RHEL 7 : openstack-ceilometer (RHSA-2019:0566)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:0566 advisory. OpenStack Telemetry (ceilometer) collects customer usage data for metering purposes. Telemetry implements bus listener, push, and polling agents...
7.8CVSS
5.9AI Score
0.0004EPSS
RHEL 7 : openstack-tripleo-heat-templates (RHSA-2018:2214)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2214 advisory. openstack-tripleo-heat-templates is a collection of OpenStack Orchestration templates and tools (codename heat), which can be used to help deploy...
8.8CVSS
8.7AI Score
0.001EPSS
RHEL 7 : rh-git218-git (RHSA-2018:3800)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:3800 advisory. git: Improper handling of PATH allows for commands to be executed from the current directory (CVE-2018-19486) Note that Nessus has not tested...
9.8CVSS
7AI Score
0.024EPSS
RHEL 6 / 7 : rh-perl524-perl (RHSA-2018:1192)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:1192 advisory. perl: heap write overflow in regcomp.c (CVE-2018-6797) perl: heap read overflow in regexec.c (CVE-2018-6798) Note that Nessus has...
9.8CVSS
7.5AI Score
0.009EPSS
RHEL 7 : rh-nodejs10-nodejs (RHSA-2019:2939)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:2939 advisory. nodejs: Denial of Service with large HTTP headers (CVE-2018-12121) nodejs: Slowloris HTTP Denial of Service (CVE-2018-12122) nodejs:...
7.5CVSS
7.4AI Score
0.821EPSS
RHEL 7 : qemu-kvm-rhev (RHSA-2019:1202)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1202 advisory. KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages...
5.6CVSS
6.6AI Score
0.001EPSS
RHEL 7 : openstack-aodh (RHSA-2017:3227)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3227 advisory. openstack-aodh provides the ability to trigger actions based on defined rules against metric or event data collected by OpenStack Telemetry...
7.5CVSS
7.3AI Score
0.005EPSS
RHEL 6 / 7 : rh-mysql56-mysql (RHSA-2017:3265)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:3265 advisory. mysql: Server: Pluggable Auth unspecified vulnerability (CPU Oct 2017) (CVE-2017-10155) mysql: Server: Optimizer unspecified...
6.5CVSS
7.2AI Score
0.004EPSS
RHEL 7 : openstack-cinder (RHSA-2019:0917)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:0917 advisory. OpenStack Block Storage (cinder) manages block storage mounting and the presentation of such mounted block storage to instances. The backend...
7.5CVSS
6.4AI Score
0.002EPSS
RHEL 7 : qpid-proton (RHSA-2019:1400)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:1400 advisory. qpid-proton: TLS Man in the Middle Vulnerability (CVE-2019-0223) Note that Nessus has not tested for this issue but has instead relied only on the...
7.4CVSS
6.5AI Score
0.002EPSS
RHEL 7 : openstack-neutron (RHSA-2019:0935)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:0935 advisory. OpenStack Networking (neutron) is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines....
6.5CVSS
6.9AI Score
0.004EPSS
RHEL 6 / 7 : rh-ruby23-ruby (RHSA-2018:0585)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0585 advisory. ruby: Buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898) rubygems: Escape sequence in the summary field of gemspec...
9.8CVSS
8.3AI Score
0.895EPSS
RHEL 6 / 7 : rh-ruby24-ruby (RHSA-2017:3485)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:3485 advisory. ruby: Buffer underrun vulnerability in Kernel.sprintf (CVE-2017-0898) rubygems: Escape sequence in the summary field of gemspec...
9.8CVSS
7.6AI Score
0.135EPSS
RHEL 7 : source-to-image (RHSA-2019:0036)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2019:0036 advisory. source-to-image: Improper path sanitization in ExtractTarStreamFromTarReader in tar/tar.go (CVE-2018-1102) Note that Nessus has not tested for this...
8.8CVSS
6.9AI Score
0.004EPSS
RHEL 7 : Red Hat OpenStack Platform 8 director (RHSA-2018:2857)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2857 advisory. memcached is a high-performance, distributed memory object caching system, generic in nature, but intended for use in speeding up dynamic web...
7.5CVSS
7.6AI Score
0.964EPSS
RHEL 7 : ansible (RHSA-2018:2585)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2018:2585 advisory. Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over...
7.8CVSS
8.5AI Score
0.003EPSS
RHEL 6 / 7 : rh-postgresql96-postgresql (RHSA-2018:2566)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2566 advisory. postgresql: Memory disclosure in JSON functions (CVE-2017-15098) postgresql: INSERT ... ON CONFLICT DO UPDATE fails to enforce SELECT...
9.1CVSS
7.1AI Score
0.008EPSS
RHEL 6 / 7 : rh-nodejs6-nodejs (RHSA-2018:2944)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2944 advisory. nodejs: Out of bounds (OOB) write via UCS-2 encoding (CVE-2018-12115) Note that Nessus has not tested for this issue but has instead relied only...
7.5CVSS
6.6AI Score
0.016EPSS
RHEL 7 : openstack-keystone (RHSA-2018:2523)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2523 advisory. The OpenStack Identity service (keystone) authenticates and authorizes OpenStack users by keeping track of users and their permitted activities....
5.3CVSS
5.4AI Score
0.001EPSS
RHEL 7 : openstack-octavia (RHSA-2019:0567)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:0567 advisory. The OpenStack Load Balancing service (openstack-octavia) provides a Load Balancing-as-a-Service (LBaaS) version 2 implementation for Red Hat...
7.5CVSS
6.6AI Score
0.002EPSS
RHEL 7 : rh-php71-php (RHSA-2019:3300)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:3300 advisory. php: underflow in env_path_info in fpm_main.c (CVE-2019-11043) Note that Nessus has not tested for this issue but has instead relied only on the...
9.8CVSS
7.4AI Score
0.975EPSS
RHEL 7 : qemu-kvm-rhev (RHSA-2018:1646)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:1646 advisory. KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages...
8.8CVSS
7.3AI Score
0.003EPSS
RHEL 7 : qemu-kvm-rhev (RHSA-2018:2228)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2228 advisory. KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide...
5.5CVSS
6.3AI Score
0.003EPSS
RHEL 7 : qemu-kvm-rhev (RHSA-2018:2364)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2364 advisory. KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide...
5.5CVSS
6.3AI Score
0.003EPSS
RHEL 7 : python-django (RHSA-2019:0082)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:0082 advisory. Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as...
5.3CVSS
5.8AI Score
0.008EPSS
RHEL 7 : rh-postgresql10-postgresql (RHSA-2018:2565)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2565 advisory. postgresql: Too-permissive access control list on function pg_logfile_rotate() (CVE-2018-1115) postgresql: Certain host connection...
9.1CVSS
7.2AI Score
0.007EPSS
RHEL 7 : qemu-kvm-rhev (RHSA-2019:4344)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:4344 advisory. KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages...
8.8CVSS
9.3AI Score
0.017EPSS
RHEL 7 : erlang (RHSA-2018:0303)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0303 advisory. Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault...
5.9CVSS
6AI Score
0.003EPSS
RHEL 7 : openstack-nova (RHSA-2018:0241)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0241 advisory. OpenStack Compute (nova) launches and schedules large networks of virtual machines, creating a redundant and scalable cloud computing platform....
6.5CVSS
6.7AI Score
0.001EPSS
RHEL 7 : openstack-nova (RHSA-2018:0314)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0314 advisory. OpenStack Compute (nova) launches and schedules large networks of virtual machines, creating a redundant and scalable cloud computing platform....
6.5CVSS
6.7AI Score
0.001EPSS
RHEL 6 / 7 : rh-nodejs4-nodejs (RHSA-2017:3002)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3002 advisory. nodejs: Constant Hashtable Seeds vulnerability (CVE-2017-11499) Note that Nessus has not tested for this issue but has instead relied only on...
7.5CVSS
6.9AI Score
0.009EPSS
RHEL 7 : openstack-aodh (RHSA-2018:0315)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0315 advisory. openstack-aodh provides the ability to trigger actions based on defined rules against metric or event data collected by OpenStack Telemetry...
7.5CVSS
7.3AI Score
0.005EPSS
RHEL 6 / 7 : rh-nodejs4-nodejs-tough-cookie (RHSA-2017:2912)
The remote Redhat Enterprise Linux 6 / 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2017:2912 advisory. nodejs-tough-cookie: regular expression DoS via Cookie header with many semicolons (CVE-2016-1000232) nodejs-tough-cookie: Regular...
7.5CVSS
6.9AI Score
0.011EPSS
RHEL 6 / 7 : rh-nginx110-nginx (RHSA-2019:2745)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:2745 advisory. HTTP/2: large amount of data requests leads to denial of service (CVE-2019-9511) HTTP/2: flood using PRIORITY frames results in...
7.5CVSS
7.2AI Score
0.097EPSS
RHEL 6 / 7 : rh-mysql57-mysql (RHSA-2018:0586)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0586 advisory. mysql: Server: InnoDB unspecified vulnerability (CPU Jan 2018) (CVE-2018-2565) mysql: Server: GIS unspecified vulnerability (CPU Jan...
6.5CVSS
7.4AI Score
0.006EPSS
RHEL 7 : redis (RHSA-2019:2628)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2019:2628 advisory. Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and...
7.2CVSS
7.5AI Score
0.188EPSS
RHEL 7 : rh-ruby25-ruby (RHSA-2019:1148)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1148 advisory. rubygems: Delete directory using symlink when decompressing tar (CVE-2019-8320) rubygems: Escape sequence injection vulnerability in...
8.8CVSS
8.3AI Score
0.006EPSS
RHEL 7 : openvswitch (RHSA-2019:0081)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:0081 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. ...
4.9CVSS
5.7AI Score
0.005EPSS
RHEL 7 : opendaylight (RHSA-2018:2598)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2018:2598 advisory. OpenDaylight (ODL) is a modular open platform for customizing and automating networks of any size and scale. The OpenDaylight Project arose out of...
5.9CVSS
6.4AI Score
0.013EPSS
RHEL 6 / 7 : rh-ruby22-ruby (RHSA-2018:0583)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0583 advisory. ruby: DL::dlopen could open a library with tainted library name (CVE-2009-5147, CVE-2015-7551) ruby: Buffer underrun vulnerability in...
9.8CVSS
8.2AI Score
0.895EPSS
RHEL 7 : Red Hat OpenStack Platform director (RHSA-2018:1593)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:1593 advisory. Red Hat OpenStack Platform director provides the facilities for deploying and monitoring a private or public infrastructure-as-a-service...
7.5CVSS
7.5AI Score
0.964EPSS
RHEL 7 : openstack-nova (RHSA-2018:2855)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2855 advisory. OpenStack Compute (nova) launches and schedules large networks of virtual machines, creating a redundant and scalable cloud computing platform....
7.5CVSS
6.3AI Score
0.003EPSS
RHEL 6 / 7 : rh-mysql57-mysql (RHSA-2017:2886)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:2886 advisory. mariadb, mysql: Incorrect input validation allowing code execution via mysqldump (CVE-2016-5483, CVE-2017-3600) mysql: Server:...
7.7CVSS
7.8AI Score
0.957EPSS
RHEL 7 : memcached (RHSA-2018:2290)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2018:2290 advisory. memcached is a high-performance, distributed memory object caching system, generic in nature, but intended for use in speeding up dynamic web...
7.5CVSS
7.6AI Score
0.01EPSS
RHEL 7 : rh-nginx114-nginx (RHSA-2018:3681)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3681 advisory. nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843) nginx: Excessive CPU usage via flaw in HTTP/2...
7.5CVSS
6.9AI Score
0.084EPSS
RHEL 7 : redis (RHSA-2019:0052)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:0052 advisory. Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists,...
9.8CVSS
10AI Score
0.02EPSS
RHEL 7 : openvswitch (RHSA-2018:2524)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2524 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Security...
6.1CVSS
6.4AI Score
0.002EPSS
RHEL 7 : erlang (RHSA-2018:0368)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0368 advisory. Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault...
5.9CVSS
5.5AI Score
0.003EPSS
RHEL 7 : erlang (RHSA-2018:0528)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0528 advisory. Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault...
5.9CVSS
5.5AI Score
0.003EPSS
RHEL 6 / 7 : rh-nodejs6-nodejs-tough-cookie (RHSA-2017:2913)
The remote Redhat Enterprise Linux 6 / 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2017:2913 advisory. nodejs-tough-cookie: Regular expression denial of service (CVE-2017-15010) Note that Nessus has not tested for this issue but has instead relied...
7.5CVSS
6.5AI Score
0.011EPSS