183 matches found
RHEL 7 : mod_auth_openidc (RHSA-2020:3970)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3970 advisory. The modauthopenidc is an OpenID Connect authentication module for Apache HTTP Server. It enables an Apache HTTP Server to operate as an Open...
CVE-2020-3970
VMware CVE-2020-3970 affects ESXi (7.0 before 7.0.0-1.20.16321839; 6.7 before 202004101-SG; 6.5 before 202005401-SG), Workstation 15.x before 15.5.5, and Fusion 11.x before 11.5.5. It is an out-of-bounds read in the Shader functionality that can be triggered by a local user with non-administrativ...
VMSA-2020-0015:VMware Cloud Foundation, ESXi, Workstation, and Fusion updates address multiple security vulnerabilities
Advisory ID: VMSA-2020-0015.2 CVSSv3 Range: 4.0 - 9.3 Issue Date:2020-06-23 Updated On: 2020-07-02 CVEs: CVE-2020-3962, CVE-2020-3963, CVE-2020-3964, CVE-2020-3965, CVE-2020-3966, CVE-2020-3967, CVE-2020-3968, CVE-2020-3969, CVE-2020-3970, CVE-2020-3971 Synopsis: VMware Cloud Foundation, ESXi,...
CVE-2019-3970
Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to Arbitrary File Write due to Cavwp.exe handling of Comodo's Antivirus database. Cavwp.exe loads Comodo antivirus definition database in unsecured global section objects, allowing a local low privileged process to modify this data direct...
CVE-2019-3970
CVE-2019-3970 affects Comodo Antivirus up to 12.0.0.6810. The vulnerability arises from Cavwp.exe loading the antivirus definition database into unsecured global section objects, enabling a local, low-privileged process to modify the in-memory data and alter virus signatures. Impact described in ...
Ubuntu: Security Advisory (USN-3970-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Denial Of Service (DoS)
libxslt is a library for transforming XML files into other textual formats including HTML, plain text, and other XML representations of the underlying data using the standard XSLT stylesheet transformation mechanism. A heap-based buffer overflow flaw was found in the way libxslt applied templates...
CVE-2018-3970
Sophos HitmanPro.Alert 3.7.6.744 contains an exploitable memory-disclosure vulnerability in the hmpalert IOCTL handler (0x222000). A crafted IRP/IOCTL request can leak kernel memory to user mode, as confirmed by TALOS-2018-0635 and related OpenVAS/PT-2018-16350 analyses. The issue affects the IOC...
Debian DSA-3970-1 : emacs24 - security update
Charles A. Roelli discovered that Emacs is vulnerable to arbitrary code execution when rendering text/enriched MIME data e.g. when using Emacs-based mail clients. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...
Debian: Security Advisory (DSA-3970-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-3970
The CVE-2015-3970 entry concerns Janitza UMG power quality devices (UMG 508, 509, 511, 604, 605). It describes multiple cross-site scripting (XSS) vulnerabilities in the device web interface that allow remote attackers to inject arbitrary script/HTML via unspecified vectors. The issue is accessib...
Oracle: Security Advisory (ELSA-2012-1211)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SuSE 11.3 Security Update : pulseaudio (SAT Patch Number 9568)
The following security issue is fixed in this update : - Fixed a remote denial of service attack in module-rtp-recv. CVE-2014-3970 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text...
openSUSE Security Update : openSUSE-2014- (openSUSE-2014--1)
This update fixes the following security issue: bnc881524 CVE-2014-3970 - Denial of service in module-rtp-recv %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2014/08/08. C Tenable Network Security, Inc. The...
Fedora Update for empathy FEDORA-2014-8183
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for cinnamon FEDORA-2014-8183
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for paprefs FEDORA-2014-8183
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for gnome-settings-daemon FEDORA-2014-8183
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for fldigi FEDORA-2014-8183
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for cinnamon-control-center FEDORA-2014-8183
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...