pkg:Debian/nagvis

All known vulnerabilities

• HIGH8.1CVE-2022-3979A vulnerability was found in NagVis up to 1.9.33 and classified as problematic.
  from 0, < 1:1.9.25-2+deb11u1
• HIGH7.5CVE-2024-38866nagvis - security update
  from 0, < 1:1.9.25-2+deb11u2
• HIGH7.5CVE-2024-38866nagvis - security update
  from 0, < 1:1.9.25-2+deb11u2
• HIGH7.2The "NagVis" component within Checkmk is vulnerable to remote code execution.
  from 0, < 1:1.9.25-2+deb11u1
• MEDIUM6.5Nagvis before 1.9.34 was discovered to contain an arbitrary file read vulnerability via the component /core/classes/NagVisHoverUrl.php.
  from 0, < 1:1.9.25-2+deb11u1
• MEDIUM6.5nagvis - security update
  from 0, < 1:1.9.25-2+deb11u1
• MEDIUM6.5nagvis - security update
  from 0, < 1:1.9.25-2+deb11u1
• MEDIUM6.1Improper neutralization of input in Nagvis before version 1.9.47 which can lead to XSS
  from 0, < 1:1.9.25-2+deb11u2
• MEDIUM6.1Improper neutralization of input in Nagvis before version 1.9.42 which can lead to XSS
  from 0, < 1:1.9.25-2+deb11u1
• MEDIUM6.1XSS exists in NagVis before 1.9.38 via the select function in share/server/core/functions/html.php.
  from 0, < 1:1.9.25-2+deb11u1
• MEDIUM5.4The "NagVis" component within Checkmk is vulnerable to reflected cross-site scripting.
  from 0, < 1:1.9.25-2+deb11u1
• MEDIUM5.3User enumeration in Nagvis' Checkmk MultisiteAuth before version 1.9.48 allows an unauthenticated attacker to enumerate Checkmk usernames.
  from 0