+F FS040U, +F FS020W, +F FS030W, And +F FS040W Security Vulnerabilities
RHEL 8 : go-git (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. go-git: Maliciously crafted Git server replies can cause DoS on go-git clients (CVE-2023-49568) Note that Nessus has...
7.3AI Score
RHEL 5 : qemu-kvm (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. qemu-kvm: Out-of-bounds read when creating weird vga screen surface (CVE-2016-3712) Note that Nessus has not tested...
5.8AI Score
RHEL 8 : moment.js (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. Moment.js: Path traversal in moment.locale (CVE-2022-24785) Note that Nessus has not tested for this issue but has...
7.3AI Score
RHEL 7 : packagekitd (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. PackageKitd: Use-After-Free in Idle Function Callback (CVE-2024-0217) Note that Nessus has not tested for this issue...
7.3AI Score
RHEL 6 : imagemagick,_graphicsmagick (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. ImageMagick, GraphicsMagick: Heap based buffer over-write in DescribeImage() function of the ...
7.6AI Score
RHEL 5 : rsync (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. rsync: daemon does not check for fnamecmp filenames allowing for access restriction bypass ...
10AI Score
RHEL 8 : libguestfs (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. libguestfs: Buffer overflow in get_keys leads to DoS (CVE-2022-2211) Note that Nessus has not tested for this issue...
7.5AI Score
RHEL 7 : cifs-utils (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. cifs-utils: shell command injection in mount.cifs (CVE-2020-14342) cifs-utils through 6.14, with verbose...
8AI Score
RHEL 6 : ant (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. ant: insecure temporary file (CVE-2020-11979) Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the...
7.5AI Score
RHEL 7 : fwupd (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. fwupd: Possible bypass in signature verification (CVE-2020-10759) Note that Nessus has not tested for this issue but...
7.3AI Score
RHEL 5 : gcc (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. gcc: Exploitable buffer overflow (CVE-2016-2226) Use-after-free vulnerability in libiberty allows remote...
8.2AI Score
RHEL 7 : e2fsprogs (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. e2fsprogs: out-of-bounds read/write via crafted filesystem (CVE-2022-1304) Note that Nessus has not tested for this...
7.3AI Score
RHEL 7 : fop (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. fop: XML external entity processing vulnerability (CVE-2017-5661) Note that Nessus has not tested for this issue but...
7.3AI Score
RHEL 7 : yajl (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. yajl: heap-based buffer overflow when handling large inputs due to an integer overflow (CVE-2022-24795) ...
8.1AI Score
RHEL 6 : packagekit (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. PackageKit: Information Disclosure in Transaction Interface via timing (CVE-2022-0987) PackageKit...
7.3AI Score
RHEL 7 : sane-backends (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. sane-backends: SANE_NET_CONTROL_OPTION response packet may contain memory contents of the server (CVE-2017-6318) ...
7.3AI Score
RHEL 5 : libtasn1 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. libtasn1: infinite loop while parsing DER certificates (CVE-2016-4008) Note that Nessus has not tested for this...
9.7AI Score
RHEL 6 : vixie-cron (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. vixie-cron: memory consumption DoS via a large crontab file (CVE-2019-9705) Vixie Cron before the...
7.4AI Score
RHEL 6 : subversion (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. subversion: Command injection through clients via malicious svn+ssh URLs (CVE-2017-9800) The...
9.7AI Score
RHEL 7 : tmux (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. tmux: null pointer dereference in window_pane_set_event() in window.c (CVE-2022-47016) Note that Nessus has not...
7.3AI Score
RHEL 5 : jasper (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. jasper: Heap-based buffer overflow in cp_create() in jpc_enc.c (CVE-2020-27828) The jpc_tsfb_synthesize...
8.9AI Score
RHEL 7 : cpio (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. cpio: integer overflow in ds_fgetstr() in dstring.c can lead to an out-of-bounds write via a crafted ...
7.9AI Score
RHEL 5 : libxml2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libxml2: Use after free via namespace node in XPointer ranges (CVE-2016-4658) libxml2: Missing...
9.7AI Score
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : ghostscript (SUSE-SU-2024:1590-1)
The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:1590-1 advisory. An issue was discovered in Artifex Ghostscript through 10.01.0. psi/zmisc1.c, when SAFER mode is...
7.3AI Score
SUSE SLES15 Security Update : kernel (Live Patch 0 for SLE 15 SP5) (SUSE-SU-2024:1582-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1582-1 advisory. A heap out-of-bounds write vulnerability in the Linux kernel's Linux Kernel Performance Events (perf) component can be exploited to...
7.4AI Score
RHEL 6 : git (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. git: cvsserver command injection (CVE-2017-14867) git: Heap overflow in git archive, git log --format...
8.2AI Score
RHEL 5 : gtk-vnc (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. gtk-vnc: Integer overflow when processing SetColorMapEntries (CVE-2017-5885) gtk-vnc 0.4.2 and older...
8.7AI Score
RHEL 5 : libxrender (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libXrender: Insufficient validation of server responses results out-of-bounds write in...
7.9AI Score
RHEL 5 : mysql-connector-odbc (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. mysql-connector-odbc: An unauthenticated attacker with network access can, via multiple protocols compromise...
7.4AI Score
RHEL 6 : sendmail (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. sendmail: SMTP smuggling vulnerability (CVE-2023-51765) Note that Nessus has not tested for this issue but has...
7.3AI Score
RHEL 7 : pycryptodome (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. pycryptodome: side-channel leakage for OAEP decryption in PyCryptodome and pycryptodomex (CVE-2023-52323) Note that...
7.3AI Score
RHEL 7 : urllib3 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. urllib3: urllib3 does not remove the authorization HTTP header when following a cross-origin redirect ...
7.2AI Score
RHEL 6 : hawk (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. hawk: REDoS in hawk.utils.parseHost() when parsing Host header (CVE-2022-29167) Note that Nessus has not tested for...
7.3AI Score
RHEL 7 : screen (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. screen: allows sending SIGHUP to arbitrary PIDs (CVE-2023-24626) Note that Nessus has not tested for this issue but...
7.4AI Score
RHEL 6 : keepalived (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. keepalived: Heap-based buffer overflow when parsing HTTP status codes allows for denial of service or ...
8.9AI Score
RHEL 8 : libarchive (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libarchive: Improper input validation in WARC parser resulting in a denial of service (CVE-2018-1000880) ...
7.6AI Score
RHEL 7 : lldp_openvswitch (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. lldp/openvswitch: denial of service via externally triggered memory leak (CVE-2020-27827) Note that Nessus has not...
7.8AI Score
RHEL 6 : libxfixes (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. libXfixes: Insufficient validation of server responses results in Integer overflow (CVE-2016-7944) Note that Nessus...
7.6AI Score
RHEL 8 : grub2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. grub2: Use-after-free in rmmod command (CVE-2020-25632) grub2: Out-of-bounds write in...
7.9AI Score
RHEL 7 : util-linux (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. util-linux: runuser tty hijack via TIOCSTI ioctl (CVE-2016-2779) An issue was discovered in...
7AI Score
RHEL 5 : oniguruma (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. oniguruma: integer overflow in search_in_range function in regexec.c leads to out-of-bounds read ...
9.1AI Score
RHEL 7 : raptor (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. raptor: heap-based buffer overflows due to an error in calculating the maximum nspace declarations for the XML...
7.4AI Score
RHEL 8 : virglrenderer (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. virglrenderer: out-of-bounds read in the vrend_blit_need_swizzle may lead to DoS (CVE-2019-18390) A NULL...
7.6AI Score
RHEL 9 : sdl2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. SDL2: memory leak in GLES_CreateTexture() in render/opengles/SDL_render_gles.c (CVE-2022-4743) Note that Nessus has...
7.3AI Score
RHEL 7 : python-pip (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. python-pip: when --extra-index-url option is used and package does not already exist in the public...
6.2AI Score
RHEL 6 : ruby_cgi-gem (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. ruby/cgi-gem: HTTP response splitting in CGI (CVE-2021-33621) Note that Nessus has not tested for this issue but has...
7.3AI Score
RHEL 6 : perl-crypt-openssl-rsa (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. perl-Crypt-OpenSSL-RSA: side-channel attack in PKCS#1 v1.5 padding mode (Marvin Attack) (CVE-2024-2467) Note that...
7.3AI Score
RHEL 6 : libemf (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libEMF: allows a use-after-free (CVE-2020-11866) libEMF (aka ECMA-234 Metafile Library) through 1.0.11...
7.9AI Score
RHEL 7 : developer_environment (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. Developer environment: Homoglyph characters can lead to trojan source attack (CVE-2021-42694) An issue...
7.5AI Score
RHEL 8 : jq (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. jq: stack exhaustion via jv_dump_term() function (CVE-2016-4074) Note that Nessus has not tested for this issue but...
7.3AI Score