27946 matches found
CVE-2024-47121
creationtimestamp| type| source ---|---|--- 2024-09-26 21:21:25+00:00| seen| https://t.me/cvedetector/6455 2025-05-02 17:16:47+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14540...
AlmaLinux 8 : kernel-rt (ALSA-2024:7001)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:7001 advisory. CVE-2023-6040 CVE-2024-26595 CVE-2021-46984 CVE-2023-52478 CVE-2023-52476 CVE-2023-52522 CVE-2021-47101 CVE-2021-47097 CVE-2023-52605 CVE-2024-26645...
AlmaLinux 8 : emacs (ALSA-2024:6987)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:6987 advisory. emacs: Gnus treats inline MIME contents as trusted CVE-2024-30203 emacs: Org mode considers contents of remote files to be trusted CVE-2024-30205 emacs:...
SUSE SLES12 Security Update : python36 (SUSE-SU-2024:3293-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3293-1 advisory. - CVE-2024-7592: quadratic complexity when parsing cookies with backslashes. bsc1229596 - CVE-2024-6923: email header injection due...
Oracle Linux 9 : fence-agents (ELSA-2024-6726)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-6726 advisory. 4.10.0-62.5 - bundled setuptools: fix CVE-2024-6345 Resolves: RHEL-49657 Tenable has extracted the preceding description block directly from the Oracle Linux...
openSUSE 15 Security Update : gstreamer-plugins-bad (openSUSE-SU-2024:0305-1)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0305-1 advisory. Adding references for already fixed vulnerability: - CVE-2023-50186: Fixed heap-based buffer overflow in the AV1 codec parser ZDI-CAN-22300,...
RHEL 8 : thunderbird (RHSA-2024:6721)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:6721 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: thunderbird: 115.15/128.2 mozilla: Type confusion when lookin...
openSUSE 15 Security Update : htmldoc (openSUSE-SU-2024:0303-1)
The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2024:0303-1 advisory. - CVE-2024-45508: Fixed an out-of-bounds write in parseparagraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only...
openSUSE 15 Security Update : htmldoc (openSUSE-SU-2024:0304-1)
The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2024:0304-1 advisory. - CVE-2024-45508: Fixed an out-of-bounds write in parseparagraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only...
CVE-2024-45799
creationtimestamp| type| source ---|---|--- 2024-09-16 22:03:09+00:00| seen| https://t.me/cvedetector/5755...
Rocky Linux 9 : nodejs:18 (RLSA-2024:6147)
The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:6147 advisory. node-tar: denial of service while parsing a tar file due to lack of folders depth validation CVE-2024-28863 nodejs: Bypass network import restriction vi...
CVE-2024-6867
creationtimestamp| type| source ---|---|--- 2024-09-13 19:38:21+00:00| seen| https://t.me/cvedetector/5626...
PT-2024-37490
Name of the Vulnerable Software and Affected Versions: Bluetooth affected versions not specified Description: The Bluetooth HCI has an issue with improper discarding in adv ext report. This issue affects the Bluetooth protocol. There is no information available about the estimated number of...
Security Updates for Microsoft Office Online Server (September 2024)
The Microsoft Office Web Apps installation on the remote host is missing a security update. It is, therefore, affected by the following: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2024-43465 Note that Nessus has not tested for this iss...
Fedora 40 : wireshark (2024-105eb3026f)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-105eb3026f advisory. New version 4.2.7, fix for CVE-2024-8250 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...
CVE-2024-42423
creationtimestamp| type| source ---|---|--- 2024-09-10 18:25:14+00:00| seen| https://t.me/cvedetector/5244...
NewStart CGSL MAIN 6.02 : libssh Multiple Vulnerabilities (NS-SA-2024-0052)
The remote NewStart CGSL host, running version MAIN 6.02, has libssh packages installed that are affected by multiple vulnerabilities: - The RANDbytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the state of the OpenSSL pseudo-random number generator PRNG,...
NewStart CGSL MAIN 6.02 : qemu Vulnerability (NS-SA-2024-0057)
The remote NewStart CGSL host, running version MAIN 6.02, has qemu packages installed that are affected by a vulnerability: - A flaw was found in the QEMU virtual crypto device while handling data encryption/decryption requests in virtiocryptohandlesymreq. There is no check for the value of srcle...
NewStart CGSL MAIN 6.02 : grub2 Multiple Vulnerabilities (NS-SA-2024-0068)
The remote NewStart CGSL host, running version MAIN 6.02, has grub2 packages installed that are affected by multiple vulnerabilities: - A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with the wrong permission set allowing non privileged users to read i...
PT-2024-6277 · Microsoft · Sharepoint Server
Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server affected versions not specified Description: The issue is related to insufficient input validation in Microsoft SharePoint Server, allowing remote attackers to execute arbitrary code. This can affect the system. Th...