Oval Definition:oval:org.opensuse.security:def:20137107
Revision Date:2022-06-30Version:1
Title:CVE-2013-7107
Description:

Cross-site request forgery (CSRF) vulnerability in cmd.cgi in Icinga 1.8.5, 1.9.4, 1.10.2, and earlier allows remote attackers to hijack the authentication of users for unspecified commands via unspecified vectors, as demonstrated by bypassing authentication requirements for CVE-2013-7106.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-7107
Mitre CVE-2013-7107
SUSE CVE-2013-7107
openSUSE-SU-2014:0269-1
Platform(s):openSUSE 12.3 Update
openSUSE 13.1
openSUSE Leap 42.1
openSUSE Leap 42.2
openSUSE Leap 42.3
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE Leap 42.1 is installed
  • AND Package Information
  • monitoring-tools-1.13.3-1.5 is installed
  • AND monitoring-tools is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • monitoring-tools-1.13.3-2.41 is installed
  • AND monitoring-tools is signed with openSUSE key
    • Definition Synopsis
  • openSUSE 13.1 is installed
  • AND Package Information
  • icinga-1.10.2-4.10.2 is installed
  • OR icinga-devel-1.10.2-4.10.2 is installed
  • OR icinga-doc-1.10.2-4.10.2 is installed
  • OR icinga-idoutils-1.10.2-4.10.2 is installed
  • OR icinga-idoutils-mysql-1.10.2-4.10.2 is installed
  • OR icinga-idoutils-oracle-1.10.2-4.10.2 is installed
  • OR icinga-idoutils-pgsql-1.10.2-4.10.2 is installed
  • OR icinga-plugins-downtimes-1.10.2-4.10.2 is installed
  • OR icinga-plugins-eventhandlers-1.10.2-4.10.2 is installed
  • OR icinga-www-1.10.2-4.10.2 is installed
  • OR monitoring-tools-1.10.2-4.10.2 is installed
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • monitoring-tools-1.14.0-7 is installed
  • AND monitoring-tools is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • icinga-1.13.3-2.4 is installed
  • OR icinga-devel-1.13.3-2.4 is installed
  • OR icinga-doc-1.13.3-2.4 is installed
  • OR icinga-idoutils-1.13.3-2.4 is installed
  • OR icinga-idoutils-mysql-1.13.3-2.4 is installed
  • OR icinga-idoutils-oracle-1.13.3-2.4 is installed
  • OR icinga-idoutils-pgsql-1.13.3-2.4 is installed
  • OR icinga-plugins-downtimes-1.13.3-2.4 is installed
  • OR icinga-plugins-eventhandlers-1.13.3-2.4 is installed
  • OR icinga-www-1.13.3-2.4 is installed
  • OR icinga-www-config-1.13.3-2.4 is installed
  • OR monitoring-tools-1.13.3-2.4 is installed
    • BACK