Shodan
Vulnerabilities
Vulnerable Software
Debian:  >> Debian Linux  >> 8.0  Security Vulnerabilities
CVE-2019-13274
In Xymon through 4.3.28, an XSS vulnerability exists in the csvinfo CGI script due to insufficient filtering of the db parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-27
CVE-2019-13451
In Xymon through 4.3.28, a buffer overflow vulnerability exists in history.c.
CVSS Score
9.8
EPSS Score
0.01
Published
2019-08-27
CVE-2019-13452
In Xymon through 4.3.28, a buffer overflow vulnerability exists in reportlog.c.
CVSS Score
9.8
EPSS Score
0.01
Published
2019-08-27
CVE-2019-13455
In Xymon through 4.3.28, a stack-based buffer overflow vulnerability exists in the alert acknowledgment CGI tool because of   expansion in acknowledge.c.
CVSS Score
9.8
EPSS Score
0.01
Published
2019-08-27
CVE-2019-13484
In Xymon through 4.3.28, a buffer overflow exists in the status-log viewer CGI because of   expansion in appfeed.c.
CVSS Score
9.8
EPSS Score
0.01
Published
2019-08-27
CVE-2019-13485
In Xymon through 4.3.28, a stack-based buffer overflow vulnerability exists in the history viewer component via a long hostname or service parameter to history.c.
CVSS Score
9.8
EPSS Score
0.01
Published
2019-08-27
CVE-2019-13486
In Xymon through 4.3.28, a stack-based buffer overflow exists in the status-log viewer component because of   expansion in svcstatus.c.
CVSS Score
9.8
EPSS Score
0.01
Published
2019-08-27
CVE-2019-15666
An issue was discovered in the Linux kernel before 5.0.19. There is an out-of-bounds array access in __xfrm_policy_unlink, which will cause denial of service, because verify_newpolicy_info in net/xfrm/xfrm_user.c mishandles directory validation.
CVSS Score
4.4
EPSS Score
0.047
Published
2019-08-27
CVE-2019-15538
An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel through 5.2.9. XFS partially wedges when a chgrp fails on account of being out of disk quota. xfs_setattr_nonsize is failing to unlock the ILOCK after the xfs_qm_vop_chown_reserve call fails. This is primarily a local DoS attack vector, but it might result as well in remote DoS if the XFS filesystem is exported for instance via NFS.
CVSS Score
7.5
EPSS Score
0.164
Published
2019-08-25
CVE-2019-15531
GNU Libextractor through 1.9 has a heap-based buffer over-read in the function EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c.
CVSS Score
6.5
EPSS Score
0.011
Published
2019-08-23


Products
Pricing
Contact Us

Shodan ® - All rights reserved