Max CVSS 7.5 Min CVSS 3.5 Total Count4
IDCVSSSummaryLast (major) updatePublished
CVE-2016-2058 3.5
Multiple cross-site scripting (XSS) vulnerabilities in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow (1) remote Xymon clients to inject arbitrary web script or HTML via a status-message, which is not properly handled in the "detailed status" page
18-04-2016 - 09:49 13-04-2016 - 12:59
CVE-2016-2056 6.5
xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote authenticated users to execute arbitrary commands via shell metacharacters in the adduser_name argument in (1) web/useradm.c or (2) web/chpasswd.c.
18-04-2016 - 09:32 13-04-2016 - 12:59
CVE-2016-2055 5.0
xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote attackers to read arbitrary files in the configuration directory via a "config" command.
18-04-2016 - 09:11 13-04-2016 - 12:59
CVE-2016-2054 7.5
Multiple buffer overflows in xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a long filename, involving handling a "config" comm
18-04-2016 - 09:00 13-04-2016 - 12:59
Back to Top Mark selected
Back to Top