13049 matches found
Ubuntu 20.04 LTS : Linux kernel (AWS) vulnerabilities (USN-7235-3)
The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7235-3 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...
Ubuntu 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-7236-3)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7236-3 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...
Ubuntu 24.10 : Linux kernel (AWS) vulnerabilities (USN-7238-4)
The remote Ubuntu 24.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7238-4 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Prevent unmapping active read buffers. The kms paths maintain a persistent map that is active for reading and comparing the cursor buffer. These maps can conflict with each other in simple scenarios where: a buffer “a...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: drm/vmwgfx: Fixed invalid reads in “fence signaled events”. The length of the dmrevent structure was correctly set to the actual size of the structure that is actually used. The length of the dmrevent was set to the parent...
The vulnerability of VMware Aria Operations for Logs, a tool for analyzing network logs, stems from the lack of security measures taken to protect the website structure. This vulnerability allows attackers to inject and execute arbitrary code in users’ browsers, within the context of the vulnerable website.
The vulnerability of the VMware Aria Operations for Logs network log analysis tool exists due to the lack of security measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject and execute arbitrary code into the user’s browser context throug...
The vulnerability of the monitoring tool for VMware Aria Operations, related to the lack of protection for service data, allows a perpetrator to disclose the protected information.
The vulnerability of the monitoring tool for VMware Aria Operations relates to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose the protected information...
The vulnerability of the VMware Aria Operations for Logs network log analysis tool arises due to the lack of security measures taken to protect the website structure. This allows attackers to escalate their privileges and execute arbitrary code.
The vulnerability of the VMware Aria Operations for Logs network log analysis tool is related to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor, operating remotely, to perform certain operations from the perspective of a user administrating the syst...
Photon OS 4.0: Linux PHSA-2025-4.0-0752
An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0752. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 5.0: Linux PHSA-2025-5.0-0464
An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0464. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 4.0: Git PHSA-2025-4.0-0745
An update of the git package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0745. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid21521...
Photon OS 4.0: Mysql PHSA-2025-4.0-0750
An update of the mysql package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0750. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 4.0: Linux PHSA-2025-4.0-0749
An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0749. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 5.0: Libtiff PHSA-2025-5.0-0464
An update of the libtiff package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0464. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 4.0: Linux PHSA-2025-4.0-0743
An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0743. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 4.0: Gstreamer PHSA-2025-4.0-0744
An update of the gstreamer package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0744. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: VMCI: Use threaded irqs instead of tasklets The vmcidispatchdgs tasklet function calls vmcireaddata which uses waitevent resulting in invalid sleep in an atomic context and therefore potentially in a deadlock. Use threaded irqs t...
CVE-2025-22217
Avi Load Balancer contains an unauthenticated blind SQL Injection vulnerability which was privately reported to VMware. Patches are available to remediate this vulnerability in affected VMware products. A malicious user with network access may be able to use specially crafted SQL queries to gain...
VMware Aria Operations Information Disclosure (VMSA-2025-0003)
The version of VMware Aria Operations running on the remote host is missing a vendor supplied patch. It is, therefore, affected by a information disclosure vulnerability that a malicious user with non-administrative privileges could exploit to retrieve credentials for an outbound plugin if a vali...
CVE-2022-4441
Incorrect Privilege Assignment vulnerability in Hitachi Storage Plug-in for VMware vCenter allows remote authenticated users to cause privilege escalation. This issue affects Hitachi Storage Plug-in for VMware vCenter: from 04.9.0 before 04.9.1...