Lucene search

Tildeslash Security Vulnerabilities

cve

CVE-2003-1083

Stack-based buffer overflow in Monit 1.4 to 4.1 allows remote attackers to execute arbitrary code via a long HTTP request.

8AI Score

0.132EPSS

2005-02-13 05:00 AM

cve

CVE-2003-1084

Monit 1.4 to 4.1 allows remote attackers to cause a denial of service (daemon crash) via an HTTP POST request with a negative Content-Length field.

6.5AI Score

0.065EPSS

2005-02-13 05:00 AM

cve

CVE-2004-1898

Stack-based buffer overflow in the administration interface in Monit 1.4 through 4.2 allows remote attackers to execute arbitrary code via a long username.

8.1AI Score

0.195EPSS

2005-05-10 04:00 AM

cve

CVE-2004-1899

The administration interface in Monit 1.4 through 4.2 allows remote attackers to cause an off-by-one overflow via a POST that contains 1024 bytes.

6.9AI Score

0.016EPSS

2005-05-10 04:00 AM

cve

CVE-2019-11393

An issue was discovered in /admin/users/update in M/Monit before 3.7.3. It allows unprivileged users to escalate their privileges to an administrator by requesting a password change and specifying the admin parameter.

9.8CVSS

9.4AI Score

0.069EPSS

2019-04-22 11:29 AM

cve

CVE-2019-11455

A buffer over-read in Util_urlDecode in util.c in Tildeslash Monit before 5.25.3 allows a remote authenticated attacker to retrieve the contents of adjacent memory via manipulation of GET or POST parameters. The attacker can also cause a denial of service (application outage).

8.1CVSS

7.5AI Score

0.002EPSS

2019-04-22 04:29 PM

cve

CVE-2022-26563

An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization.

8.8CVSS

8.6AI Score

0.002EPSS

2023-07-18 02:15 PM