number of spurious messages...
Rsyslog Rsyslog 4.1.0
Rsyslog Rsyslog 3.12.1
Rsyslog Rsyslog 4.1.1
Rsyslog Rsyslog 3.20.0
8.5
CVSSv2
CVE-2008-5617
The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does not follow $AllowedSender directive, which allows remote malicious users to bypass intended access restrictions and spoof log messages or create a large number of spurious messages.
Rsyslog Rsyslog 4.1.1
Rsyslog Rsyslog 3.19.9
Rsyslog Rsyslog 3.17.5
Rsyslog Rsyslog 3.19.3
Rsyslog Rsyslog 3.19.2
Rsyslog Rsyslog 3.12.5
Rsyslog Rsyslog 3.12.4
Rsyslog Rsyslog 4.1.0
Rsyslog Rsyslog 3.20.0
Rsyslog Rsyslog 3.17.4
Rsyslog Rsyslog 3.19.8
Rsyslog Rsyslog 3.19.1
Rsyslog Rsyslog 3.19.0
Rsyslog Rsyslog 3.12.3
Rsyslog Rsyslog 3.12.2
Rsyslog Rsyslog 3.12.1
Rsyslog Rsyslog 3.19.12
Rsyslog Rsyslog 3.19.7
Rsyslog Rsyslog 3.19.6
Rsyslog Rsyslog 3.17.1
Rsyslog Rsyslog 3.15.1
Rsyslog Rsyslog 3.17.0
2.1
CVSSv2
CVE-2011-4623
Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x prior to 4.6.6, 5.x prior to 5.7.4, and 6.x prior to 6.1.4 allows local users to cause a denial of service (daemon hang) via a large file, which triggers a heap-based buffe...
Rsyslog Rsyslog 4.5.6
Rsyslog Rsyslog 4.1.2
Rsyslog Rsyslog 4.5.1
Rsyslog Rsyslog 4.6.3
Rsyslog Rsyslog 4.5.2
Rsyslog Rsyslog 4.1.1
Rsyslog Rsyslog 4.4.2
Rsyslog Rsyslog 4.6.4
Rsyslog Rsyslog 4.5.4
Rsyslog Rsyslog 4.3.2
Rsyslog Rsyslog 4.1.3
Rsyslog Rsyslog 4.5.3
Rsyslog Rsyslog 4.6.1
Rsyslog Rsyslog 4.1.0
Rsyslog Rsyslog 4.5.8
Rsyslog Rsyslog 4.1.5
Rsyslog Rsyslog 4.3.0
Rsyslog Rsyslog 4.6.2
Rsyslog Rsyslog 4.5.5
Rsyslog Rsyslog 4.4.0
Rsyslog Rsyslog 4.6.0
Rsyslog Rsyslog 4.5.0
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started