TildeslashCVEs & Vulnerabilities

8 CVEs affecting Tildeslash products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

monit 64
CVE-2022-26563HIGH

An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization.

18 Jul 2023
8.8
CVSS
CVE-2019-11455HIGH

A buffer over-read in Util_urlDecode in util.c in Tildeslash Monit before 5.25.3 allows a remote authenticated attacker to retrieve the contents of adjacent memory via manipulation of GET or POST parameters. The attacker can also cause a denial of service (application outage).

22 Apr 2019
8.1
CVSS
CVE-2019-11393CRITICAL

An issue was discovered in /admin/users/update in M/Monit before 3.7.3. It allows unprivileged users to escalate their privileges to an administrator by requesting a password change and specifying the admin parameter.

22 Apr 2019
9.8
CVSS
CVE-2004-1899MEDIUM

The administration interface in Monit 1.4 through 4.2 allows remote attackers to cause an off-by-one overflow via a POST that contains 1024 bytes.

31 Dec 2004
5.0
CVSS
CVE-2004-1898CRITICALpoc

Stack-based buffer overflow in the administration interface in Monit 1.4 through 4.2 allows remote attackers to execute arbitrary code via a long username.

31 Dec 2004
10.0
CVSS
CVE-2004-1897MEDIUMpoc

Administration interface in Monit 1.4 through 4.2 allows remote attackers to cause a denial of service (segmentation fault) by sending a Basic Authentication request without a password, which causes Monit to decrement a null pointer and perform an out-of-bounds read.

31 Dec 2004
5.0
CVSS
CVE-2003-1083CRITICALpoc

Stack-based buffer overflow in Monit 1.4 to 4.1 allows remote attackers to execute arbitrary code via a long HTTP request.

31 Dec 2003
10.0
CVSS
CVE-2003-1084MEDIUM

Monit 1.4 to 4.1 allows remote attackers to cause a denial of service (daemon crash) via an HTTP POST request with a negative Content-Length field.

24 Nov 2003
5.0
CVSS
← PrevPage 1 / 1Next →