+F FS040U, +F FS020W, +F FS030W, And +F FS040W Security Vulnerabilities
peellabel.com Cross Site Scripting vulnerability OBB-3927347
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
microstar2000.com Cross Site Scripting vulnerability OBB-3927346
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
Get Weekends Back: Put Chrome CVEs like CVE-2024-4671 on Auto-Patching
On May 9th, Google released an emergency update for its Chrome browser to patch a critical zero-day vulnerability, CVE-2024-4671. The "use after free" vulnerability affects the Visuals component of Chrome, which is responsible for rendering and displaying content. CVE-2024-4671 was identified and.....
6.6AI Score
0.0004EPSS
RHEL 6 : wireshark (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. wireshark: free operation on an uninitialized memory address in wiretap/netmon.c (CVE-2018-6836) The...
9.6AI Score
RHEL 6 : hostapd (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. hostapd: UPnP SUBSCRIBE misbehavior in WPS AP (CVE-2020-12695) Note that Nessus has not tested for this issue but...
7.3AI Score
RHEL 5 : file-roller (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. file-roller: path traversal vulnerability via a specially crafted filename contained in malicious...
5.2AI Score
RHEL 7 : bluez (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. bluez: double free in gatttool client disconnect callback handler in src/shared/att.c could lead to DoS...
6.7AI Score
RHEL 5 : unzip (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. unzip: Heap-based buffer overflow in fileio.c:UzpPassword function allows code execution ...
8.6AI Score
RHEL 8 : kubernetes (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. kubernetes: Incorrect rule injection in CNI portmap plugin (CVE-2019-9946) Note that Nessus has not tested for this...
7.6AI Score
RHEL 6 : gthumb (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. gthumb: DoS via malformed JPEG image (CVE-2020-36427) Note that Nessus has not tested for this issue but has instead...
5.9AI Score
RHEL 5 : xsa243_xen (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. xsa243 xen: x86: Incorrect handling of self-linear shadow mappings with translated guests (XSA-243) ...
7.4AI Score
RHEL 5 : xsa173_xen (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. xsa173 xen: x86 shadow pagetables: address width overflow (XSA-173) (CVE-2016-3960) Note that Nessus has not tested...
7.6AI Score
RHEL 7 : numpy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. numpy: crafted serialized object passed in numpy.load() in pickle python module allows arbitrary code ...
8.4AI Score
RHEL 6 : lasso (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. lasso: XML signature wrapping vulnerability when parsing SAML responses (CVE-2021-28091) Note that Nessus has not...
7.8AI Score
RHEL 7 : python-jinja2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. python-jinja2: ReDoS vulnerability in the urlize filter (CVE-2020-28493) Note that Nessus has not tested for this...
7.3AI Score
RHEL 7 : bzip2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. bzip2: heap use after free in bzip2recover (CVE-2016-3189) Note that Nessus has not tested for this issue but has...
7.5AI Score
RHEL 7 : mod_auth_openidc (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. mod_auth_openidc: open redirect due to target_link_uri parameter not validated (CVE-2021-39191) ...
8AI Score
RHEL 5 : pyopenssl (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. pyOpenSSL: Failure to release memory before removing last reference in PKCS #12 Store (CVE-2018-1000808) Note that...
7.2AI Score
RHEL 8 : hdf5 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. hdf5: stack-based buffer overflow in the function H5FD_sec2_read in H5FDsec2.c (CVE-2018-13876) A NULL...
8.3AI Score
RHEL 6 : v8 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. V8: integer overflow leading to buffer overflow in Zone::New (CVE-2016-1669) Note that Nessus has not tested for...
9.1AI Score
RHEL 6 : gstreamer-plugins-bad-free (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. gstreamer-plugins-bad-free: Missing initialization of allocated heap memory leads to information leak ...
7.8AI Score
RHEL 6 : squid (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. squid: Heap overflow issue in URN processing (CVE-2019-12526) squid: Buffer overflow in reverse-proxy...
9.8AI Score
RHEL 6 : gnome-session (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. gnome-session: Bad reference counting in accept_ice_connection() permits resource exhaustion (CVE-2017-11171) ...
7.3AI Score
RHEL 8 : cobbler (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. cobbler: XMLRPC API endpoints are not correctly validating security tokens (CVE-2018-1000226) Cobbler...
7.3AI Score
RHEL 7 : plexus-utils (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. plexus-utils: Mishandled strings in Commandline class allow for command injection (CVE-2017-1000487) Note that...
7.9AI Score
RHEL 7 : openvswitch (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. openvswitch: limitation in the OVS packet parsing in userspace leads to DoS (CVE-2020-35498) ...
7.6AI Score
RHEL 6 : chromium-browser (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. chromium-browser: Heap buffer overflow in clipboard (CVE-2020-16025) chromium-browser: Out of bounds...
9.6AI Score
RHEL 6 : open-iscsi (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. Open-iSCSI: invalid handing of the TCP urgent data pointer (CVE-2020-17437) An issue was discovered in...
7.7AI Score
RHEL 7 : vsftpd (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. vsftpd: denial of service due to limited number of connections allowed (CVE-2021-30047) Note that Nessus has not...
7.3AI Score
RHEL 7 : evince (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. evince: Command injection when exporting to PDF (CVE-2017-1000159) Note that Nessus has not tested for this issue...
7.7AI Score
RHEL 8 : minimist (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. minimist: prototype pollution (CVE-2021-44906) Note that Nessus has not tested for this issue but has instead relied...
7.3AI Score
RHEL 8 : tpm2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. tpm2: TCG TPM2.0 implementations vulnerable to memory corruption (CVE-2023-1018) Note that Nessus has not tested for...
7.5AI Score
RHEL 7 : ocaml (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. ocaml: Integer overflow in byterun/bigarray.c:caml_ba_deserialize() allows remote attackers to cause a denial of...
7.6AI Score
RHEL 7 : libmspack,_clamav (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libmspack, clamav: heap-based buffer overflow in mspack/lzxd.c (CVE-2017-6419) The cabd_read_string...
8.1AI Score
RHEL 8 : dcraw (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. dcraw: Stack-based buffer overflow in the find_green() function (CVE-2018-19655) A buffer over-read in...
8.3AI Score
RHEL 6 : giflib (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. giflib: out-of-bounds read in DumpScreen2RGB() in gif2rgb.c in gif2rgb tool (CVE-2020-23922) giflib:...
8.4AI Score
RHEL 7 : gpg (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. gpg: Signature spoofing via status line injection (CVE-2022-34903) Note that Nessus has not tested for this issue...
7.6AI Score
RHEL 5 : libxtst (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libXtst: Insufficient validation of server responses result in Integer overflows (CVE-2016-7951) X.org...
7.6AI Score
RHEL 7 : protobuf (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference (CVE-2021-22570) Note that...
7.3AI Score
RHEL 5 : dovecot (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. dovecot: improper NULL byte handling in IMAP and ManageSieve protocol parsers leads to out of bounds ...
8AI Score
RHEL 7 : jose-go (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. jose-go: improper handling of highly compressed data (CVE-2024-28180) Note that Nessus has not tested for this issue...
7.3AI Score
RHEL 5 : coreutils (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. coreutils: race condition vulnerability in chown and chgrp (CVE-2017-18018) Note that Nessus has not tested for this...
5.2AI Score
RHEL 5 : mod_nss (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. mod_nss: Invalid handling of +CIPHER operator (CVE-2016-3099) Note that Nessus has not tested for this issue but has...
7.3AI Score
RHEL 6 : dmidecode (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. dmidecode: dump-bin to overwrite a local file (CVE-2023-30630) Note that Nessus has not tested for this issue but...
7.2AI Score
RHEL 5 : xsa277_xen (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. xsa277 xen: x86: incorrect error handling for guest p2m page removals (XSA-277) (CVE-2018-19964) Note that Nessus...
7.3AI Score
RHEL 6 : c-ares (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. c-ares: Single byte out of buffer write (CVE-2016-5180) The c-ares function ares_parse_naptr_reply(),...
7.7AI Score
RHEL 8 : developer_environment (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. Developer environment: Homoglyph characters can lead to trojan source attack (CVE-2021-42694) An issue...
7.5AI Score
RHEL 6 : flac (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. flac: Remote Code Execution (RCE) via the bitwriter_grow_ function, by supplying crafted input to the ...
8.2AI Score
RHEL 7 : libmaxminddb (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. libmaxminddb: improper initialization in dump_entry_data_list() in maxminddb.c (CVE-2020-28241) Note that Nessus has...
7.3AI Score
RHEL 7 : libgit2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libgit2: NTFS protections inactive when running Git in the Windows Subsystem for Linux (CVE-2020-12279) ...
8.1AI Score