RHEL 9 : buildah update (Moderate) (RHSA-2024:2550)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:2550 advisory. The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working...

RHEL 9 : fence-agents (RHSA-2024:2132)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2132 advisory. The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or...

harwoodhomeforfunerals.com Cross Site Scripting vulnerability OBB-3924957

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

mdig.com.br Cross Site Scripting vulnerability OBB-3924917

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

vakmanjanssen.nl Improper Access Control vulnerability OBB-3924895

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

universiteitsstrijd.nl Improper Access Control vulnerability OBB-3924864

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

uitvaartverzorgingspijkenisse.nl Improper Access Control vulnerability OBB-3924856

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

totaalvers.nl Improper Access Control vulnerability OBB-3924781

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

tm-opleidingen.nl Improper Access Control vulnerability OBB-3924764

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

taxioudkoog.nl Improper Access Control vulnerability OBB-3924665

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Fedora 40 : ofono (2024-c42ea059d0)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-c42ea059d0 advisory. Update to v2.5 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...

Fedora 40 : rubygem-actioncable / rubygem-actionmailbox / rubygem-actionmailer / etc (2023-28962dd58a)

The remote Fedora 40 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2023-28962dd58a advisory. Ruby on Rails security upgrade: https://rubyonrails.org/2023/8/22/Rails-Versions-7-0-7-2-6-1-7-6-have- been-released - incorrect file permissions on encrypte...

RHEL 7 : xorg-x11-server (RHSA-2024:0320)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0320 advisory. X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical use...

Fedora 40 : podman-tui (2024-831bad8f8f)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-831bad8f8f advisory. podman-tui release v1.0.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Fedora 40 : freeimage / mingw-freeimage (2024-c4d32d51c9)

The remote Fedora 40 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2024-c4d32d51c9 advisory. Add downstream fixes for CVE-2023-47995 and CVE-2023-47997. Tenable has extracted the preceding description block directly from the Fedora security...

Fedora 40 : diffoscope (2024-29ffe7d0ff)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-29ffe7d0ff advisory. Automatic update for diffoscope-257-1.fc40. Changelog Sun Feb 18 2024 Zbigniew Jdrzejewski-Szmek - 257-1 - Version 257 - Fixes rhbz2264736, CVE-2024-25711...

Fedora 40 : exim (2023-0abcfebecd)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-0abcfebecd advisory. Automatic update for exim-4.96.1-1.fc40. Changelog Mon Oct 2 2023 Jaroslav karvada - 4.96.1-1 - New version Resolves: rhbz2241735 Resolves:...

Fedora 40 : xen (2024-a46df5ba2f)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-a46df5ba2f advisory. x86: Native Branch History Injection XSA-456, CVE-2024-2201 update to xen 4.18.2, remove patches now included upstream x86 HVM hypercalls may trigge...

Fedora 40 : libwebp (2023-d5faede1d6)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-d5faede1d6 advisory. Automatic update for libwebp-1.3.1-3.fc40. Changelog Wed Sep 13 2023 Boudhayan Bhattacharya - 1.3.1-3 - Add patch for CVE-2023-4863 ref rhbz2238543 Tenable h...

Fedora 40 : python-reportlab (2024-dc844d0669)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-dc844d0669 advisory. - Release 4.2.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...