1866 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-46756
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - 2024-10-24: CVE-2024-46828 was added to this advisory. 2024-10-24: CVE-2024-46840 was added to this advisory. 2024-10-24: CVE-2024-46822 was added to this...
Linux Distros Unpatched Vulnerability : CVE-2023-52759
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - 2024-12-05: CVE-2023-52835 was added to this advisory. 2024-12-05: CVE-2023-52781 was added to this advisory. 2024-12-05: CVE-2023-52828 was added to this...
Linux Distros Unpatched Vulnerability : CVE-2022-2845
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Validation of Specified Quantity in Input in GitHub repository vim/vim prior to 9.0.0218. CVE-2022-2845 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2022-48974
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: fix using thiscpuadd in preemptible Currently in...
Linux Distros Unpatched Vulnerability : CVE-2024-43856
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dma: fix call order in dmamfreecoherent dmamfreecoherent frees a DMA allocation, which makes the freed vaddr available for reuse, then calls devresdestroy to...
Linux Distros Unpatched Vulnerability : CVE-2022-3598
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a...
Linux Distros Unpatched Vulnerability : CVE-2023-36321
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Connected Vehicle Systems Alliance COVESA up to v2.18.8 was discovered to contain a buffer overflow via the component /shared/dltcommon.c. CVE-2023-36321 Note...
Linux Distros Unpatched Vulnerability : CVE-2022-46165
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Syncthing is an open source, continuous file synchronization program. In versions prior to 1.23.5 a compromised instance with shared folders could sync maliciou...
Linux Distros Unpatched Vulnerability : CVE-2024-21142
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Privileges. Supported versions that are affected are 8.0.37 and prior and...
Linux Distros Unpatched Vulnerability : CVE-2021-44501
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, an attacker can cause calls to ZRead to crash due to...
Linux Distros Unpatched Vulnerability : CVE-2024-38828
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Spring MVC controller methods with an @RequestBody byte method parameter are vulnerable to a DoS attack. CVE-2024-38828 Note that Nessus relies on the presence ...
Linux Distros Unpatched Vulnerability : CVE-2023-24472
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A denial of service vulnerability exists in the FitsOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.7.1. A specially crafted ImageOutput...
Linux Distros Unpatched Vulnerability : CVE-2022-0235
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor CVE-2022-0235 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2023-26048
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jetty is a java based web server and servlet engine. In affected versions servlets with multipart support e.g. annotated with @MultipartConfig that call...
Linux Distros Unpatched Vulnerability : CVE-2024-36977
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: Wait unconditionally after issuing EndXfer command Currently all controller...
Linux Distros Unpatched Vulnerability : CVE-2021-3479
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There's a flaw in OpenEXR's Scanline API functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to be processed by OpenEX...
Linux Distros Unpatched Vulnerability : CVE-2023-52881
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcp: do not accept ACK of bytes we never sent This patch is based on a detailed report and ideas from Yepeng Pan and Christian Rossow. ACK seq validation is...
Linux Distros Unpatched Vulnerability : CVE-2022-4055
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When xdg-mail is configured to use thunderbird for mailto URLs, improper parsing of the URL can lead to additional headers being passed to thunderbird that shou...
Linux Distros Unpatched Vulnerability : CVE-2024-21885
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in X.Org server. In the XISendDeviceHierarchyEvent function, it is possible to exceed the allocated array length when certain new device IDs ar...
Linux Distros Unpatched Vulnerability : CVE-2024-47777
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been identified in the gstwavparsesmplchunk function...