2346 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-16222
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WordPress before 5.2.3 has an issue with URL sanitization in wpksesbadprotocolonce in wp- includes/kses.php that can lead to cross-site scripting XSS attacks...
Linux Distros Unpatched Vulnerability : CVE-2018-4261
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2,...
Linux Distros Unpatched Vulnerability : CVE-2017-9129
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The wavopenread function in frontend/input.c in Freeware Advanced Audio Coder FAAC 1.28 allows remote attackers to cause a denial of service large loop via a...
Linux Distros Unpatched Vulnerability : CVE-2015-8234
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The image signature algorithm in OpenStack Glance 11.0.0 allows remote attackers to bypass the signature verification process via a crafted image, which trigger...
Linux Distros Unpatched Vulnerability : CVE-2018-4284
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A type confusion issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2,...
Linux Distros Unpatched Vulnerability : CVE-2018-17231
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Telegram Desktop aka tdesktop 1.3.14 might allow attackers to cause a denial of service assertion failure and application exit via an Edit color palette search...
Linux Distros Unpatched Vulnerability : CVE-2017-5659
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Traffic Server before 6.2.1 generates a coredump when there is a mismatch between content length and chunked encoding. CVE-2017-5659 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2016-9581
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An infinite loop vulnerability in tiftoimage that results in heap buffer overflow in convert32sC1P1 was found in openjpeg 2.1.2. CVE-2016-9581 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2019-9187
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ikiwiki before 3.20170111.1 and 3.2018x and 3.2019x before 3.20190228 allows SSRF via the aggregate plugin. The impact also includes reading local files via fil...
Linux Distros Unpatched Vulnerability : CVE-2014-10064
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The qs module before 1.0.0 does not have an option or default for specifying object depth and when parsing a string representing a deeply nested object will blo...
Linux Distros Unpatched Vulnerability : CVE-2017-12626
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache POI in versions prior to release 3.17 are vulnerable to Denial of Service Attacks: 1 Infinite Loops while parsing crafted WMF, EMF, MSG and macros POI bu...
Linux Distros Unpatched Vulnerability : CVE-2018-11797
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache PDFBox 1.8.0 to 1.8.15 and 2.0.0RC1 to 2.0.11, a carefully crafted PDF file can trigger an extremely long running computation when parsing the page...
Linux Distros Unpatched Vulnerability : CVE-2008-7315
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - UI-Dialog 1.09 and earlier allows remote attackers to execute arbitrary commands. CVE-2008-7315 Note that Nessus relies on the presence of the package as report...
Linux Distros Unpatched Vulnerability : CVE-2014-10073
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The createresponse function in server/server.c in Psensor before 1.1.4 allows Directory Traversal because it lacks a check for whether a file is under the...
Linux Distros Unpatched Vulnerability : CVE-2016-9117
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NULL Pointer Access in function imagetopnm of convert.cjp2:1289 in OpenJPEG 2.1.2. Impact is Denial of Service. Someone must open a crafted j2k file...
Linux Distros Unpatched Vulnerability : CVE-2019-14535
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a...
Linux Distros Unpatched Vulnerability : CVE-2019-2867
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and...
Linux Distros Unpatched Vulnerability : CVE-2019-2525
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are prior to 5.2.24 and...
Linux Distros Unpatched Vulnerability : CVE-2017-9105
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in adns before 1.5.2. It corrupts a pointer when a nameserver speaks first because of a wrong number of pointer dereferences. This bug m...
Linux Distros Unpatched Vulnerability : CVE-2019-2865
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and...