Tildeslash » Monit » 4.1 : Security Vulnerabilities, CVEs, (Denial of service)
A buffer over-read in Util_urlDecode in util.c in Tildeslash Monit before 5.25.3 allows a remote authenticated attacker to retrieve the contents of adjacent memory via manipulation of GET or POST parameters. The attacker can also cause a denial of service (application outage).
Max CVSS
8.1
EPSS Score
0.21%
Published
2019-04-22
Updated
2022-03-31
Monit 1.4 to 4.1 allows remote attackers to cause a denial of service (daemon crash) via an HTTP POST request with a negative Content-Length field.
Max CVSS
5.0
EPSS Score
6.47%
Published
2003-11-24
Updated
2017-07-11
2 vulnerabilities found