Your submission was sent successfully! Close

CVE-2016-2055

Published: 13 April 2016

xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote attackers to read arbitrary files in the configuration directory via a "config" command.

Priority

Medium

CVSS 3 base score: 7.5

Status

Package Release Status
xymon
Launchpad, Ubuntu, Debian
artful Not vulnerable
(4.3.25-1)
bionic Not vulnerable
(4.3.25-1)
cosmic Not vulnerable
(4.3.25-1)
disco Not vulnerable
(4.3.25-1)
precise Does not exist
(precise was needs-triage)
trusty Does not exist
(trusty was needed)
upstream
Released (4.3.25-1)
wily Ignored
(reached end-of-life)
xenial Not vulnerable
(4.3.25-1)
yakkety Not vulnerable
(4.3.25-1)
zesty Not vulnerable
(4.3.25-1)