|Link||package | bugs open | bugs closed | Wiki | GitHub | web search|
|Description||A systemd web based user interface for Linux servers|
|CVE-2021-3698||AVG-1393||Medium||Yes||Certificate verification bypass||
A security issue was found in Cockpit in the way it handles the certificate verification performed by the System Security Services Daemon (SSSD). This flaw...
Cockpit (and its plugins) do not seem to protect itself against clickjacking. It is possible to render a page from a cockpit server via another website,...
|CVE-2020-35850||AVG-1393||Low||Yes||Cross-site request forgery||
A server-side request forgery issue was discovered in cockpit- project.org Cockpit 234. It allows a user to send requests to internal hosts for detecting...