2341 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-6405
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap, greenmap, and bluemap variable can be overwritten by a new pointer. Th...
Linux Distros Unpatched Vulnerability : CVE-2020-27304
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The CivetWeb web library does not validate uploaded filepaths when running on an OS other than Windows, when using the built-in HTTP form-based file upload...
Linux Distros Unpatched Vulnerability : CVE-2016-0718
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Expat allows context-dependent attackers to cause a denial of service crash or possibly execute arbitrary code via a malformed input document, which triggers a...
Linux Distros Unpatched Vulnerability : CVE-2016-5096
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the fread function in ext/standard/file.c in PHP before 5.5.36 and 5.6.x before 5.6.22 allows remote attackers to cause a denial of service ...
Linux Distros Unpatched Vulnerability : CVE-2019-6977
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gdImageColorMatch in gdcolormatch.c in the GD Graphics Library aka LibGD 2.2.5, as used in the imagecolormatch function in PHP before 5.6.40, 7.x before 7.1.26,...
Linux Distros Unpatched Vulnerability : CVE-2017-7614
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - elflink.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a member access within null pointer undefined behavior...
Linux Distros Unpatched Vulnerability : CVE-2021-30151
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used. CVE-2021-30151 Note that Ness...
Linux Distros Unpatched Vulnerability : CVE-2019-0227
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Server Side Request Forgery SSRF vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. Security and bug commits commits...
Linux Distros Unpatched Vulnerability : CVE-2016-5357
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which...
Linux Distros Unpatched Vulnerability : CVE-2017-7302
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a swapstdrelocout function in bfd/aoutx.h that is vulnerable to an...
Linux Distros Unpatched Vulnerability : CVE-2019-10247
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Eclipse Jetty version 7.x, 8.x, 9.2.27 and older, 9.3.26 and older, and 9.4.16 and older, the server running on any OS and Jetty version combination will...
Linux Distros Unpatched Vulnerability : CVE-2018-2665
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Optimizer. Supported versions that are affected are 5.5.58 and prior, 5.6.38 a...
Linux Distros Unpatched Vulnerability : CVE-2019-11724
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Application permissions give additional remote troubleshooting permission to the site input.mozilla.org, which has been retired and now redirects to another sit...
Linux Distros Unpatched Vulnerability : CVE-2015-4022
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the ftpgenlist function in ext/ftp/ftp.c in PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 allows remote FTP servers to...
Linux Distros Unpatched Vulnerability : CVE-2014-8502
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in the peprintedata function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service...
Linux Distros Unpatched Vulnerability : CVE-2013-6501
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default soap.wsdlcachedir setting in 1 php.ini-production and 2 php.ini-development in PHP through 5.6.7 specifies the /tmp directory, which makes it easier...
Linux Distros Unpatched Vulnerability : CVE-2017-5953
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory...
Linux Distros Unpatched Vulnerability : CVE-2017-15422
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in international date handling in International Components for Unicode ICU for C/C++ before 60.1, as used in V8 in Google Chrome prior to...
Linux Distros Unpatched Vulnerability : CVE-2019-7665
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In elfutils 0.175, a heap-based buffer over-read was discovered in the function elf32xlatetom in elf32xlatetom.c in libelf. A crafted ELF input can cause a...
Linux Distros Unpatched Vulnerability : CVE-2019-19906
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cyrus-sasl aka Cyrus SASL 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of- service in OpenLDAP via a malformed LDAP packet. The...