cvelistv5 - CVE-2014-2913

CVE-2014-2913 (GCVE-0-2014-2913)

Vulnerability from cvelistv5

Published

2014-05-07 10:00

Modified

2024-08-06 10:28

Severity ?

CWE

Summary

Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe. NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as "expected behavior." Also, this issue can only occur when the administrator enables the "dont_blame_nrpe" option in nrpe.conf despite the "HIGH security risk" warning within the comments

References

URL	Tags
cve@mitre.org	http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html
cve@mitre.org	http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html
cve@mitre.org	http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html
cve@mitre.org	http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html
cve@mitre.org	http://seclists.org/fulldisclosure/2014/Apr/240	Exploit
cve@mitre.org	http://seclists.org/fulldisclosure/2014/Apr/242	Exploit
cve@mitre.org	http://seclists.org/oss-sec/2014/q2/154
cve@mitre.org	http://seclists.org/oss-sec/2014/q2/155
cve@mitre.org	http://www.securityfocus.com/bid/66969
af854a3a-2127-422b-91ae-364da2661108	http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/fulldisclosure/2014/Apr/240	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/fulldisclosure/2014/Apr/242	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/oss-sec/2014/q2/154
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/oss-sec/2014/q2/155
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/66969

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T10:28:46.232Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "openSUSE-SU-2014:0603",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html"
          },
          {
            "name": "66969",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/66969"
          },
          {
            "name": "[oss-security] 20140422 Re: CVE Request: Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://seclists.org/oss-sec/2014/q2/155"
          },
          {
            "name": "FEDORA-2015-15398",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html"
          },
          {
            "name": "openSUSE-SU-2014:0594",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html"
          },
          {
            "name": "SUSE-SU-2014:0682",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html"
          },
          {
            "name": "[oss-security] 20140422 Re: CVE Request: Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://seclists.org/oss-sec/2014/q2/154"
          },
          {
            "name": "20140417 NRPE - Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2014/Apr/240"
          },
          {
            "name": "20140418 Re: NRPE - Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2014/Apr/242"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2014-04-17T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe.  NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as \"expected behavior.\" Also, this issue can only occur when the administrator enables the \"dont_blame_nrpe\" option in nrpe.conf despite the \"HIGH security risk\" warning within the comments"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-12-20T16:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "openSUSE-SU-2014:0603",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html"
        },
        {
          "name": "66969",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/66969"
        },
        {
          "name": "[oss-security] 20140422 Re: CVE Request: Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://seclists.org/oss-sec/2014/q2/155"
        },
        {
          "name": "FEDORA-2015-15398",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html"
        },
        {
          "name": "openSUSE-SU-2014:0594",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html"
        },
        {
          "name": "SUSE-SU-2014:0682",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html"
        },
        {
          "name": "[oss-security] 20140422 Re: CVE Request: Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://seclists.org/oss-sec/2014/q2/154"
        },
        {
          "name": "20140417 NRPE - Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2014/Apr/240"
        },
        {
          "name": "20140418 Re: NRPE - Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2014/Apr/242"
        }
      ],
      "tags": [
        "disputed"
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2014-2913",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "** DISPUTED ** Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe.  NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as \"expected behavior.\" Also, this issue can only occur when the administrator enables the \"dont_blame_nrpe\" option in nrpe.conf despite the \"HIGH security risk\" warning within the comments."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "openSUSE-SU-2014:0603",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html"
            },
            {
              "name": "66969",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/66969"
            },
            {
              "name": "[oss-security] 20140422 Re: CVE Request: Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
              "refsource": "MLIST",
              "url": "http://seclists.org/oss-sec/2014/q2/155"
            },
            {
              "name": "FEDORA-2015-15398",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html"
            },
            {
              "name": "openSUSE-SU-2014:0594",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html"
            },
            {
              "name": "SUSE-SU-2014:0682",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html"
            },
            {
              "name": "[oss-security] 20140422 Re: CVE Request: Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
              "refsource": "MLIST",
              "url": "http://seclists.org/oss-sec/2014/q2/154"
            },
            {
              "name": "20140417 NRPE - Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2014/Apr/240"
            },
            {
              "name": "20140418 Re: NRPE - Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2014/Apr/242"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2014-2913",
    "datePublished": "2014-05-07T10:00:00",
    "dateReserved": "2014-04-18T00:00:00",
    "dateUpdated": "2024-08-06T10:28:46.232Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2014-2913\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2014-05-07T10:55:06.977\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[{\"sourceIdentifier\":\"cve@mitre.org\",\"tags\":[\"disputed\"]}],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe.  NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as \\\"expected behavior.\\\" Also, this issue can only occur when the administrator enables the \\\"dont_blame_nrpe\\\" option in nrpe.conf despite the \\\"HIGH security risk\\\" warning within the comments\"},{\"lang\":\"es\",\"value\":\"** DISPUTADA ** Vulnerabilidad de lista negra incompleta en nrpe.c en Nagios Remote Plugin Executor (NRPE) 2.15 y anteriores permite a atacantes remotos ejecutar comandos arbitrarios a trav\u00e9s de un caracter de nueva l\u00ednea en la opci\u00f3n -a hacia libexec/check_nrpe. NOTA: este problema est\u00e1 en disputa por partes m\u00faltiples. Se ha informado que el proveedor permite l\u00edneas nuevas como \u0027comportamiento esperado.\u0027 adem\u00e1s, este problema solo puede ocurrir cuando el administrador habilita la opci\u00f3n \u0027dont_blame_nrpe\u0027 en nrpe.conf a pesar del aviso de \u0027riesgo para la seguridad alto\u0027 dentro de los comentarios.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nagios:remote_plugin_executor:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.15\",\"matchCriteriaId\":\"DD2278A9-DEA0-410C-A3CD-386131D8C919\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE554781-1EB9-446E-911F-6C11970C47F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFBF430B-0832-44B0-AA0E-BA9E467F7668\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A10BC294-9196-425F-9FB0-B1625465B47F\"}]}]}],\"references\":[{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://seclists.org/fulldisclosure/2014/Apr/240\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://seclists.org/fulldisclosure/2014/Apr/242\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://seclists.org/oss-sec/2014/q2/154\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://seclists.org/oss-sec/2014/q2/155\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/66969\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2014/Apr/240\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://seclists.org/fulldisclosure/2014/Apr/242\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://seclists.org/oss-sec/2014/q2/154\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/oss-sec/2014/q2/155\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/66969\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"evaluatorImpact\":\"Per: http://cwe.mitre.org/data/definitions/184.html\\n\\n\\\"CWE-184: Incomplete Blacklist\\\"\"}}"
  }
}

opensuse-su-2024:11099-1

Vulnerability from csaf_opensuse

Published

2024-06-15 00:00

Modified

2024-06-15 00:00

Summary

monitoring-plugins-nrpe-4.0.3-3.5 on GA media

Notes

Title of the patch

monitoring-plugins-nrpe-4.0.3-3.5 on GA media

Description of the patch

These are all security issues fixed in the monitoring-plugins-nrpe-4.0.3-3.5 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-11099

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "monitoring-plugins-nrpe-4.0.3-3.5 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the monitoring-plugins-nrpe-4.0.3-3.5 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-11099",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11099-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-2913 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-2913/"
      }
    ],
    "title": "monitoring-plugins-nrpe-4.0.3-3.5 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:11099-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "monitoring-plugins-nrpe-4.0.3-3.5.aarch64",
                "product": {
                  "name": "monitoring-plugins-nrpe-4.0.3-3.5.aarch64",
                  "product_id": "monitoring-plugins-nrpe-4.0.3-3.5.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-4.0.3-3.5.aarch64",
                "product": {
                  "name": "nrpe-4.0.3-3.5.aarch64",
                  "product_id": "nrpe-4.0.3-3.5.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-doc-4.0.3-3.5.aarch64",
                "product": {
                  "name": "nrpe-doc-4.0.3-3.5.aarch64",
                  "product_id": "nrpe-doc-4.0.3-3.5.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "monitoring-plugins-nrpe-4.0.3-3.5.ppc64le",
                "product": {
                  "name": "monitoring-plugins-nrpe-4.0.3-3.5.ppc64le",
                  "product_id": "monitoring-plugins-nrpe-4.0.3-3.5.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-4.0.3-3.5.ppc64le",
                "product": {
                  "name": "nrpe-4.0.3-3.5.ppc64le",
                  "product_id": "nrpe-4.0.3-3.5.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-doc-4.0.3-3.5.ppc64le",
                "product": {
                  "name": "nrpe-doc-4.0.3-3.5.ppc64le",
                  "product_id": "nrpe-doc-4.0.3-3.5.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "monitoring-plugins-nrpe-4.0.3-3.5.s390x",
                "product": {
                  "name": "monitoring-plugins-nrpe-4.0.3-3.5.s390x",
                  "product_id": "monitoring-plugins-nrpe-4.0.3-3.5.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-4.0.3-3.5.s390x",
                "product": {
                  "name": "nrpe-4.0.3-3.5.s390x",
                  "product_id": "nrpe-4.0.3-3.5.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-doc-4.0.3-3.5.s390x",
                "product": {
                  "name": "nrpe-doc-4.0.3-3.5.s390x",
                  "product_id": "nrpe-doc-4.0.3-3.5.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "monitoring-plugins-nrpe-4.0.3-3.5.x86_64",
                "product": {
                  "name": "monitoring-plugins-nrpe-4.0.3-3.5.x86_64",
                  "product_id": "monitoring-plugins-nrpe-4.0.3-3.5.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-4.0.3-3.5.x86_64",
                "product": {
                  "name": "nrpe-4.0.3-3.5.x86_64",
                  "product_id": "nrpe-4.0.3-3.5.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-doc-4.0.3-3.5.x86_64",
                "product": {
                  "name": "nrpe-doc-4.0.3-3.5.x86_64",
                  "product_id": "nrpe-doc-4.0.3-3.5.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-plugins-nrpe-4.0.3-3.5.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:monitoring-plugins-nrpe-4.0.3-3.5.aarch64"
        },
        "product_reference": "monitoring-plugins-nrpe-4.0.3-3.5.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-plugins-nrpe-4.0.3-3.5.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:monitoring-plugins-nrpe-4.0.3-3.5.ppc64le"
        },
        "product_reference": "monitoring-plugins-nrpe-4.0.3-3.5.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-plugins-nrpe-4.0.3-3.5.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:monitoring-plugins-nrpe-4.0.3-3.5.s390x"
        },
        "product_reference": "monitoring-plugins-nrpe-4.0.3-3.5.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-plugins-nrpe-4.0.3-3.5.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:monitoring-plugins-nrpe-4.0.3-3.5.x86_64"
        },
        "product_reference": "monitoring-plugins-nrpe-4.0.3-3.5.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-4.0.3-3.5.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:nrpe-4.0.3-3.5.aarch64"
        },
        "product_reference": "nrpe-4.0.3-3.5.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-4.0.3-3.5.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:nrpe-4.0.3-3.5.ppc64le"
        },
        "product_reference": "nrpe-4.0.3-3.5.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-4.0.3-3.5.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:nrpe-4.0.3-3.5.s390x"
        },
        "product_reference": "nrpe-4.0.3-3.5.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-4.0.3-3.5.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:nrpe-4.0.3-3.5.x86_64"
        },
        "product_reference": "nrpe-4.0.3-3.5.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-doc-4.0.3-3.5.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:nrpe-doc-4.0.3-3.5.aarch64"
        },
        "product_reference": "nrpe-doc-4.0.3-3.5.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-doc-4.0.3-3.5.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:nrpe-doc-4.0.3-3.5.ppc64le"
        },
        "product_reference": "nrpe-doc-4.0.3-3.5.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-doc-4.0.3-3.5.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:nrpe-doc-4.0.3-3.5.s390x"
        },
        "product_reference": "nrpe-doc-4.0.3-3.5.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-doc-4.0.3-3.5.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:nrpe-doc-4.0.3-3.5.x86_64"
        },
        "product_reference": "nrpe-doc-4.0.3-3.5.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2014-2913",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-2913"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** DISPUTED ** Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe.  NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as \"expected behavior.\" Also, this issue can only occur when the administrator enables the \"dont_blame_nrpe\" option in nrpe.conf despite the \"HIGH security risk\" warning within the comments.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:monitoring-plugins-nrpe-4.0.3-3.5.aarch64",
          "openSUSE Tumbleweed:monitoring-plugins-nrpe-4.0.3-3.5.ppc64le",
          "openSUSE Tumbleweed:monitoring-plugins-nrpe-4.0.3-3.5.s390x",
          "openSUSE Tumbleweed:monitoring-plugins-nrpe-4.0.3-3.5.x86_64",
          "openSUSE Tumbleweed:nrpe-4.0.3-3.5.aarch64",
          "openSUSE Tumbleweed:nrpe-4.0.3-3.5.ppc64le",
          "openSUSE Tumbleweed:nrpe-4.0.3-3.5.s390x",
          "openSUSE Tumbleweed:nrpe-4.0.3-3.5.x86_64",
          "openSUSE Tumbleweed:nrpe-doc-4.0.3-3.5.aarch64",
          "openSUSE Tumbleweed:nrpe-doc-4.0.3-3.5.ppc64le",
          "openSUSE Tumbleweed:nrpe-doc-4.0.3-3.5.s390x",
          "openSUSE Tumbleweed:nrpe-doc-4.0.3-3.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-2913",
          "url": "https://www.suse.com/security/cve/CVE-2014-2913"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 874743 for CVE-2014-2913",
          "url": "https://bugzilla.suse.com/874743"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:monitoring-plugins-nrpe-4.0.3-3.5.aarch64",
            "openSUSE Tumbleweed:monitoring-plugins-nrpe-4.0.3-3.5.ppc64le",
            "openSUSE Tumbleweed:monitoring-plugins-nrpe-4.0.3-3.5.s390x",
            "openSUSE Tumbleweed:monitoring-plugins-nrpe-4.0.3-3.5.x86_64",
            "openSUSE Tumbleweed:nrpe-4.0.3-3.5.aarch64",
            "openSUSE Tumbleweed:nrpe-4.0.3-3.5.ppc64le",
            "openSUSE Tumbleweed:nrpe-4.0.3-3.5.s390x",
            "openSUSE Tumbleweed:nrpe-4.0.3-3.5.x86_64",
            "openSUSE Tumbleweed:nrpe-doc-4.0.3-3.5.aarch64",
            "openSUSE Tumbleweed:nrpe-doc-4.0.3-3.5.ppc64le",
            "openSUSE Tumbleweed:nrpe-doc-4.0.3-3.5.s390x",
            "openSUSE Tumbleweed:nrpe-doc-4.0.3-3.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2014-2913"
    }
  ]
}

suse-su-2024:1417-1

Vulnerability from csaf_suse

Published

2024-04-24 08:34

Modified

2024-04-24 08:34

Summary

Security update for nrpe

Notes

Title of the patch

Security update for nrpe

Description of the patch

This update for nrpe fixes the following issues: CVE-2014-2913: Fixed remote command execution when command arguments are enabled (bsc#1118590,bsc#874743)

Patchnames

SUSE-2024-1417,SUSE-SLE-SERVER-12-SP5-2024-1417

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for nrpe",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for nrpe fixes the following issues:\n\nCVE-2014-2913: Fixed remote command execution when command arguments are enabled (bsc#1118590,bsc#874743) \n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2024-1417,SUSE-SLE-SERVER-12-SP5-2024-1417",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1417-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2024:1417-1",
        "url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241417-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2024:1417-1",
        "url": "https://lists.suse.com/pipermail/sle-updates/2024-April/035087.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118590",
        "url": "https://bugzilla.suse.com/1118590"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 874743",
        "url": "https://bugzilla.suse.com/874743"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-2913 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-2913/"
      }
    ],
    "title": "Security update for nrpe",
    "tracking": {
      "current_release_date": "2024-04-24T08:34:19Z",
      "generator": {
        "date": "2024-04-24T08:34:19Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2024:1417-1",
      "initial_release_date": "2024-04-24T08:34:19Z",
      "revision_history": [
        {
          "date": "2024-04-24T08:34:19Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "monitoring-plugins-nrpe-2.15-6.6.1.aarch64",
                "product": {
                  "name": "monitoring-plugins-nrpe-2.15-6.6.1.aarch64",
                  "product_id": "monitoring-plugins-nrpe-2.15-6.6.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-2.15-6.6.1.aarch64",
                "product": {
                  "name": "nrpe-2.15-6.6.1.aarch64",
                  "product_id": "nrpe-2.15-6.6.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-doc-2.15-6.6.1.aarch64",
                "product": {
                  "name": "nrpe-doc-2.15-6.6.1.aarch64",
                  "product_id": "nrpe-doc-2.15-6.6.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "monitoring-plugins-nrpe-2.15-6.6.1.i586",
                "product": {
                  "name": "monitoring-plugins-nrpe-2.15-6.6.1.i586",
                  "product_id": "monitoring-plugins-nrpe-2.15-6.6.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-2.15-6.6.1.i586",
                "product": {
                  "name": "nrpe-2.15-6.6.1.i586",
                  "product_id": "nrpe-2.15-6.6.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-doc-2.15-6.6.1.i586",
                "product": {
                  "name": "nrpe-doc-2.15-6.6.1.i586",
                  "product_id": "nrpe-doc-2.15-6.6.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "monitoring-plugins-nrpe-2.15-6.6.1.ppc64le",
                "product": {
                  "name": "monitoring-plugins-nrpe-2.15-6.6.1.ppc64le",
                  "product_id": "monitoring-plugins-nrpe-2.15-6.6.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-2.15-6.6.1.ppc64le",
                "product": {
                  "name": "nrpe-2.15-6.6.1.ppc64le",
                  "product_id": "nrpe-2.15-6.6.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-doc-2.15-6.6.1.ppc64le",
                "product": {
                  "name": "nrpe-doc-2.15-6.6.1.ppc64le",
                  "product_id": "nrpe-doc-2.15-6.6.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "monitoring-plugins-nrpe-2.15-6.6.1.s390",
                "product": {
                  "name": "monitoring-plugins-nrpe-2.15-6.6.1.s390",
                  "product_id": "monitoring-plugins-nrpe-2.15-6.6.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-2.15-6.6.1.s390",
                "product": {
                  "name": "nrpe-2.15-6.6.1.s390",
                  "product_id": "nrpe-2.15-6.6.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-doc-2.15-6.6.1.s390",
                "product": {
                  "name": "nrpe-doc-2.15-6.6.1.s390",
                  "product_id": "nrpe-doc-2.15-6.6.1.s390"
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "monitoring-plugins-nrpe-2.15-6.6.1.s390x",
                "product": {
                  "name": "monitoring-plugins-nrpe-2.15-6.6.1.s390x",
                  "product_id": "monitoring-plugins-nrpe-2.15-6.6.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-2.15-6.6.1.s390x",
                "product": {
                  "name": "nrpe-2.15-6.6.1.s390x",
                  "product_id": "nrpe-2.15-6.6.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-doc-2.15-6.6.1.s390x",
                "product": {
                  "name": "nrpe-doc-2.15-6.6.1.s390x",
                  "product_id": "nrpe-doc-2.15-6.6.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "monitoring-plugins-nrpe-2.15-6.6.1.x86_64",
                "product": {
                  "name": "monitoring-plugins-nrpe-2.15-6.6.1.x86_64",
                  "product_id": "monitoring-plugins-nrpe-2.15-6.6.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-2.15-6.6.1.x86_64",
                "product": {
                  "name": "nrpe-2.15-6.6.1.x86_64",
                  "product_id": "nrpe-2.15-6.6.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "nrpe-doc-2.15-6.6.1.x86_64",
                "product": {
                  "name": "nrpe-doc-2.15-6.6.1.x86_64",
                  "product_id": "nrpe-doc-2.15-6.6.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP5",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP5",
                  "product_id": "SUSE Linux Enterprise Server 12 SP5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:12:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp5"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-plugins-nrpe-2.15-6.6.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.aarch64"
        },
        "product_reference": "monitoring-plugins-nrpe-2.15-6.6.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-plugins-nrpe-2.15-6.6.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.ppc64le"
        },
        "product_reference": "monitoring-plugins-nrpe-2.15-6.6.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-plugins-nrpe-2.15-6.6.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.s390x"
        },
        "product_reference": "monitoring-plugins-nrpe-2.15-6.6.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-plugins-nrpe-2.15-6.6.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.x86_64"
        },
        "product_reference": "monitoring-plugins-nrpe-2.15-6.6.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-2.15-6.6.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:nrpe-2.15-6.6.1.aarch64"
        },
        "product_reference": "nrpe-2.15-6.6.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-2.15-6.6.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:nrpe-2.15-6.6.1.ppc64le"
        },
        "product_reference": "nrpe-2.15-6.6.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-2.15-6.6.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:nrpe-2.15-6.6.1.s390x"
        },
        "product_reference": "nrpe-2.15-6.6.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-2.15-6.6.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:nrpe-2.15-6.6.1.x86_64"
        },
        "product_reference": "nrpe-2.15-6.6.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-plugins-nrpe-2.15-6.6.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.aarch64"
        },
        "product_reference": "monitoring-plugins-nrpe-2.15-6.6.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-plugins-nrpe-2.15-6.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.ppc64le"
        },
        "product_reference": "monitoring-plugins-nrpe-2.15-6.6.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-plugins-nrpe-2.15-6.6.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.s390x"
        },
        "product_reference": "monitoring-plugins-nrpe-2.15-6.6.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "monitoring-plugins-nrpe-2.15-6.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.x86_64"
        },
        "product_reference": "monitoring-plugins-nrpe-2.15-6.6.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-2.15-6.6.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:nrpe-2.15-6.6.1.aarch64"
        },
        "product_reference": "nrpe-2.15-6.6.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-2.15-6.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:nrpe-2.15-6.6.1.ppc64le"
        },
        "product_reference": "nrpe-2.15-6.6.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-2.15-6.6.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:nrpe-2.15-6.6.1.s390x"
        },
        "product_reference": "nrpe-2.15-6.6.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nrpe-2.15-6.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:nrpe-2.15-6.6.1.x86_64"
        },
        "product_reference": "nrpe-2.15-6.6.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2014-2913",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-2913"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** DISPUTED ** Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe.  NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as \"expected behavior.\" Also, this issue can only occur when the administrator enables the \"dont_blame_nrpe\" option in nrpe.conf despite the \"HIGH security risk\" warning within the comments.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:nrpe-2.15-6.6.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:nrpe-2.15-6.6.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:nrpe-2.15-6.6.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:nrpe-2.15-6.6.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:nrpe-2.15-6.6.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:nrpe-2.15-6.6.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:nrpe-2.15-6.6.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:nrpe-2.15-6.6.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-2913",
          "url": "https://www.suse.com/security/cve/CVE-2014-2913"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 874743 for CVE-2014-2913",
          "url": "https://bugzilla.suse.com/874743"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:nrpe-2.15-6.6.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:nrpe-2.15-6.6.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:nrpe-2.15-6.6.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:nrpe-2.15-6.6.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:monitoring-plugins-nrpe-2.15-6.6.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:nrpe-2.15-6.6.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:nrpe-2.15-6.6.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:nrpe-2.15-6.6.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:nrpe-2.15-6.6.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-04-24T08:34:19Z",
          "details": "important"
        }
      ],
      "title": "CVE-2014-2913"
    }
  ]
}

gsd-2014-2913

Vulnerability from gsd

Modified

2023-12-13 01:22

Details

** DISPUTED ** Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe. NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as "expected behavior." Also, this issue can only occur when the administrator enables the "dont_blame_nrpe" option in nrpe.conf despite the "HIGH security risk" warning within the comments.

Aliases

CVE-2014-2913

Aliases

CVE-2014-2913

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2014-2913",
    "description": "** DISPUTED ** Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe.  NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as \"expected behavior.\" Also, this issue can only occur when the administrator enables the \"dont_blame_nrpe\" option in nrpe.conf despite the \"HIGH security risk\" warning within the comments.",
    "id": "GSD-2014-2913",
    "references": [
      "https://www.suse.com/security/cve/CVE-2014-2913.html",
      "https://advisories.mageia.org/CVE-2014-2913.html",
      "https://security.archlinux.org/CVE-2014-2913",
      "https://alas.aws.amazon.com/cve/html/CVE-2014-2913.html",
      "https://packetstormsecurity.com/files/cve/CVE-2014-2913"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2014-2913"
      ],
      "details": "** DISPUTED ** Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe.  NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as \"expected behavior.\" Also, this issue can only occur when the administrator enables the \"dont_blame_nrpe\" option in nrpe.conf despite the \"HIGH security risk\" warning within the comments.",
      "id": "GSD-2014-2913",
      "modified": "2023-12-13T01:22:46.077030Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2014-2913",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "** DISPUTED ** Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe.  NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as \"expected behavior.\" Also, this issue can only occur when the administrator enables the \"dont_blame_nrpe\" option in nrpe.conf despite the \"HIGH security risk\" warning within the comments."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "openSUSE-SU-2014:0603",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html"
          },
          {
            "name": "66969",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/66969"
          },
          {
            "name": "[oss-security] 20140422 Re: CVE Request: Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
            "refsource": "MLIST",
            "url": "http://seclists.org/oss-sec/2014/q2/155"
          },
          {
            "name": "FEDORA-2015-15398",
            "refsource": "FEDORA",
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html"
          },
          {
            "name": "openSUSE-SU-2014:0594",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html"
          },
          {
            "name": "SUSE-SU-2014:0682",
            "refsource": "SUSE",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html"
          },
          {
            "name": "[oss-security] 20140422 Re: CVE Request: Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
            "refsource": "MLIST",
            "url": "http://seclists.org/oss-sec/2014/q2/154"
          },
          {
            "name": "20140417 NRPE - Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
            "refsource": "FULLDISC",
            "url": "http://seclists.org/fulldisclosure/2014/Apr/240"
          },
          {
            "name": "20140418 Re: NRPE - Nagios Remote Plugin Executor \u003c= 2.15 Remote Command Execution",
            "refsource": "FULLDISC",
            "url": "http://seclists.org/fulldisclosure/2014/Apr/242"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:nagios:remote_plugin_executor:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "DD2278A9-DEA0-410C-A3CD-386131D8C919",
                    "versionEndIncluding": "2.15",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*",
                    "matchCriteriaId": "DE554781-1EB9-446E-911F-6C11970C47F4",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*",
                    "matchCriteriaId": "DFBF430B-0832-44B0-AA0E-BA9E467F7668",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*",
                    "matchCriteriaId": "A10BC294-9196-425F-9FB0-B1625465B47F",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe.  NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as \"expected behavior.\" Also, this issue can only occur when the administrator enables the \"dont_blame_nrpe\" option in nrpe.conf despite the \"HIGH security risk\" warning within the comments"
          },
          {
            "lang": "es",
            "value": "** DISPUTADA ** Vulnerabilidad de lista negra incompleta en nrpe.c en Nagios Remote Plugin Executor (NRPE) 2.15 y anteriores permite a atacantes remotos ejecutar comandos arbitrarios a trav\u00e9s de un caracter de nueva l\u00ednea en la opci\u00f3n -a hacia libexec/check_nrpe. NOTA: este problema est\u00e1 en disputa por partes m\u00faltiples. Se ha informado que el proveedor permite l\u00edneas nuevas como \u0027comportamiento esperado.\u0027 adem\u00e1s, este problema solo puede ocurrir cuando el administrador habilita la opci\u00f3n \u0027dont_blame_nrpe\u0027 en nrpe.conf a pesar del aviso de \u0027riesgo para la seguridad alto\u0027 dentro de los comentarios."
          }
        ],
        "evaluatorImpact": "Per: http://cwe.mitre.org/data/definitions/184.html\n\n\"CWE-184: Incomplete Blacklist\"",
        "id": "CVE-2014-2913",
        "lastModified": "2024-04-11T00:51:35.653",
        "metrics": {
          "cvssMetricV2": [
            {
              "acInsufInfo": false,
              "baseSeverity": "HIGH",
              "cvssData": {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "integrityImpact": "PARTIAL",
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              "exploitabilityScore": 10.0,
              "impactScore": 6.4,
              "obtainAllPrivilege": false,
              "obtainOtherPrivilege": false,
              "obtainUserPrivilege": false,
              "source": "nvd@nist.gov",
              "type": "Primary",
              "userInteractionRequired": false
            }
          ]
        },
        "published": "2014-05-07T10:55:06.977",
        "references": [
          {
            "source": "cve@mitre.org",
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html"
          },
          {
            "source": "cve@mitre.org",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html"
          },
          {
            "source": "cve@mitre.org",
            "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html"
          },
          {
            "source": "cve@mitre.org",
            "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html"
          },
          {
            "source": "cve@mitre.org",
            "tags": [
              "Exploit"
            ],
            "url": "http://seclists.org/fulldisclosure/2014/Apr/240"
          },
          {
            "source": "cve@mitre.org",
            "tags": [
              "Exploit"
            ],
            "url": "http://seclists.org/fulldisclosure/2014/Apr/242"
          },
          {
            "source": "cve@mitre.org",
            "url": "http://seclists.org/oss-sec/2014/q2/154"
          },
          {
            "source": "cve@mitre.org",
            "url": "http://seclists.org/oss-sec/2014/q2/155"
          },
          {
            "source": "cve@mitre.org",
            "url": "http://www.securityfocus.com/bid/66969"
          }
        ],
        "sourceIdentifier": "cve@mitre.org",
        "vulnStatus": "Modified",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "NVD-CWE-Other"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}

ghsa-95rp-rj38-x3rc

Vulnerability from github

Published

2022-05-14 02:09

Modified

2022-05-14 02:09

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2014-2913"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2014-05-07T10:55:00Z",
    "severity": "HIGH"
  },
  "details": "** DISPUTED ** Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe.  NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as \"expected behavior.\" Also, this issue can only occur when the administrator enables the \"dont_blame_nrpe\" option in nrpe.conf despite the \"HIGH security risk\" warning within the comments.",
  "id": "GHSA-95rp-rj38-x3rc",
  "modified": "2022-05-14T02:09:29Z",
  "published": "2022-05-14T02:09:29Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2913"
    },
    {
      "type": "WEB",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2014/Apr/240"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2014/Apr/242"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/oss-sec/2014/q2/154"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/oss-sec/2014/q2/155"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/66969"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

fkie_cve-2014-2913

Vulnerability from fkie_nvd

Published

2014-05-07 10:55

Modified

2025-04-12 10:46

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html
cve@mitre.org	http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html
cve@mitre.org	http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html
cve@mitre.org	http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html
cve@mitre.org	http://seclists.org/fulldisclosure/2014/Apr/240	Exploit
cve@mitre.org	http://seclists.org/fulldisclosure/2014/Apr/242	Exploit
cve@mitre.org	http://seclists.org/oss-sec/2014/q2/154
cve@mitre.org	http://seclists.org/oss-sec/2014/q2/155
cve@mitre.org	http://www.securityfocus.com/bid/66969
af854a3a-2127-422b-91ae-364da2661108	http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/fulldisclosure/2014/Apr/240	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/fulldisclosure/2014/Apr/242	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/oss-sec/2014/q2/154
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/oss-sec/2014/q2/155
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/66969

Impacted products

Vendor	Product	Version
nagios	remote_plugin_executor	*
opensuse	opensuse	11.4
opensuse	opensuse	12.3
opensuse	opensuse	13.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:nagios:remote_plugin_executor:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD2278A9-DEA0-410C-A3CD-386131D8C919",
              "versionEndIncluding": "2.15",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE554781-1EB9-446E-911F-6C11970C47F4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "DFBF430B-0832-44B0-AA0E-BA9E467F7668",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A10BC294-9196-425F-9FB0-B1625465B47F",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [
    {
      "sourceIdentifier": "cve@mitre.org",
      "tags": [
        "disputed"
      ]
    }
  ],
  "descriptions": [
    {
      "lang": "en",
      "value": "Incomplete blacklist vulnerability in nrpe.c in Nagios Remote Plugin Executor (NRPE) 2.15 and earlier allows remote attackers to execute arbitrary commands via a newline character in the -a option to libexec/check_nrpe.  NOTE: this issue is disputed by multiple parties. It has been reported that the vendor allows newlines as \"expected behavior.\" Also, this issue can only occur when the administrator enables the \"dont_blame_nrpe\" option in nrpe.conf despite the \"HIGH security risk\" warning within the comments"
    },
    {
      "lang": "es",
      "value": "** DISPUTADA ** Vulnerabilidad de lista negra incompleta en nrpe.c en Nagios Remote Plugin Executor (NRPE) 2.15 y anteriores permite a atacantes remotos ejecutar comandos arbitrarios a trav\u00e9s de un caracter de nueva l\u00ednea en la opci\u00f3n -a hacia libexec/check_nrpe. NOTA: este problema est\u00e1 en disputa por partes m\u00faltiples. Se ha informado que el proveedor permite l\u00edneas nuevas como \u0027comportamiento esperado.\u0027 adem\u00e1s, este problema solo puede ocurrir cuando el administrador habilita la opci\u00f3n \u0027dont_blame_nrpe\u0027 en nrpe.conf a pesar del aviso de \u0027riesgo para la seguridad alto\u0027 dentro de los comentarios."
    }
  ],
  "evaluatorImpact": "Per: http://cwe.mitre.org/data/definitions/184.html\n\n\"CWE-184: Incomplete Blacklist\"",
  "id": "CVE-2014-2913",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2014-05-07T10:55:06.977",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://seclists.org/fulldisclosure/2014/Apr/240"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://seclists.org/fulldisclosure/2014/Apr/242"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://seclists.org/oss-sec/2014/q2/154"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://seclists.org/oss-sec/2014/q2/155"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/66969"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166528.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00011.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00005.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00014.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://seclists.org/fulldisclosure/2014/Apr/240"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://seclists.org/fulldisclosure/2014/Apr/242"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://seclists.org/oss-sec/2014/q2/154"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://seclists.org/oss-sec/2014/q2/155"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/66969"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2014-2913 (GCVE-0-2014-2913)

Vulnerability from cvelistv5

opensuse-su-2024:11099-1

Vulnerability from csaf_opensuse

suse-su-2024:1417-1

Vulnerability from csaf_suse

gsd-2014-2913

Vulnerability from gsd

ghsa-95rp-rj38-x3rc

Vulnerability from github

fkie_cve-2014-2913

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature