Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-7067

Опубликовано: 10 сент. 2018
Источник: debian

Описание

Monit before version 5.20.0 is vulnerable to a cross site request forgery attack. Successful exploitation will enable an attacker to disable/enable all monitoring for a particular host or disable/enable monitoring for a specific service.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
monitfixed1:5.20.0-1package
monitno-dsajessiepackage

Примечания

  • https://bitbucket.org/tildeslash/monit/commits/c6ec3820e627f85417053e6336de2987f2d863e3?at=master

  • Although configured only on localhost, the httpd service is started by

  • default and accessible.

Связанные уязвимости

ubuntu логотип

CVE-2016-7067

CVSS3: 6.5
ubuntu
больше 7 лет назад

Monit before version 5.20.0 is vulnerable to a cross site request forgery attack. Successful exploitation will enable an attacker to disable/enable all monitoring for a particular host or disable/enable monitoring for a specific service.

nvd логотип

CVE-2016-7067

CVSS3: 6.5
nvd
больше 7 лет назад

Monit before version 5.20.0 is vulnerable to a cross site request forgery attack. Successful exploitation will enable an attacker to disable/enable all monitoring for a particular host or disable/enable monitoring for a specific service.

github логотип

GHSA-62rw-754v-xcw2

CVSS3: 6.5
github
больше 3 лет назад

Monit before version 5.20.0 is vulnerable to a cross site request forgery attack. Successful exploitation will enable an attacker to disable/enable all monitoring for a particular host or disable/enable monitoring for a specific service.

suse-cvrf логотип

openSUSE-SU-2016:2877-1

suse-cvrf
около 9 лет назад

Security update for monit