CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Zenoss: >> Zenoss >> 2.5.3 Security Vulnerabilities

CVE-2019-14257

pyraw in Zenoss 2.5.3 allows local privilege escalation by modifying environment variables to redirect execution before privileges are dropped, aka ZEN-31765.

CVSS Score

7.8

EPSS Score

0.0

Published

2019-08-21

CVE-2019-14258

The XML-RPC subsystem in Zenoss 2.5.3 allows XXE attacks that lead to unauthenticated information disclosure via port 9988.

CVSS Score

7.5

EPSS Score

0.006

Published

2019-08-21

Page 1

Vulnerabilities

Vulnerable Software

Zenoss: >> Zenoss >> 2.5.3 Security Vulnerabilities

Products

Pricing

Contact Us