1626 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-14155
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libpcre in PCRE before 8.44 allows an integer overflow via a large number after a ?C substring. CVE-2020-14155 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2018-14952
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mail message display page in SquirrelMail through 1.4.22 has XSS via a maction xlink:href= attack. CVE-2018-14952 Note that Nessus relies on the presence of...
Linux Distros Unpatched Vulnerability : CVE-2016-9559
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - coders/tiff.c in ImageMagick before 7.0.3.7 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted image...
Linux Distros Unpatched Vulnerability : CVE-2020-14402
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds access via encodings. CVE-2020-14402 Note that Nessus relies on...
Linux Distros Unpatched Vulnerability : CVE-2017-9153
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the pnmloadrawpbm function in input-pnm.c:391:13. CVE-2017-9153 Note that Nessus relies o...
Linux Distros Unpatched Vulnerability : CVE-2014-3560
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NetBIOS name services daemon nmbd in Samba 4.0.x before 4.0.21 and 4.1.x before 4.1.11 allows remote attackers to execute arbitrary code via unspecified vectors...
Linux Distros Unpatched Vulnerability : CVE-2017-7995
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xen PV guest before Xen 4.3 checked access permissions to MMIO ranges only after accessing them, allowing host PCI device space memory reads, leading to...
Linux Distros Unpatched Vulnerability : CVE-2020-14422
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes, which might allow a remote attacker to...
Linux Distros Unpatched Vulnerability : CVE-2015-4826
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect confidentiality via unkno...
Linux Distros Unpatched Vulnerability : CVE-2013-1681
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in the nsContentUtils::RemoveScriptBlocker function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird...
Linux Distros Unpatched Vulnerability : CVE-2015-2756
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict access to PCI command registers, which might allow local HVM guest users to cause a denial ...
Linux Distros Unpatched Vulnerability : CVE-2016-1585
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In all versions of AppArmor mount rules are accidentally widened when compiled. CVE-2016-1585 Note that Nessus relies on the presence of the package as reported...
Linux Distros Unpatched Vulnerability : CVE-2017-15193
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the MBIM dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-mbim.c by...
Linux Distros Unpatched Vulnerability : CVE-2017-5979
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The prescanentry function in fseeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted Z...
Linux Distros Unpatched Vulnerability : CVE-2017-3169
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, modssl may dereference a NULL pointer when third-party modules call aphookprocessconnection during ...
Linux Distros Unpatched Vulnerability : CVE-2017-7957
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - XStream through 1.4.9, when a certain denyTypes workaround is not used, mishandles attempts to create an instance of the primitive type 'void' during...
Linux Distros Unpatched Vulnerability : CVE-2016-7478
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Zend/zendexceptions.c in PHP, possibly 5.x before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service infinite loop via a crafted...
Linux Distros Unpatched Vulnerability : CVE-2016-6263
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The stringpreputf8nfkcnormalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service out-of-bounds read...
Linux Distros Unpatched Vulnerability : CVE-2021-22573
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The vulnerability is that IDToken verifier does not verify if token is properly signed. Signature verification makes sure that the token's payload comes from...
Linux Distros Unpatched Vulnerability : CVE-2017-11750
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 allows remote attackers to cause a denial of service NULL pointer dereference vi...