📦

openpegasus_wbem

Vendor: openpegasus

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 1.07% Exploit Prob.

Latest CVE CVE-2008-4315 Nov 27

Security Vulnerability Index

Page 1 / 1

6.8 CVSS

CVE-2008-4315

tog-pegasus in OpenGroup Pegasus 2.7.0 on Red Hat Enterprise Linux (RHEL) 5, Fedora 9, and Fedora 10 does not log failed authentication attempts to the OpenPegasus CIM server, which makes it easier for remote attackers to avoid detection of password guessing attacks.

EPSS: 1.58%

Severity: MEDIUM

Nov 27, 2008

6.0 CVSS

CVE-2008-4313

A certain Red Hat patch for tog-pegasus in OpenGroup Pegasus 2.7.0 does not properly configure the PAM tty name, which allows remote authenticated users to bypass intended access restrictions and send requests to OpenPegasus WBEM services.

EPSS: 0.56%

Severity: MEDIUM

Nov 27, 2008

Displaying 2 of 2 Total Entries

Total 1 Sections