Linux Distros Unpatched Vulnerability : CVE-2026-5407

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SMB2 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service CVE-2026-5407 Note that Nessus relies on the...

DEBIAN-CVE-2026-5407

SMB2 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

CVE-2026-5407

SMB2 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

MiracleLinux 7 : openssl-1.0.2k-16.1.el7 (AXSA:2019-3827:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-3827:03 advisory. Security Fix - OpenSSL SMT Simultaneous Multi-threading 'port contention' CVE-2018-5407 CVEJVNhttp://jvndb.jvn.jp/ Tenable has extracted the preceding...

TencentOS Server 2: openssl (TSSA-2023:0334)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0334 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...

CVE-2025-5407

A vulnerability has been found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /registerscript.php. The manipulation of the argument fullname leads to cross site scriptin...

CVE-2025-5407 chaitak-gorai Blogbook register_script.php cross site scripting

A vulnerability has been found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /registerscript.php. The manipulation of the argument fullname leads to cross site scriptin...

CVE-2025-5407 chaitak-gorai Blogbook register_script.php cross site scripting

A vulnerability has been found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /registerscript.php. The manipulation of the argument fullname leads to cross site scriptin...

CVE-2023-5407

Controller denial of service due to improper handling of a specially crafted message received by the controller. See Honeywell Security Notification for recommendations on upgrading and versioning...

Linux Distros Unpatched Vulnerability : CVE-2016-5407

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The 1 XvQueryAdaptors and 2 XvQueryEncodings functions in X.org libXv before 1.0.11 allow remote X servers to trigger out-of-bounds memory access operations via...

Linux Distros Unpatched Vulnerability : CVE-2018-5407

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Simultaneous Multi-threading SMT in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port...

RHEL 7 : libxv (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libXv: Insufficient validation of server responses results in out-of bounds accesses CVE-2016-5407 Note that Nessus...

RHEL 6 : libxv (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libXv: Insufficient validation of server responses results in out-of bounds accesses CVE-2016-5407 Note that Nessus...

CVE-2024-5407

CVE-2024-5407 affects RhinOS 3.0-1190. A PHP code injection via the search parameter in /portal/search.htm is described, enabling a remote attacker to run a reverse shell and thereby compromise the entire infrastructure. Concrete details from connected sources specify the vulnerable component (Rh...

CVE-2024-5407 Code Injection vulnerability in RhinOS from SaltOS

A vulnerability in RhinOS 3.0-1190 could allow PHP code injection through the "search" parameter in /portal/search.htm. This vulnerability could allow a remote attacker to perform a reverse shell on the remote system, compromising the entire infrastructure...

CVE-2024-5407 Code Injection vulnerability in RhinOS from SaltOS

A vulnerability in RhinOS 3.0-1190 could allow PHP code injection through the "search" parameter in /portal/search.htm. This vulnerability could allow a remote attacker to perform a reverse shell on the remote system, compromising the entire infrastructure...

RHEL 5 : libxv (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libXv: Insufficient validation of server responses results in out-of bounds accesses CVE-2016-5407 Note that Nessus...

RHEL 7 : libxv (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libXv: Insufficient validation of server responses results in out-of bounds accesses CVE-2016-5407 Note that Nessus...

Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC Stack-based Buffer Overflow (CVE-2023-5407)

Controller denial of service due to improper handling of a specially crafted message received by the controller. See Honeywell Security Notification for recommendations on upgrading and versioning. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot fo...

Malicious code in wlwz-2312-5407 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9bada6d6ebb98844f2114949117aeeb5ddea8efe5e26a9eae8e931f790caa6a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...