Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xymon vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-13452
In Xymon up to and including 4.3.28, a buffer overflow vulnerability exists in reportlog.c.
Xymon Xymon
Debian Debian Linux 8.0
9.8
CVSSv3
CVE-2019-13455
In Xymon up to and including 4.3.28, a stack-based buffer overflow vulnerability exists in the alert acknowledgment CGI tool because of expansion in acknowledge.c.
Xymon Xymon
Debian Debian Linux 8.0
9.8
CVSSv3
CVE-2019-13484
In Xymon up to and including 4.3.28, a buffer overflow exists in the status-log viewer CGI because of expansion in appfeed.c.
Xymon Xymon
Debian Debian Linux 8.0
9.8
CVSSv3
CVE-2019-13486
In Xymon up to and including 4.3.28, a stack-based buffer overflow exists in the status-log viewer component because of expansion in svcstatus.c.
Xymon Xymon
Debian Debian Linux 8.0
9.8
CVSSv3
CVE-2019-13273
In Xymon up to and including 4.3.28, a buffer overflow vulnerability exists in the csvinfo CGI script. The overflow may be exploited by sending a crafted GET request that triggers an sprintf of the srcdb parameter.
Xymon Xymon
Debian Debian Linux 8.0
6.1
CVSSv3
CVE-2019-13274
In Xymon up to and including 4.3.28, an XSS vulnerability exists in the csvinfo CGI script due to insufficient filtering of the db parameter.
Xymon Xymon
Debian Debian Linux 8.0
9.8
CVSSv3
CVE-2019-13451
In Xymon up to and including 4.3.28, a buffer overflow vulnerability exists in history.c.
Xymon Xymon
Debian Debian Linux 8.0
9.8
CVSSv3
CVE-2019-13485
In Xymon up to and including 4.3.28, a stack-based buffer overflow vulnerability exists in the history viewer component via a long hostname or service parameter to history.c.
Xymon Xymon
Debian Debian Linux 8.0
9.8
CVSSv3
CVE-2015-1430
Buffer overflow in xymon 4.3.17-1.
Xymon Xymon 4.3.17-1
9.8
CVSSv3
CVE-2016-2054
Multiple buffer overflows in xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x prior to 4.3.25 allow remote malicious users to execute arbitrary code or cause a denial of service (daemon crash) via a long filename, involving handling a "config" command.
Debian Debian Linux 8.0
Xymon Xymon 4.3.3
Xymon Xymon 4.3.24
Xymon Xymon 4.3.19
Xymon Xymon 4.3.18
Xymon Xymon 4.3.11
Xymon Xymon 4.3.10
Xymon Xymon 4.2.3
Xymon Xymon 4.2.2
Xymon Xymon 4.1.2
Xymon Xymon 4.3.8
Xymon Xymon 4.3.7
Xymon Xymon 4.3.6
Xymon Xymon 4.3.21
Xymon Xymon 4.3.20
Xymon Xymon 4.3.15
Xymon Xymon 4.3.14
Xymon Xymon 4.3.0
Xymon Xymon 4.2
Xymon Xymon 4.3.5
Xymon Xymon 4.3.4
Xymon Xymon 4.3.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »