1625 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-57966
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libarchiveplugin.cpp in KDE ark before 24.12.0 can extract to an absolute path from an archive. CVE-2024-57966 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2024-7255
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds read in WebTransport in Google Chrome prior to 127.0.6533.88 allowed a remote attacker to potentially perform out of bounds memory access via a...
Linux Distros Unpatched Vulnerability : CVE-2024-50602
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libexpat before 2.6.4. There is a crash within the XMLResumeParser function because XMLStopParser can stop/suspend an unstarted parse...
Linux Distros Unpatched Vulnerability : CVE-2018-7173
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding...
Linux Distros Unpatched Vulnerability : CVE-2024-50047
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in async decryption Doing an async decryption large read crashes with a...
Linux Distros Unpatched Vulnerability : CVE-2018-18454
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CCITTFaxStream::readRow in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted pdf file, as...
Linux Distros Unpatched Vulnerability : CVE-2023-4752
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use After Free in GitHub repository vim/vim prior to 9.0.1858. CVE-2023-4752 Note that Nessus relies on the presence of the package as reported by the vendor...
Linux Distros Unpatched Vulnerability : CVE-2024-23271
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A logic issue was addressed with improved checks. This issue is fixed in Safari 17.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, tvOS 17.3, watchOS 10.3. A...
Linux Distros Unpatched Vulnerability : CVE-2021-37533
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Prior to Apache Commons Net 3.9.0, Net's FTP client trusts the host from PASV response by default. A malicious server can redirect the Commons Net code to use a...
Linux Distros Unpatched Vulnerability : CVE-2021-31162
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the standard library in Rust before 1.52.0, a double free can occur in the Vec::fromiter function if freeing the element panics. CVE-2021-31162 Note that...
Linux Distros Unpatched Vulnerability : CVE-2023-52522
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: fix possible store tearing in neighperiodicwork While looking at a related syzbot report involving neighperiodicwork, I found that I forgot to add an...
Linux Distros Unpatched Vulnerability : CVE-2024-2881
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Fault Injection vulnerability in wced25519signmsg function in wolfssl/wolfcrypt/src/ed25519.c in WolfSSL wolfssl5.6.6 on Linux/Windows allows remote attacker...
Linux Distros Unpatched Vulnerability : CVE-2021-40812
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The GD Graphics Library aka LibGD through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks. CVE-2021-408...
Linux Distros Unpatched Vulnerability : CVE-2023-42794
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incomplete Cleanup vulnerability in Apache Tomcat. The internal fork of Commons FileUpload packaged with Apache Tomcat 9.0.70 through 9.0.80 and 8.5.85 through...
Linux Distros Unpatched Vulnerability : CVE-2023-3111
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use after free vulnerability was found in preparetorelocate in fs/btrfs/relocation.c in btrfs in the Linux Kernel. This possible flaw can be triggered by...
Linux Distros Unpatched Vulnerability : CVE-2023-39319
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The html/template package does not apply the proper rules for handling occurrences of contexts. This may cause the template parser to improperly consider script...
Linux Distros Unpatched Vulnerability : CVE-2023-38060
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Input Validation vulnerability in the ContentType parameter for attachments on TicketCreate or TicketUpdate operations of the OTRS Generic Interface...
Linux Distros Unpatched Vulnerability : CVE-2023-38283
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In OpenBGPD before 8.1, incorrect handling of BGP update data length of path attributes set by a potentially distant remote actor may cause the system to...
Linux Distros Unpatched Vulnerability : CVE-2023-31346
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Failure to initialize memory in SEV Firmware may allow a privileged attacker to access stale data from other guests. CVE-2023-31346 Note that Nessus relies on t...
Linux Distros Unpatched Vulnerability : CVE-2024-35946
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: rtw89: fix null pointer access when abort scan During cancel scan we might use vif that weren't scanning. Fix this by using the actual scanning vif...