CVE-2014-1878 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:N/I:N/A:P
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 85%

Vendor	Product	Version
icinga	icinga	𝑥 ≤ 1.8.5
icinga	icinga	1.8.0
icinga	icinga	1.8.1
icinga	icinga	1.8.2
icinga	icinga	1.8.3
icinga	icinga	1.8.4
icinga	icinga	1.9.0
icinga	icinga	1.9.1
icinga	icinga	1.9.2
icinga	icinga	1.9.3
icinga	icinga	1.9.4
icinga	icinga	1.10.0
icinga	icinga	1.10.1
icinga	icinga	1.10.2
nagios	nagios	𝑥 ≤ 4.0.3
nagios	nagios	4.0.0:beta1
nagios	nagios	4.0.0:beta2
nagios	nagios	4.0.0:beta3
nagios	nagios	4.0.0:beta4
nagios	nagios	4.0.2

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

icinga

zesty	not-affected
yakkety	not-affected
xenial	not-affected
wily	not-affected
vivid	not-affected
utopic	not-affected
trusty	dne
saucy	ignored
quantal	ignored
precise	ignored
lucid	dne

nagios3

zesty	Fixed 3.5.1.dfsg-2.1ubuntu5 released
yakkety	Fixed 3.5.1.dfsg-2.1ubuntu3.1 released
xenial	Fixed 3.5.1.dfsg-2.1ubuntu1.1 released
wily	ignored
vivid	ignored
utopic	ignored
trusty	Fixed 3.5.1-1ubuntu1.1 released
saucy	ignored
quantal	ignored
precise	ignored
lucid	ignored

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://lists.opensuse.org/opensuse-updates/2014-04/msg00033.html

http://secunia.com/advisories/57024

http://www.securityfocus.com/bid/65605

https://bugzilla.redhat.com/show_bug.cgi?id=1066578

https://dev.icinga.org/issues/5434

https://lists.debian.org/debian-lts-announce/2018/12/msg00014.html

https://www.icinga.org/2014/02/11/bugfix-releases-1-10-3-1-9-5-1-8-6

http://lists.opensuse.org/opensuse-updates/2014-04/msg00033.html

http://secunia.com/advisories/57024

http://www.securityfocus.com/bid/65605

https://bugzilla.redhat.com/show_bug.cgi?id=1066578

https://dev.icinga.org/issues/5434

https://lists.debian.org/debian-lts-announce/2018/12/msg00014.html

https://www.icinga.org/2014/02/11/bugfix-releases-1-10-3-1-9-5-1-8-6