openvas

Top products

The 7 most recently published vulnerabilities affecting openvas.

• CVE-2011-1597OpenVAS Manager v2.0.3 allows plugin remote code execution.8.8Feb 5, 2020
• CVE-2011-3351openvas-scanner before 2011-09-11 creates a temporary file insecurely when generating OVAL system characteristics document with the ovaldi integrated tool enabled. A local attacker could use this f...7.1Nov 25, 2019
• CVE-2014-9220SQL injection vulnerability in OpenVAS Manager before 4.0.6 and 5.x before 5.0.7 allows remote attackers to execute arbitrary SQL commands via the timezone parameter in a modify_schedule OMP command.7.5Dec 3, 2014
• CVE-2013-6765OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP authentication restrictions and execute OMP commands via a crafted OMP request for version informatio...7.5May 19, 2014
• CVE-2013-6766OpenVAS Administrator 1.2 before 1.2.2 and 1.3 before 1.3.2 allows remote attackers to bypass the OAP authentication restrictions and execute OAP commands via a crafted OAP request for version info...7.5May 19, 2014
• CVE-2012-5520The send_to_sourcefire function in manage_sql.c in OpenVAS Manager 3.x before 3.0.4 allows remote attackers to execute arbitrary commands via the (1) IP address or (2) port number field in an OMP r...7.5Nov 26, 2012
• CVE-2011-0018The email function in manage_sql.c in OpenVAS Manager 1.0.x through 1.0.3 and 2.0.x through 2.0rc2 allows remote authenticated users to execute arbitrary commands via the (1) To or (2) From e-mail ...9.0Jan 28, 2011