27946 matches found
CVE-2024-40867
creationtimestamp| type| source ---|---|--- 2024-10-28 21:24:10+00:00| seen| None...
CVE-2024-38821
creationtimestamp| type| source ---|---|--- 2024-10-28 09:28:03+00:00| seen| https://t.me/cvedetector/9093 2024-10-29 05:03:03+00:00| seen| https://t.me/CyberBulletin/26249 2024-10-29 05:03:03+00:00| seen| https://t.me/CyberBulletin/1305 2025-01-23 13:31:51+00:00| seen|...
Cisco Adaptive Security Appliance Software SSH Remote Command Injection Vulnerability (cisco-sa-asa-ssh-rce-gRAuPEUF)
A vulnerability in the SSH subsystem of Cisco Adaptive Security Appliance ASA Software could allow an authenticated, remote attacker to execute operating system commands as root. This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by...
NuGet Package 'Betalgo.OpenAI' Detection
The remote host has a 'Betalgo.OpenAI' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...
SonicWall Connect Tunnel Multiple Vulnerabilities (SNWLID-2024-0017)
According to its self-reported version, the remote installed SMA1000 Connect Tunnel client is vulnerable to a number of vulnerabilities: - The Improper link resolution before file access 'Link Following' vulnerability in SonicWall Connect Tunnel version 12.4.3.271 and earlier of Windows client...
FreeBSD : electron32 -- multiple vulnerabilities (cc068959-ce2b-42eb-81ed-055551fe0e51)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the cc068959-ce2b-42eb-81ed-055551fe0e51 advisory. Electron developers report: This update fixes the following vulnerabilities: Tenable has...
Fedora 40 : rust-pyo3 / rust-pyo3-build-config / rust-pyo3-ffi / etc (2024-23292e9f6d)
The remote Fedora 40 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-23292e9f6d advisory. Update pyo3 to version 0.22.4. This version addresses a potential use-after-free RUSTSEC-2024-0378. Tenable has extracted the preceding description block...
Adobe Dimension < 3.4.3 Arbitrary code execution (APSB21-40) (macOS)
The version of Adobe Dimension installed on the remote macOS host is prior to 3.4.3. It is, therefore, affected by a vulnerability as referenced in the APSB21-40 advisory. - Adobe Dimension version 3.4 and earlier is affected by an Uncontrolled Search Path Element element. An unauthenticated...
CVE-2024-49868
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix a NULL pointer dereference when failed to start a new trasacntion BUG Syzbot reported a NULL pointer dereference with the following crash: FAULTINJECTION: forcing a failure. starttransaction+0x830/0x1670...
CVE-2024-49912
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Handle null 'streamstatus' in 'planeschangedforexistingstream' This commit adds a null check for 'streamstatus' in the function 'planeschangedforexistingstream'. Previously, the code assumed 'streamstatus' could ...
Adobe After Effects < 17.1.3 Multiple Arbitrary Code Execution (APSB20-62) (macOS)
The version of Adobe After Effects installed on the remote macOS host is prior to 17.1.3. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB20-62 advisory. - Adobe After Effects version 17.1.1 and earlier for Windows is affected by an uncontrolled search path...
Adobe InDesign 16.0.0 < 16.4.1 Multiple Vulnerabilities (APSB22-05)
The version of Adobe InDesign installed on the remote Windows host is prior to 16.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB22-05 advisory. - Adobe InDesign version 16.4 and earlier is affected by an out-of-bounds write vulnerability that could result in...
Adobe InCopy 16.0 < 16.4.0 Multiple Vulnerabilities (APSB21-71)
The version of Adobe InCopy installed on the remote host is prior to 16.4.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB21-71 advisory. - Adobe InCopy version 11.1 and earlier is affected by a memory corruption vulnerability due to insecure handling of a...
Adobe Creative Cloud < 4.0.0.185 Multiple Vulnerabilities (APSB17-13)
The version of Adobe Creative Cloud installed on the remote Windows host is prior to 4.0.0.185. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB17-13 advisory. - Adobe Thor versions 3.9.5.353 and earlier have a vulnerability related to the use of improper resource...
Adobe Animate 21.x < 21.0.7 Multiple Vulnerabilities (APSB21-50)
The version of Adobe Animate installed on the remote macOS or Mac OS X host is prior to 21.0.7. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb21-50 advisory. - Adobe Animate version 21.0.6 and earlier is affected by an Out-of-bounds Read vulnerability. An...
Adobe Media Encoder < 14.0 Multiple Vulnerabilities (APSB19-52)
The version of Adobe Media Encoder installed on the remote Windows host is prior to 14.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB19-52 advisory. - Adobe Media Encoder versions 13.1 and earlier have an out-of-bounds write vulnerability. Successful...
FreeBSD : oauth2-proxy -- multiple vulnerabilities (dbe8c5bd-8d3f-11ef-8d2e-a04a5edf46d9)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the dbe8c5bd-8d3f-11ef-8d2e-a04a5edf46d9 advisory. The oauth2-proxy project reports: Vulnerabilities have been addressed: Tenable has extracted t...
Oracle Linux 7 : edk2 (ELSA-2024-12793)
The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-12793 advisory. - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division- By-Zero due to a UNIT32 overflow via local...
Atlassian Confluence 8.6.x < 8.9.3 Cross-Site Scripting
According to its self-reported version number, the Atlassian Confluence application running on the remote host is prior to 7.19.25, 7.20.x prior to 8.5.11 or 8.6.x prior to 8.9.3. It is, therefore, affected by a stored Cross-Site Scripting XSS vulnerability which allows an authenticated attacker ...
Adobe Premiere Pro < 14.3 Multiple Arbitrary Code Execution (APSB20-38) (macOS)
The version of Adobe Premiere Pro installed on the remote macOS host is prior to 14.3. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB20-38 advisory. - Adobe Premiere Pro versions 14.2 and earlier have an out-of-bounds write vulnerability. Successful exploitation...