Linux Distros Unpatched Vulnerability : CVE-2018-14955

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mail message display page in SquirrelMail through 1.4.22 has XSS via SVG animations animate to attribute. CVE-2018-14955 Note that Nessus relies on the...

Ubuntu 16.04 ESM : Checkmk vulnerabilities (USN-5527-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5527-2 advisory. USN-5527-1 fixed vulnerabilities in Checkmk. This update provides the corresponding update for Ubuntu 16.04 ESM. Tenable has extracted the preceding...

Ubuntu: Security Advisory (USN-5527-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-5527-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-5527-2: Checkmk vulnerabilities

USN-5527-1 fixed vulnerabilities in Checkmk. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: It was discovered that Checkmk incorrectly handled authentication. An attacker could possibly use this issue to cause a race condition leading to information...

USN-5527-1: Checkmk vulnerabilities

It was discovered that Checkmk incorrectly handled authentication. An attacker could possibly use this issue to cause a race condition leading to information disclosure. CVE-2017-14955 It was discovered that Checkmk incorrectly handled certain inputs. An attacker could use these cross-site...

Ubuntu 18.04 LTS : Checkmk vulnerabilities (USN-5527-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5527-1 advisory. It was discovered that Checkmk incorrectly handled authentication. An attacker could possibly use this issue to cause a race condition leading to...

CVE-2020-14955

In Jiangmin Antivirus 16.0.13.129, the driver file KVFG.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x220440...

CVE-2020-14955

The CVE-2020-14955 entry concerns Jiangmin Antivirus 16.0.13.129, where the KVFG.sys driver mishandles input values for IOCTL 0x220440. This input-validation weakness allows local users to trigger a denial of service (BSOD) and potentially other unspecified impacts. The vulnerability is described...

CVE-2019-14955

In JetBrains Hub versions earlier than 2018.4.11436, there was no option to force a user to change the password and no password expiration policy was implemented...

CVE-2019-14955

CVE-2019-14955 affects JetBrains Hub prior to version 2018.4.11436. The issue centers on a missing ability to force password changes and a lack of password expiration policy, with several sources describing it as an authorization/authentication weakness present in older Hub releases. The Red Hat ...

CVE-2019-14955

In JetBrains Hub versions earlier than 2018.4.11436, there was no option to force a user to change the password and no password expiration policy was implemented...

Fedora Update for squirrelmail FEDORA-2019-ad02f64a79

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2018-14955

The mail message display page in SquirrelMail through 1.4.22 has XSS via SVG animations animate to attribute...

CVE-2018-14955

CVE-2018-14955 affects SquirrelMail prior to 1.4.23; the mail display page (through 1.4.22) is vulnerable to XSS via SVG animations (animate to attribute). Debian reports a fixed package at squirrelmail 2:1.4.23~svn20120406-2+deb8u3; other disclosures note unpatched status in some distros (e.g., ...

Fedora Update for check-mk FEDORA-2017-9f36da1aac

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 25 : check-mk (2017-6bbb922009)

Security fix for CVE-2017-1495 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

Check_MK Information < 1.2.8p26 Disclosure Vulnerability

CheckMK is prone to a race condition vulnerability which could lead to information disclosure. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Check_MK 1.2.8p25 - Information Disclosure Exploit

Exploit for python platform in category web applications 1. ADVISORY INFORMATION ======================= Product: Checkmk Vendor URL: https://mathias-kettner.de/checkmk.html Type: Race Condition CWE-362 Date found: 2017-09-21 Date published: 2017-10-18 CVSSv3 Score: 7.5...

Check_mk 1.2.8p25 save_users() Race Condition

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Checkmk Vendor URL: https://mathias-kettner.de/checkmk.html Type: Race Condition CWE-362 Date found: 2017-09-21 Date published: 2017-10-18 CVSSv3 Score: 7.5...