Debian Fence-Agents vulnerabilities
2 known vulnerabilities affecting debian/fence-agents.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
LOW2
Vulnerabilities
Page 1 of 1
CVE-2014-0104P4LOWCVSS 5.9fixed in fence-agents 4.0.17-1 (bookworm)2014
CVE-2014-0104 [MEDIUM] CVE-2014-0104: fence-agents - In fence-agents before 4.0.17 does not verify remote SSL certificates in the fen...
In fence-agents before 4.0.17 does not verify remote SSL certificates in the fence_cisco_ucs.py script which can potentially allow for man-in-the-middle attackers to spoof SSL servers via arbitrary SSL certificates.
Scope: local
bookworm: resolved (fixed in 4.0.17-1)
bullseye: resolved (fixed in 4.0.17-1)
forky: resolved (fixed in 4.0.17-1)
sid: resolved (fixed
debian
CVE-2019-10153P4LOWCVSS 5.0fixed in fence-agents 4.3.3-2 (bookworm)2019
CVE-2019-10153 [MEDIUM] CVE-2019-10153: fence-agents - A flaw was discovered in fence-agents, prior to version 4.3.4, where using non-A...
A flaw was discovered in fence-agents, prior to version 4.3.4, where using non-ASCII characters in a guest VM's comment or other fields would cause fence_rhevm to exit with an exception. In cluster environments, this could lead to preventing automated recovery or otherwise denying service to clusters of which that VM is a member.
Scope: local
bookworm: resolv
debian