| Reporter | Title | Published | Views | Family All 259 |
|---|---|---|---|---|
| Security Bulletin: IBM Data Risk Manager is affected by multiple vulnerabilities | 13 Aug 202122:15 | – | ibm | |
| Security Bulletin: Vyatta 5600 vRouter Software Patches - Release 1801-za | 25 Jul 201915:25 | – | ibm | |
| CVE-2019-15126 aka Kr00k | 5 Feb 202000:00 | – | attackerkb | |
| Amazon Linux 2 : kernel (ALAS-2019-1214) | 31 May 201900:00 | – | nessus | |
| Amazon Linux AMI : kernel (ALAS-2019-1214) | 31 May 201900:00 | – | nessus | |
| CentOS 8 : kernel (CESA-2019:2703) | 29 Jan 202100:00 | – | nessus | |
| CentOS 7 : kernel (RHSA-2020:1016) | 10 Apr 202000:00 | – | nessus | |
| CentOS 7 : kernel-rt (RHSA-2020:1070) | 9 Oct 202400:00 | – | nessus | |
| Debian DLA-1799-2 : linux security update (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout) | 29 May 201900:00 | – | nessus | |
| Debian DLA-1824-1 : linux-4.9 security update (SACK Panic) (SACK Slowness) | 19 Jun 201900:00 | – | nessus |
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(223173);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2025/09/30");
script_cve_id("CVE-2019-9503");
script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2019-9503");
script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.
- The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable
to a frame validation bypass. If the brcmfmac driver receives a firmware event frame from a remote source,
the is_wlc_event_frame function will cause this frame to be discarded and unprocessed. If the driver
receives the firmware event frame from the host, the appropriate handler is called. This frame validation
can be bypassed if the bus used is USB (for instance by a wifi dongle). This can allow firmware event
frames from a remote source to be processed. In the worst case scenario, by sending specially-crafted WiFi
packets, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system.
More typically, this vulnerability will result in denial-of-service conditions. (CVE-2019-9503)
Note that Nessus relies on the presence of the package as reported by the vendor.");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2019-9503");
script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/CVE-2019-9503");
script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
script_set_attribute(attribute:"agent", value:"unix");
script_set_cvss_base_vector("CVSS2#AV:A/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-9503");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vendor_unpatched", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/04/17");
script_set_attribute(attribute:"plugin_publication_date", value:"2025/03/04");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:22.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:24.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:7");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-azure-fde");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-gke");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-intel-iot-realtime");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-raspi-realtime");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-raspi2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-realtime");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-riscv");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-abi-whitelists");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-alt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-bootwrapper");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-debug-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-firmware");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-kdump");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-kdump-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-tools-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:kernel-tools-libs-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:perf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:python-perf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-abi-whitelists");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-alt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-bootwrapper");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-firmware");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-kdump");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:perf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:python-perf");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("set_linux_os_id.nasl", "ssh_get_info2.nasl");
script_require_keys("Host/OS/identifier", "Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched");
script_require_ports("Host/OS/CentOS Linux-7", "Host/OS/Red Hat Enterprise Linux-6", "Host/OS/Red Hat Enterprise Linux-7", "Host/OS/Ubuntu Linux-14.04", "Host/OS/Ubuntu Linux-20.04", "Host/OS/Ubuntu Linux-22.04", "Host/OS/Ubuntu Linux-24.04");
exit(0);
}
if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/CentOS/rpm-list")) && empty_or_null(get_one_kb_item("Host/Debian/dpkg-l")) && empty_or_null(get_one_kb_item("Host/RedHat/rpm-list"))) audit(AUDIT_PACKAGE_LIST_MISSING);
include('linux_unpatched.inc');
var distro_constraints_array = {
"Ubuntu Linux-14.04": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "14.04",
"pkgs": [
{"reference": "linux-cloud-tools-3.13.0"},
{"reference": "linux-cloud-tools-common"},
{"reference": "linux-doc"},
{"reference": "linux-headers-3.13.0"},
{"reference": "linux-image-3.13.0"},
{"reference": "linux-image-extra-3.13.0"},
{"reference": "linux-libc-dev"},
{"reference": "linux-source-3.13.0"},
{"reference": "linux-tools-3.13.0"},
{"reference": "linux-tools-common"},
{"reference": "linux-udebs-generic"},
{"reference": "linux-udebs-generic-lpae"},
{"reference": "linux-udebs-lowlatency"}
]
}
]
},
"Ubuntu Linux-20.04": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "20.04",
"pkgs": [
{"reference": "linux-azure-fde"},
{"reference": "linux-buildinfo-5.4.0"},
{"reference": "linux-cloud-tools-5.4.0"},
{"reference": "linux-gke"},
{"reference": "linux-headers-5.4.0"},
{"reference": "linux-image-5.4.0"},
{"reference": "linux-libc-dev"},
{"reference": "linux-modules-5.4.0"},
{"reference": "linux-modules-extra-5.4.0"},
{"reference": "linux-raspi2"},
{"reference": "linux-riscv-headers-5.4.0"},
{"reference": "linux-riscv-tools-5.4.0"},
{"reference": "linux-tools-5.4.0"},
{"reference": "linux-udebs-generic"}
]
}
]
},
"Ubuntu Linux-22.04": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "22.04",
"pkgs": [
{"reference": "linux-buildinfo-5.15.0"},
{"reference": "linux-cloud-tools-5.15.0"},
{"reference": "linux-headers-5.15.0"},
{"reference": "linux-image-5.15.0"},
{"reference": "linux-intel-iot-realtime"},
{"reference": "linux-modules-5.15.0"},
{"reference": "linux-modules-extra-5.15.0"},
{"reference": "linux-realtime"},
{"reference": "linux-riscv-headers-5.15.0"},
{"reference": "linux-riscv-tools-5.15.0"},
{"reference": "linux-tools-5.15.0"}
]
}
]
},
"Ubuntu Linux-24.04": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "24.04",
"pkgs": [
{"reference": "linux-raspi-realtime"}
]
}
]
},
"Red Hat Enterprise Linux-6": {
"package_manager": "rpm-list",
"constraints": [
{
"release": "6",
"pkgs": [
{"reference": "kernel"},
{"reference": "kernel-abi-whitelists"},
{"reference": "kernel-bootwrapper"},
{"reference": "kernel-debug"},
{"reference": "kernel-debug-devel"},
{"reference": "kernel-devel"},
{"reference": "kernel-doc"},
{"reference": "kernel-firmware"},
{"reference": "kernel-headers"},
{"reference": "kernel-kdump"},
{"reference": "kernel-kdump-devel"},
{"reference": "perf"},
{"reference": "python-perf"}
]
}
]
},
"CentOS Linux-7": {
"package_manager": "rpm-list",
"constraints": [
{
"release": "7",
"pkgs": [
{"reference": "kernel"},
{"reference": "kernel-abi-whitelists"},
{"reference": "kernel-alt"},
{"reference": "kernel-bootwrapper"},
{"reference": "kernel-debug"},
{"reference": "kernel-debug-devel"},
{"reference": "kernel-devel"},
{"reference": "kernel-doc"},
{"reference": "kernel-headers"},
{"reference": "kernel-kdump"},
{"reference": "kernel-kdump-devel"},
{"reference": "kernel-tools"},
{"reference": "kernel-tools-libs"},
{"reference": "kernel-tools-libs-devel"},
{"reference": "perf"},
{"reference": "python-perf"}
]
}
]
},
"Red Hat Enterprise Linux-7": {
"package_manager": "rpm-list",
"constraints": [
{
"release": "7",
"pkgs": [
{"reference": "kernel"},
{"reference": "kernel-abi-whitelists"},
{"reference": "kernel-alt"},
{"reference": "kernel-bootwrapper"},
{"reference": "kernel-debug"},
{"reference": "kernel-debug-devel"},
{"reference": "kernel-devel"},
{"reference": "kernel-doc"},
{"reference": "kernel-headers"},
{"reference": "kernel-kdump"},
{"reference": "kernel-kdump-devel"},
{"reference": "kernel-tools"},
{"reference": "kernel-tools-libs"},
{"reference": "kernel-tools-libs-devel"},
{"reference": "perf"},
{"reference": "python-perf"}
]
}
]
}
};
var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);
if (!empty_or_null(report))
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : report
);
exit(0);
}
else
{
audit(AUDIT_HOST_NOT, 'affected');
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation