CVE-2013-7205 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.4 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:P/I:N/A:P

Base Score

CVSS 3.x

EPSS Score

Percentile: 84%

Affected Products (NVD)

Vendor	Product	Version
nagios	nagios	𝑥 ≤ 4.0.2
nagios	nagios	3.0
nagios	nagios	3.0:alpha1
nagios	nagios	3.0:alpha2
nagios	nagios	3.0:alpha3
nagios	nagios	3.0:alpha4
nagios	nagios	3.0:alpha5
nagios	nagios	3.0:beta1
nagios	nagios	3.0:beta2
nagios	nagios	3.0:beta3
nagios	nagios	3.0:beta4
nagios	nagios	3.0:beta5
nagios	nagios	3.0:beta6
nagios	nagios	3.0:beta7
nagios	nagios	3.0:rc1
nagios	nagios	3.0:rc2
nagios	nagios	3.0:rc3
nagios	nagios	3.0.1
nagios	nagios	3.0.2
nagios	nagios	3.0.3
nagios	nagios	3.0.4
nagios	nagios	3.0.5
nagios	nagios	3.0.6
nagios	nagios	3.1.0
nagios	nagios	3.1.1
nagios	nagios	3.1.2
nagios	nagios	3.2.0
nagios	nagios	3.2.1
nagios	nagios	3.2.2
nagios	nagios	3.2.3
nagios	nagios	3.3.1
nagios	nagios	3.4.0
nagios	nagios	3.4.1
nagios	nagios	3.4.2
nagios	nagios	3.4.3
nagios	nagios	3.5.1

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

nagios3

lucid	ignored
precise	ignored
quantal	ignored
raring	ignored
saucy	ignored
trusty	Fixed 3.5.1-1ubuntu1.1 released
utopic	ignored
vivid	ignored
wily	ignored
xenial	Fixed 3.5.1.dfsg-2.1ubuntu1.1 released
yakkety	Fixed 3.5.1.dfsg-2.1ubuntu3.1 released
zesty	Fixed 3.5.1.dfsg-2.1ubuntu5 released

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://secunia.com/advisories/55976

http://sourceforge.net/p/nagios/nagioscore/ci/d97e03f32741a7d851826b03ed73ff4c9612a866/

http://www.mandriva.com/security/advisories?name=MDVSA-2014:004

http://www.openwall.com/lists/oss-security/2013/12/24/1

http://www.securityfocus.com/bid/64489

https://lists.debian.org/debian-lts-announce/2018/12/msg00014.html

http://secunia.com/advisories/55976

http://sourceforge.net/p/nagios/nagioscore/ci/d97e03f32741a7d851826b03ed73ff4c9612a866/

http://www.mandriva.com/security/advisories?name=MDVSA-2014:004

http://www.openwall.com/lists/oss-security/2013/12/24/1

http://www.securityfocus.com/bid/64489

https://lists.debian.org/debian-lts-announce/2018/12/msg00014.html