+F FS040U, +F FS020W, +F FS030W, And +F FS040W Security Vulnerabilities
RHEL 7 : mdadm (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. mdadm: Buffer overflow (CVE-2023-28736) Uncontrolled resource consumption in some Intel(R) SSD Tools...
7.7AI Score
RHEL 8 : openssh (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. openssh: User enumeration via malformed packets in authentication requests (CVE-2018-15919) Note that Nessus has not...
5.8AI Score
RHEL 5 : xsa276_xen (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. xsa276 xen: resource accounting issues in x86 IOREQ server handling (XSA-276) (CVE-2018-19963) Note that Nessus has...
7.3AI Score
RHEL 5 : thunderbird (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. thunderbird: spoofing a message author via a crafted S/MIME (CVE-2019-11755) Note that Nessus has not tested for...
7.2AI Score
RHEL 5 : bison (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. bison: use-after-free via crafted input file containing a NULL byte can lead to DoS (CVE-2020-24240) GNU...
7.9AI Score
RHEL 5 : evince (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. evince: buffer overflow in backend/tiff/tiff-document.c leads to DOS/possible code execution ...
8.6AI Score
RHEL 8 : nodejs-http-signature (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. nodejs-http-signature: HTTP header forgery (CVE-2017-16005) Note that Nessus has not tested for this issue but has...
7.4AI Score
RHEL 7 : libreoffice (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libreoffice: heap-based buffer overflow related to the ReadJPEG function (CVE-2017-8358) LibreOffice...
8.4AI Score
RHEL 6 : cyrus-imapd (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. cyrus-imapd: lmtpd component created mailboxes with administrator privileges if the fileinto was used, ...
7.3AI Score
RHEL 6 : eclipse-birt (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. eclipse-birt: RCE on the default configuration of BIRT Viewer (CVE-2023-0100) Note that Nessus has not tested for...
7.3AI Score
Fedora 40 : tcpdump (2024-e375e28b45)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-e375e28b45 advisory. Due to a bug in packet data buffers management, the PPP printer in tcpdump can enter an infinite loop when reading a crafted DLT_PPP_SERIAL .pcap...
7.2AI Score
RHEL 5 : procmail (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. procmail: Heap-based buffer overflow in loadbuf function in formisc.c (CVE-2017-16844) Note that Nessus has not...
7.8AI Score
RHEL 6 : zlib (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6...
8.2AI Score
RHEL 6 : glib (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. glib: g_file_replace() with G_FILE_CREATE_REPLACE_DESTINATION creates empty target for dangling...
7.8AI Score
RHEL 8 : nodejs-path-parse (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. nodejs-path-parse: ReDoS via splitDeviceRe, splitTailRe and splitPathRe (CVE-2021-23343) Note that Nessus has not...
7.3AI Score
RHEL 7 : go-yaml (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents ...
7.3AI Score
RHEL 6 : libice (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. libICE: weak entropy usage in session keys (CVE-2017-2626) Note that Nessus has not tested for this issue but has...
7.3AI Score
RHEL 5 : xsa213_xen (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. xsa213 xen: x86: 64bit PV guest breakout via pagetable use-after-mode-change (XSA-213) (CVE-2017-8903) Note that...
7.3AI Score
RHEL 7 : libxml2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libxml2: Missing validation for external entities in xmlParsePEReference (CVE-2017-7375) libxml2:...
9.5AI Score
RHEL 5 : quagga (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. quagga: VPNv4 NLRI parser memcpys to stack on unchecked length (CVE-2016-2342) quagga: Double free...
8.6AI Score
RHEL 8 : discount (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. discount: heap-based buffer over-read via a crafted file (CVE-2018-12495) The __mkd_trim_line function...
7.8AI Score
RHEL 7 : libarchive (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libarchive: Out of bounds read in lha_read_file_header_1() function (CVE-2017-5601) libarchive: NULL...
8.2AI Score
RHEL 7 : imagemagick (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. ImageMagick: NULL pointer dereference in GetMagickProperty function in MagickCore/property.c ...
8.1AI Score
RHEL 6 : mozilla_nss (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. Mozilla NSS: Errors in mp_div and mp_exptmod cryptographic functions (CVE-2016-1938) Note that Nessus has not tested...
7.3AI Score
RHEL 6 : amanda (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. amanda: Improper argument checking for runtar.c (CVE-2023-30577) In Amanda 3.5.1, an information leak...
8.2AI Score
RHEL 5 : hw (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. hw: TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135) hw: Fast forward store predictor...
6.1AI Score
RHEL 7 : libproxy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. libproxy: uncontrolled recursion via an infinite stream response leading to stack exhaustion (CVE-2020-25219) ...
7.3AI Score
RHEL 8 : xen (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. xen: rogue backends can cause DoS of guests via high frequency events (CVE-2021-28713) Rogue backends...
7.5AI Score
RHEL 7 : php,_gd (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. php, gd: Stack overflow in gdImageFillToBorder on truecolor images (CVE-2016-9933) Note that Nessus has not tested...
9.8AI Score
RHEL 6 : openwsman (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. openwsman: Disclosure of arbitrary files outside of the registered URIs (CVE-2019-3816) Openwsman,...
8AI Score
RHEL 7 : python-paramiko (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. python-paramiko: Race condition in the write_private_key_file function (CVE-2022-24302) Note that Nessus has not...
7.3AI Score
RHEL 7 : squid (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. squid: Information disclosure in Collapsed forwarding (CVE-2016-10003) This vulnerability allows remote...
8AI Score
RHEL 9 : rust (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. rust: Race condition in remove_dir_all leading to removal of files outside of the directory being removed ...
7.2AI Score
RHEL 7 : ssh (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. ssh: Prefix truncation attack on Binary Packet Protocol (BPP) (CVE-2023-48795) Note that Nessus has not tested for...
7.3AI Score
RHEL 6 : xerces-c (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. xerces-c: Use-after-free in heap on specially crafted XML input (CVE-2016-2099) Stack-based buffer...
8.2AI Score
RHEL 8 : numpy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. numpy: crafted serialized object passed in numpy.load() in pickle python module allows arbitrary code ...
8.4AI Score
RHEL 7 : bzr (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. bzr: does not strip bzr+ssh SSH options (CVE-2017-14176) Note that Nessus has not tested for this issue but has...
7.3AI Score
RHEL 7 : python-ldap (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. python-ldap: Regular expression denial of service in LDAP schema parser (CVE-2021-46823) Note that Nessus has not...
7.3AI Score
Fedora 39 : chromium (2024-55e7e839f1)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-55e7e839f1 advisory. Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, allows a local attacker to execute arbitrary code and cause a denial of...
9.3AI Score
RHEL 6 : libtasn1 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libtasn1: Stack-based buffer overflow in asn1_find_node() (CVE-2017-6891) The _asn1_extract_der_octet...
8AI Score
RHEL 5 : libjpeg-turbo (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. libjpeg-turbo: Divide By Zero in alloc_sarray function in jmemmgr.c (CVE-2018-11212) Note that Nessus has not tested...
6.7AI Score
RHEL 6 : perl-xml-twig (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. perl-XML-Twig: expand_external_ents option fails to work as documented (CVE-2016-9180) Note that Nessus has not...
7.3AI Score
RHEL 6 : file (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. file: out-of-bounds read via a crafted ELF file (CVE-2018-10360) File before 5.43 has an stack-based...
7.2AI Score
RHEL 6 : tar (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. tar: Bypassing the extract path name (CVE-2016-6321) GNU Tar through 1.30, when --sparse is used,...
9AI Score
RHEL 8 : firebird (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. firebird: Firebird fbudf Module Authenticated Remote Code Execution (CVE-2017-11509) Note that Nessus has not tested...
8AI Score
RHEL 6 : e2fsprogs (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. e2fsprogs: out-of-bounds read/write via crafted filesystem (CVE-2022-1304) An exploitable code execution...
8.2AI Score
RHEL 7 : linuxptp (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. linuxptp: wrong length of one-step follow-up in transparent clock (CVE-2021-3571) Note that Nessus has not tested...
7.3AI Score
RHEL 7 : glib2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. glib2: NULL pointer dereference in g_markup_parse_context_end_parse() function in gmarkup.c ...
7.3AI Score
RHEL 5 : libiberty (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libiberty: Memory leak in demangle_template function resulting in a denial of service (CVE-2018-20657) ...
8.1AI Score
RHEL 6 : lua (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. lua: stack overflow in lua_resume of ldo.c allows a DoS via a crafted script file (CVE-2021-43519) Note that Nessus...
7.6AI Score