Audit
by Linux
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2015-5186 | Med | 0.35 | 5.3 | 0.03 | Sep 6, 2017 | Audit before 2.4.4 in Linux does not sanitize escape characters in filenames. | ||
| CVE-2021-41932 | 0.00 | — | 0.01 | Jun 6, 2022 | A blind SQL injection vulnerability in search form in TeamMate+ Audit version 28.0.19.0 allows any authenticated user to create malicious SQL injections, which can result in complete database compromise, gaining information about other users, unauthorized access to audit data… | |||
| CVE-2008-1628 | 0.00 | — | 0.01 | Apr 2, 2008 | Stack-based buffer overflow in the audit_log_user_command function in lib/audit_logging.c in Linux Audit before 1.7 might allow remote attackers to execute arbitrary code via a long command argument. NOTE: some of these details are obtained from third party information. |
- risk 0.35cvss 5.3epss 0.03
Audit before 2.4.4 in Linux does not sanitize escape characters in filenames.
- CVE-2021-41932Jun 6, 2022risk 0.00cvss —epss 0.01
A blind SQL injection vulnerability in search form in TeamMate+ Audit version 28.0.19.0 allows any authenticated user to create malicious SQL injections, which can result in complete database compromise, gaining information about other users, unauthorized access to audit data…
- CVE-2008-1628Apr 2, 2008risk 0.00cvss —epss 0.01
Stack-based buffer overflow in the audit_log_user_command function in lib/audit_logging.c in Linux Audit before 1.7 might allow remote attackers to execute arbitrary code via a long command argument. NOTE: some of these details are obtained from third party information.