Search CVE reports
41 – 50 of 42564 results
security update
1 affected package
dnsdist
| Package | 22.04 LTS |
|---|---|
| dnsdist | Needs evaluation |
security update
1 affected package
dnsdist
| Package | 22.04 LTS |
|---|---|
| dnsdist | Needs evaluation |
security update
1 affected package
dnsdist
| Package | 22.04 LTS |
|---|---|
| dnsdist | Needs evaluation |
security update
1 affected package
dnsdist
| Package | 22.04 LTS |
|---|---|
| dnsdist | Needs evaluation |
Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Command Injection due to lack of sanitization in the escape_command() function. The escape_command() function at...
1 affected package
cacti
| Package | 22.04 LTS |
|---|---|
| cacti | Needs evaluation |
security update
1 affected package
pdns-recursor
| Package | 22.04 LTS |
|---|---|
| pdns-recursor | Needs evaluation |
security update
1 affected package
dnsdist
| Package | 22.04 LTS |
|---|---|
| dnsdist | Needs evaluation |
Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have pre-authentication SQL Injection via unanchored FILTER_VALIDATE_REGEXP in graph_view.php. This issue has been fixed in version 1.2.31.
1 affected package
cacti
| Package | 22.04 LTS |
|---|---|
| cacti | Needs evaluation |
Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have a Stored SQL Injection vulnerability through graph_name_regexp in the Reports feature. This issue has been fixed in version 1.2.31.
1 affected package
cacti
| Package | 22.04 LTS |
|---|---|
| cacti | Needs evaluation |
Cacti is an open source performance and fault management framework. In versions 1.2.30 and prior, the rfilter request parameter is retrieved via the raw accessor grv() (rather than gfrv() with FILTER_VALIDATE_IS_REGEX validation)...
1 affected package
cacti
| Package | 22.04 LTS |
|---|---|
| cacti | Needs evaluation |