1822 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-10855
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ansible 2.5 prior to 2.5.5, and 2.4 prior to 2.4.5, do not honor the nolog task flag for failed tasks. When the nolog flag has been used to protect sensitive da...
Linux Distros Unpatched Vulnerability : CVE-2020-10729
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the use of insufficiently random values in Ansible. Two random password lookups of the same length generate the equal value as the template...
Linux Distros Unpatched Vulnerability : CVE-2018-11213
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libjpeg 9a. The gettextgrayrow function in rdppm.c allows remote attackers to cause a denial of service Segmentation fault via a...
Linux Distros Unpatched Vulnerability : CVE-2017-2931
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to the parsing of SWF metadata. Successful...
Linux Distros Unpatched Vulnerability : CVE-2012-5067
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiali...
Linux Distros Unpatched Vulnerability : CVE-2015-9099
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The lameinitparams function in lame.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service invalid read and application crash via...
Linux Distros Unpatched Vulnerability : CVE-2013-0432
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and...
Linux Distros Unpatched Vulnerability : CVE-2016-6259
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xen 4.5.x through 4.7.x do not implement Supervisor Mode Access Prevention SMAP whitelisting in 32-bit exception and event delivery, which allows local 32-bit P...
Linux Distros Unpatched Vulnerability : CVE-2018-11508
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The compatgettimex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via...
Linux Distros Unpatched Vulnerability : CVE-2016-5030
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dwarfcalculateinfosectionendptr function in libdwarf before 20160923 allows remote attackers to cause a denial of service NULL pointer dereference via a...
Linux Distros Unpatched Vulnerability : CVE-2013-1676
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The SelectionIterator::GetNextSegment function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17...
Linux Distros Unpatched Vulnerability : CVE-2018-1071
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd function. A local attacker could exploit this to cause a denial o...
Linux Distros Unpatched Vulnerability : CVE-2013-1710
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The crypto.generateCRMFRequest function in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before...
Linux Distros Unpatched Vulnerability : CVE-2018-16868
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Bleichenbacher type side-channel based padding oracle attack was found in the way gnutls handles verification of RSA decrypted PKCS1 v1.5 data. An attacker wh...
Linux Distros Unpatched Vulnerability : CVE-2019-17595
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a heap-based buffer over-read in the fmtentry function in tinfo/comphash.c in the terminfo library in ncurses before 6.1-20191012. CVE-2019-17595 Note...
Linux Distros Unpatched Vulnerability : CVE-2017-12997
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print- lldp.c:lldpprivate8021print. CVE-2017-12997 Note that Nessus relies ...
Linux Distros Unpatched Vulnerability : CVE-2015-5602
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in...
Linux Distros Unpatched Vulnerability : CVE-2014-3528
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Subversion 1.0.0 through 1.7.x before 1.7.17 and 1.8.x before 1.8.10 uses an MD5 hash of the URL and authentication realm to store cached credentials,...
Linux Distros Unpatched Vulnerability : CVE-2013-4392
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - systemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on...
Linux Distros Unpatched Vulnerability : CVE-2017-5884
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gtk-vnc before 0.7.0 does not properly check boundaries of subrectangle-containing tiles, which allows remote servers to execute arbitrary code via the src x, y...