Observium Network Monitor rrdtool.inc.php command injection

EntryHistoryDiffjsonxmlCTI

A vulnerability has been found in Observium Network Monitor (the affected version is unknown) and classified as critical. This vulnerability affects some unknown processing of the file /includes/rrdtool.inc.php. Upgrading eliminates this vulnerability. A possible mitigation has been published before and not just after the disclosure of the vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

1	29
0	21

Field

vulnerability_cwe	1
vulnerability_cvss3_vuldb_a	1
vulnerability_cvss3_vuldb_i	1
vulnerability_cvss3_vuldb_c	1
vulnerability_cvss3_vuldb_s	1

Commit Conf

100%	29
90%	10
60%	7
72%	4

Approve Conf

100%	29
90%	10
60%	7
72%	4

ID	Commited	User	Field	Change	Remarks	Accepted	Reason	C
6156173	05/30/2019	VulD...	cwe	77 (command injection)		05/30/2019	accepted	90
6156189	11/11/2016	VulD...	cvss3_vuldb_a	L	see CVSS documentation	11/11/2016	accepted	60
6156188	11/11/2016	VulD...	cvss3_vuldb_i	L	see CVSS documentation	11/11/2016	accepted	60
6156187	11/11/2016	VulD...	cvss3_vuldb_c	L	see CVSS documentation	11/11/2016	accepted	60
6156186	11/11/2016	VulD...	cvss3_vuldb_s	U	see CVSS documentation	11/11/2016	accepted	60
6156185	11/11/2016	VulD...	cvss3_vuldb_pr	L	see CVSS documentation	11/11/2016	accepted	60
6156184	11/11/2016	VulD...	cvss3_vuldb_ac	L	see CVSS documentation	11/11/2016	accepted	60
6156183	11/11/2016	VulD...	cvss3_vuldb_av	N	see CVSS documentation	11/11/2016	accepted	60
6156182	11/11/2016	VulD...	0day_days	55		11/11/2016	accepted	90
6156181	11/11/2016	VulD...	reaction_days	5		11/11/2016	accepted	90
6156180	11/11/2016	VulD...	cvss3_vuldb_rc	C	see CVSS documentation	11/11/2016	accepted	90
6156179	11/11/2016	VulD...	cvss3_vuldb_rl	O	see CVSS documentation	11/11/2016	accepted	90
6156178	11/11/2016	VulD...	cvss3_vuldb_e	X	see CVSS documentation	11/11/2016	accepted	90
6156177	11/11/2016	VulD...	cvss2_vuldb_rc	C	see CVSS documentation	11/11/2016	accepted	90
6156176	11/11/2016	VulD...	cvss2_vuldb_rl	OF	see CVSS documentation	11/11/2016	accepted	90
6156175	11/11/2016	VulD...	cvss2_vuldb_e	ND	see CVSS documentation	11/11/2016	accepted	90
6156174	11/11/2016	VulD...	cvss3_vuldb_ui	N	see CVSS documentation	11/11/2016	accepted	90
6156172	11/11/2016	VulD...	seealso	93567 93569 93570		11/11/2016	accepted	100
6156171	11/11/2016	VulD...	date	1477440000 (10/26/2016)		11/11/2016	accepted	100
6156170	11/11/2016	VulD...	name	Upgrade		11/11/2016	accepted	100

30 more entries are not shown

🔒 Login Required

You need to signup and login to see more of the remaining 30 results.

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!