Lucene search
+L

1794 matches found

Tenable Nessus
Tenable Nessus
added 2024/08/07 12:0 a.m.34 views

Amazon Linux AMI : kernel (ALAS-2024-1945)

The version of kernel installed on the remote host is prior to 4.14.349-188.564. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2024-1945 advisory. In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix use-after-free of timer for log...

7.8CVSS6.7AI score0.00258EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/07/31 12:0 a.m.82 views

Amazon Linux 2 : docker (ALASNITRO-ENCLAVES-2024-041)

The version of docker installed on the remote host is prior to 25.0.6-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2NITRO-ENCLAVES-2024-041 advisory. 2025-01-04: CVE-2024-36620 was added to this advisory. 2025-01-04: CVE-2024-36623 was added to this advisory...

9.9CVSS7.6AI score0.16496EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2024/07/25 12:0 a.m.44 views

Amazon Linux AMI : httpd24 (ALAS-2024-1944)

The version of httpd24 installed on the remote host is prior to 2.4.61-1.103. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2024-1944 advisory. Substitution encoding issue in modrewrite in Apache HTTP Server 2.4.59 and earlier allows attacker to execute scripts...

9.8CVSS8.1AI score0.99957EPSS
Exploits1References10
NVD
NVD
added 2024/07/15 10:15 p.m.19 views

CVE-2024-4143

A potential security vulnerability has been identified in certain HP PC products using AMI BIOS, which might allow arbitrary code execution. AMI has released firmware updates to mitigate this vulnerability...

9.8CVSS0.00576EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/15 9:46 p.m.13 views

CVE-2024-4143 Certain HP PC products using AMI BIOS – Buffer Overflow

A potential security vulnerability has been identified in certain HP PC products using AMI BIOS, which might allow arbitrary code execution. AMI has released firmware updates to mitigate this vulnerability...

7.8AI score0.00576EPSS
Exploits0References1
CVE
CVE
added 2024/07/15 9:46 p.m.72 views

CVE-2024-4143

CVE-2024-4143 concerns HP PC products using AMI BIOS with a Buffer Overflow vulnerability. Red Hat/HP/NVD and CVE records describe a potential arbitrary code execution due to improper input handling in AMI BIOS. Red Hat and CVE records reiterate that AMI has released firmware updates to mitigate ...

9.8CVSS9.8AI score0.00576EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/15 9:46 p.m.104 views

CVE-2024-4143 Certain HP PC products using AMI BIOS – Buffer Overflow

A potential security vulnerability has been identified in certain HP PC products using AMI BIOS, which might allow arbitrary code execution. AMI has released firmware updates to mitigate this vulnerability...

0.00576EPSS
Exploits0References1
Hewlett-Packard
Hewlett-Packard
added 2024/07/15 12:0 a.m.48 views

Certain HP PC products using AMI BIOS – Buffer Overflow

A potential security vulnerability has been identified in certain HP PC products using AMI BIOS, which might allow arbitrary code execution. AMI has released firmware updates to mitigate this vulnerability. AMI has released updates to mitigate the potential vulnerability. HP has identified affect...

9.8CVSS8AI score0.00576EPSS
Exploits0Affected Software168
HPE Security Bulletins
HPE Security Bulletins
added 2024/07/12 12:0 a.m.3 views

HPESBCR04667 rev.1 - HPE Cray Servers Using AMI MegaRac SPX Software (AMI-SA-2023010), Multiple Vulnerabilities

Potential Security Impact: Local: memory corruption, Buffer Overflow, Null pointer dereference SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cray XD665 - prior to BMC 1.14 in HPE Cray SC XD665 Firmware Pack 2024.01.00 HPE Cray XD670 - prior to BMC 1.14 in BMC Firmware for HP...

9.6CVSS6.1AI score0.00308EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/07/09 12:0 a.m.34 views

Amazon Linux AMI : kernel (ALAS-2024-1943)

The version of kernel installed on the remote host is prior to 4.14.348-187.565. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1943 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/kvm: Disable kvmclock on all CPUs on shutdown...

7.1CVSS6.3AI score0.00245EPSS
Exploits0References4
Hewlett-Packard
Hewlett-Packard
added 2024/06/28 12:0 a.m.30 views

Certain HP PC BIOS Logo Vulnerabilities

Potential security vulnerabilities, known as LogoFAIL, have been reported in the AMI BIOS and the Insyde BIOS used in certain HP PC products, which might allow escalation of privilege, arbitrary code execution, denial of service, information disclosure, and/or data tampering. AMI and Insyde are...

7.8CVSS7.8AI score0.01858EPSS
Exploits1Affected Software450
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.21 views

Amazon Linux AMI : R (ALAS-2024-1940)

The version of R installed on the remote host is prior to 3.4.1-1.53. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1940 advisory. Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not...

8.8CVSS8.3AI score0.23618EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.26 views

Amazon Linux AMI : tomcat8 (ALAS-2024-1941)

The version of tomcat8 installed on the remote host is prior to 8.5.99-1.97. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2024-1941 advisory. Denial of Service via incomplete cleanup vulnerability in Apache Tomcat. It was possible for WebSocket clients to keep...

7.5CVSS7.6AI score0.23072EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.31 views

Amazon Linux AMI : kernel (ALAS-2024-1942)

The version of kernel installed on the remote host is prior to 4.14.348-187.562. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2024-1942 advisory. 2024-07-31: CVE-2024-27020 was added to this advisory. 2024-07-31: CVE-2024-26976 was added to this advisory...

7.1CVSS6.5AI score0.00474EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2024/05/13 12:0 a.m.27 views

Amazon Linux AMI : python38 (ALAS-2024-1936)

The version of python38 installed on the remote host is prior to 3.8.5-1.11. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1936 advisory. An issue was found in the CPython tempfile.TemporaryDirectory class affecting versions 3.12.2, 3.11.8, 3.10.13, 3.9.18, and 3.8....

7.8CVSS7.2AI score0.00313EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/05/13 12:0 a.m.33 views

Amazon Linux AMI : golang (ALAS-2024-1938)

The version of golang installed on the remote host is prior to 1.13.4-1.57. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1938 advisory. Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public...

7.5CVSS7AI score0.04693EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/05/13 12:0 a.m.21 views

Amazon Linux AMI : nghttp2 (ALAS-2024-1935)

The version of nghttp2 installed on the remote host is prior to 1.33.0-1.1.9. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1935 advisory. nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 kee...

5.3CVSS7.1AI score0.8496EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/05/13 12:0 a.m.42 views

Amazon Linux AMI : kernel (ALAS-2024-1937)

The version of kernel installed on the remote host is prior to 4.14.343-183.564. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1937 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: exthdr: fix 4-byte stack OOB write ...

7.1CVSS6.4AI score0.00675EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/05/13 12:0 a.m.64 views

Amazon Linux AMI : unbound (ALAS-2024-1934)

The version of unbound installed on the remote host is prior to 1.6.6-1.6. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1934 advisory. An issue was discovered in some DNS recursive resolvers that allows remote attackers to cause a denial of service using a...

7.5CVSS6.7AI score0.01743EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/04/29 12:0 a.m.40 views

Amazon Linux AMI : xorg-x11-server (ALAS-2024-1932)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2024-1932 advisory. Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer NOTE: https://lists.x.org/archives/xorg/2024-January/061525.htmlNOTE:...

9.8CVSS6.8AI score0.02106EPSS
Exploits0References10
Rows per page
Query Builder