Vulnerabilidades en Tribe29
21 resultadosCVE-2022-46303HIGHCommand injection in SMS notificationsEPSS 1.1%CVE-2022-46836CRITICALPHP code injection in watolibEPSS 1.1%CVE-2023-0284MEDIUMImproper validation of LDAP user IDsEPSS 0.9%CVE-2023-1768LOWSymmetric agent data encryption fails silentlyEPSS 0.9%CVE-2023-22294HIGHPrivilege escalation in Checkmk ApplianceEPSS 0.7%CVE-2023-22318HIGHDenial of service against webconfEPSS 0.5%CVE-2022-48318MEDIUMInsecure access control mechanisms for RestAPI documentationEPSS 0.5%CVE-2022-4884LOWPath-Traversal in MKP storingEPSS 0.5%CVE-2022-48317MEDIUMInsecure Termination of RestAPI Session TokensEPSS 0.5%CVE-2023-22359MEDIUMUser-enumeration in RestAPIEPSS 0.4%CVE-2023-2020MEDIUMUnauthorized scheduling of downtimes via REST APIEPSS 0.4%CVE-2023-22309MEDIUMReflected Cross Site Scripting (XSS)EPSS 0.4%CVE-2023-22288MEDIUMEmail HTML InjectionEPSS 0.4%CVE-2022-47909MEDIUMLQL Injection in Livestatus HTTP headersEPSS 0.4%CVE-2022-46302HIGHRemote Code Execution with Root Privileges via Broad Apache PermissionsEPSS 0.4%CVE-2022-48321MEDIUMSSRF in agent-receiver APIEPSS 0.3%CVE-2022-43440HIGHPrivilege escalation via manipulated unixcat executableEPSS 0.2%CVE-2022-48320MEDIUMCSRF in add-visual endpointEPSS 0.2%CVE-2023-31207MEDIUMAutomation user secret logged to Apache access logEPSS 0.2%CVE-2023-22307MEDIUMSite-Passwords in GET parametersEPSS 0.2%