Logwatch

logwatch

Vendor: Logwatch • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2011-1018 1Logwatch 1Logwatch Apr 29, 2026 Feb 25, 2011 N/A· v4 N/A· v3 10.0 HIGH· v2 logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server.
CVE-2005-1061 2Logwatch Redhat 3Enterprise Linux Linux Advanced WorkstationLogwatch Apr 16, 2026 May 2, 2005 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The secure script in LogWatch before 2.6-2 allows attackers to prevent LogWatch from detecting malicious activity via certain strings in the secure file that are later used as part of a regular expression, which causes t...Show more The secure script in LogWatch before 2.6-2 allows attackers to prevent LogWatch from detecting malicious activity via certain strings in the secure file that are later used as part of a regular expression, which causes the parser to crash, aka "logwatch log processing regular expression DoS."Show less
CVE-2002-0165 1Logwatch 1Logwatch Apr 16, 2026 Apr 3, 2002 N/A· v4 N/A· v3 7.2 HIGH· v2 LogWatch 2.5 allows local users to gain root privileges via a symlink attack, a different vulnerability than CVE-2002-0162.
CVE-2002-0162 1Logwatch 1Logwatch Apr 16, 2026 Mar 27, 2002 N/A· v4 N/A· v3 6.2 MEDIUM· v2 LogWatch before 2.5 allows local users to execute arbitrary code via a symlink attack on the logwatch temporary directory.