Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2019-3816
Description:Openwsman, versions up to and including 2.6.9, are vulnerable to arbitrary file disclosure because the working directory of openwsmand daemon was set to root directory. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted HTTP request to openwsman server.
Test IDs: 1.3.6.1.4.1.25623.1.0.883046   1.3.6.1.4.1.25623.1.1.2.2019.1331   1.3.6.1.4.1.25623.1.1.2.2019.1330   1.3.6.1.4.1.25623.1.1.2.2019.1329  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2019-3816
BugTraq ID: 107368
http://www.securityfocus.com/bid/107368
BugTraq ID: 107409
http://www.securityfocus.com/bid/107409
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2V5HJ355RSKMFQ7GRJAHRZNDVXASF7TA/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B2HEZ7D7GF3HDF36JLGYXIK5URR66DS4/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CXQP7UDPRZIZ4LM7FEJCTC2EDUYVOR2J/
RedHat Security Advisories: RHSA-2019:0638
https://access.redhat.com/errata/RHSA-2019:0638
RedHat Security Advisories: RHSA-2019:0972
https://access.redhat.com/errata/RHSA-2019:0972
SuSE Security Announcement: openSUSE-SU-2019:1111 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00006.html
SuSE Security Announcement: openSUSE-SU-2019:1217 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00065.html




© 1998-2021 E-Soft Inc. All rights reserved.