09. 03. 2021 Oreste Attanasio Contribution, NetEye, Unified Monitoring

NeDi 1.9 security advisory

Synopsis

Critical: NeDi security update

Type/Severity

Security Advisory: Critical

Topic

An update for NeDi is now available for NetEye.

NetEye Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

NeDi is integrated in NetEye’s monitoring solution as a network discovery tool.

A security researcher discovered a set of vulnerabilities in NeDi version 1.9C: https://n4nj0.github.io/advisories/nedi-multiple-vulnerabilities-i/

Affected version

  • nedi-1.9.100_neteye1.0.1-1.x86_64

Security Fix for NetEye

  • nedi-2.0.120_neteye2.0.0_p0-1.x86_64

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

Upgrade to version nedi-2.0.120_neteye2.0.0_p0-1.x86_64.

Please contact your NetEye consultant to get help to upgrade.

Affected Products

NetEye 4.x versions prior to and including 4.16.

CVEs

References

Oreste Attanasio

Oreste Attanasio

Team Leader Service & Support at Würth Phoenix
I graduated in Applied Computer Science at the University of Bolzano in 2006. After 3 years of experience as consultant in a small IT business IT I decided to move on, and found Würth Phoenix as a good starting point for a career. After serving several years as a developer, consultant and support engineer, I now lead the Service & Support Team and aim to deliver best quality services to our customers, by helping them using our products together with the strength of Open Source, in which I strongly believe.

Author

Oreste Attanasio

I graduated in Applied Computer Science at the University of Bolzano in 2006. After 3 years of experience as consultant in a small IT business IT I decided to move on, and found Würth Phoenix as a good starting point for a career. After serving several years as a developer, consultant and support engineer, I now lead the Service & Support Team and aim to deliver best quality services to our customers, by helping them using our products together with the strength of Open Source, in which I strongly believe.

Latest posts by Oreste Attanasio

04. 02. 2020 NetEye, Service Management
Microsoft will Deny Plain LDAP Connections to AD Beginning March 2020
25. 03. 2019 Log Management, Log-SIEM, NetEye, Unified Monitoring
Safed improvements since 1.10.1
14. 08. 2018 Unified Monitoring
NagMap and Google Maps
14. 07. 2016 NetEye
Aktivieren Sie Ihren Account für unser neues Service Desk Portal
14. 07. 2016 NetEye
Accesso al nuovo portale service desk
See All

Related Content

Tags:

14. 11. 2024 Bug Fixes

NetEye 4 – Security Advisory

Synopsis Important: Icinga2 security update Type/Severity Security Advisory: Critical Topic An update for the package icinga2 is now available for NetEye 4. NetEye Product Security has rated this update as having a security impact of Critical. Common Vulnerability Scoring System Read More
12. 11. 2024 Bug Fixes

NetEye 4 – Security Advisory

Synopsis Important: GLPI security update Type/Severity Security Advisory: Critical Topic An update for the package glpi is now available for NetEye 4. NetEye Product Security has rated this update as having a security impact of Critical. Common Vulnerability Scoring System Read More
30. 04. 2024 Bug Fixes

NetEye 4 – Security Advisory

Synopsis Important: GLPI security update Type/Severity Security Advisory: High Topic An update for the package glpi is now available for NetEye 4. NetEye Product Security has rated this update as having a security impact of High. Common Vulnerability Scoring System Read More
04. 04. 2024 Bug Fixes

Important GLPI Agent 1.7.3 Security Advisory

Type/Severity Security Advisory: High Topic There is a security update for GLPI Agent Description This version specifically fixes 2 critical security issues related to MSI packaging on Windows: CVE-2024-28240: A local user could modify the GLPI Agent configuration to gain Read More
01. 08. 2023 Bug Fixes, NetEye

NetEye 4 – Security Advisory

Synopsis Important: GLPI security update Type/Severity Security Advisory: Important Topic An update for the package glpi is now available for NetEye 4. NetEye Product Security has rated this update as having a security impact of Important. Common Vulnerability Scoring System Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

Search by technology

Contact

Contact us
Serviceportal

Archive