Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xymon xymon vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2019-13274
In Xymon up to and including 4.3.28, an XSS vulnerability exists in the csvinfo CGI script due to insufficient filtering of the db parameter.
Xymon Xymon
Debian Debian Linux 8.0
668
VMScore
CVE-2019-13273
In Xymon up to and including 4.3.28, a buffer overflow vulnerability exists in the csvinfo CGI script. The overflow may be exploited by sending a crafted GET request that triggers an sprintf of the srcdb parameter.
Xymon Xymon
Debian Debian Linux 8.0
668
VMScore
CVE-2019-13455
In Xymon up to and including 4.3.28, a stack-based buffer overflow vulnerability exists in the alert acknowledgment CGI tool because of expansion in acknowledge.c.
Xymon Xymon
Debian Debian Linux 8.0
668
VMScore
CVE-2019-13451
In Xymon up to and including 4.3.28, a buffer overflow vulnerability exists in history.c.
Xymon Xymon
Debian Debian Linux 8.0
668
VMScore
CVE-2019-13452
In Xymon up to and including 4.3.28, a buffer overflow vulnerability exists in reportlog.c.
Xymon Xymon
Debian Debian Linux 8.0
668
VMScore
CVE-2019-13484
In Xymon up to and including 4.3.28, a buffer overflow exists in the status-log viewer CGI because of expansion in appfeed.c.
Xymon Xymon
Debian Debian Linux 8.0
668
VMScore
CVE-2019-13485
In Xymon up to and including 4.3.28, a stack-based buffer overflow vulnerability exists in the history viewer component via a long hostname or service parameter to history.c.
Xymon Xymon
Debian Debian Linux 8.0
668
VMScore
CVE-2019-13486
In Xymon up to and including 4.3.28, a stack-based buffer overflow exists in the status-log viewer component because of expansion in svcstatus.c.
Xymon Xymon
Debian Debian Linux 8.0
668
VMScore
CVE-2015-1430
Buffer overflow in xymon 4.3.17-1.
Xymon Xymon 4.3.17-1
668
VMScore
CVE-2016-2054
Multiple buffer overflows in xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x prior to 4.3.25 allow remote malicious users to execute arbitrary code or cause a denial of service (daemon crash) via a long filename, involving handling a "config" command.
Debian Debian Linux 8.0
Xymon Xymon 4.3.3
Xymon Xymon 4.3.24
Xymon Xymon 4.3.19
Xymon Xymon 4.3.18
Xymon Xymon 4.3.11
Xymon Xymon 4.3.10
Xymon Xymon 4.2.3
Xymon Xymon 4.2.2
Xymon Xymon 4.1.2
Xymon Xymon 4.3.8
Xymon Xymon 4.3.7
Xymon Xymon 4.3.6
Xymon Xymon 4.3.21
Xymon Xymon 4.3.20
Xymon Xymon 4.3.15
Xymon Xymon 4.3.14
Xymon Xymon 4.3.0
Xymon Xymon 4.2
Xymon Xymon 4.3.5
Xymon Xymon 4.3.4
Xymon Xymon 4.3.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »