09. 03. 2021 Oreste Attanasio Contribution, NetEye, Unified Monitoring

NeDi 1.9 security advisory

Synopsis

Critical: NeDi security update

Type/Severity

Security Advisory: Critical

Topic

An update for NeDi is now available for NetEye.

NetEye Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

NeDi is integrated in NetEye’s monitoring solution as a network discovery tool.

A security researcher discovered a set of vulnerabilities in NeDi version 1.9C: https://n4nj0.github.io/advisories/nedi-multiple-vulnerabilities-i/

Affected version

  • nedi-1.9.100_neteye1.0.1-1.x86_64

Security Fix for NetEye

  • nedi-2.0.120_neteye2.0.0_p0-1.x86_64

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

Upgrade to version nedi-2.0.120_neteye2.0.0_p0-1.x86_64.

Please contact your NetEye consultant to get help to upgrade.

Affected Products

NetEye 4.x versions prior to and including 4.16.

CVEs

References

Oreste Attanasio

Oreste Attanasio

Team Leader Service & Support at Würth Phoenix
I graduated in Applied Computer Science at the University of Bolzano in 2006. After 3 years of experience as consultant in a small IT business IT I decided to move on, and found Würth Phoenix as a good starting point for a career. After serving several years as a developer, consultant and support engineer, I now lead the Service & Support Team and aim to deliver best quality services to our customers, by helping them using our products together with the strength of Open Source, in which I strongly believe.

Author

Oreste Attanasio

I graduated in Applied Computer Science at the University of Bolzano in 2006. After 3 years of experience as consultant in a small IT business IT I decided to move on, and found Würth Phoenix as a good starting point for a career. After serving several years as a developer, consultant and support engineer, I now lead the Service & Support Team and aim to deliver best quality services to our customers, by helping them using our products together with the strength of Open Source, in which I strongly believe.

Latest posts by Oreste Attanasio

04. 02. 2020 NetEye, Service Management
Microsoft will Deny Plain LDAP Connections to AD Beginning March 2020
25. 03. 2019 Log Management, Log-SIEM, NetEye, Unified Monitoring
Safed improvements since 1.10.1
14. 08. 2018 Unified Monitoring
NagMap and Google Maps
14. 07. 2016 NetEye
Aktivieren Sie Ihren Account für unser neues Service Desk Portal
14. 07. 2016 NetEye
Accesso al nuovo portale service desk
See All

Related Content

Tags:

16. 12. 2022 Bug Fixes, NetEye

NetEye 4 Core – Security Advisory

Synopsis Important: grafana-panel-renderer security update Type/Severity Security Advisory: Important Topic An update for the package grafana-panel-renderer is now available for NetEye 4. NetEye Product Security has rated this update as having a security impact of High. Common Vulnerability Scoring System Read More
28. 02. 2022 Bug Fixes, NetEye

NetEye 4 – Security Advisory

Synopsis High impact: Grafana security update Type/Severity Security Advisory: High impact Topic An update for grafana is now available for NetEye 4.22. NetEye Product Security has rated this update as having a security impact of High. Common Vulnerability Scoring System Read More
14. 12. 2021 Bug Fixes, NetEye

NetEye 3 Logstash and Elasticsearch – Security Advisory

Synopsis Important: Elasticsearch and Logstash security mitigation Type/Severity Security Advisory: Important Topic A mitigation for Logstash and Elasticsearch is now available for NetEye 3. NetEye Product Security has rated this mitigation as having a security impact of Important. A Common Read More
13. 12. 2021 Bug Fixes, NetEye

NetEye 4 APM, Log and SIEM Module – Security Advisory

Synopsis Important: Elasticsearch and Logstash security updates Type/Severity Security Advisory: Important Topic An update for Logstash and Elasticsearch is now available for NetEye 4.20 and 4.21. NetEye Product Security has rated this update as having a security impact of Important. Read More
13. 05. 2021 Bug Fixes, NetEye

NetEye 4 – Security Advisory

Synopsis Important impact: httpd security update Type/Severity Security Advisory: Important impact Topic An update for httpd is now available for NetEye 4.17. NetEye Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

Search by technology

Contact

Contact us
Serviceportal

Subscribe to blog


Archive