VDB

GCVE-110-MAGEIA-2019-246

GCVE-110-MAGEIA-2019-246
Advisory Published
Vulnetix · Advisory published September 6, 2019
Updated monit package fixes security vulnerabilities: Zack Flack discovered that Monit incorrectly handled certain input. A remote authenticated user could exploit this to conduct cross-site scripting (XSS) attacks (CVE-2019-11454). Zack Flack discovered a buffer overread when Monit decoded certain crafted URLs. An attacker could exploit this to leak potentially sensitive information (CVE-2019-11455).

Affected Products

VendorProductVersionsPlatforms
Mageiaradeon-firmware0 (affected), 20191220-1.mga7.nonfree (unaffected)
Mageiamonit0 (affected), 5.25.3-1.1.mga6 (unaffected), 0 (affected), 5.25.3-1.1.mga6 (unaffected)

Browse GCVE Records

73,443 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›