Juniper Junos OS Vulnerability (JSA88103)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA88103 advisory. - An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series with MPC10/MPC11/LC9600 line cards, EX9200 with...

CentOS 7 : java-1.7.1-ibm (RHSA-2022:6755)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:6755 advisory. - Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are...

CentOS 7 : etcd (RHSA-2021:1407)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:1407 advisory. - In etcd before versions 3.3.23 and 3.4.10, a large slice causes panic in decodeRecord method. The size of a record is stored in the length field of a...

CentOS 7 : kpatch-patch (RHSA-2022:0592)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0592 advisory. - In doepollctl and eploopcheckproc of eventpoll.c, there is a possible use after free due to a logic error. This could lead to local escalation of...

CentOS 7 : skopeo (RHSA-2020:1230)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1230 advisory. - The proglottis Go wrapper before 0.1.1 for the GPGME library has a use-after-free, as demonstrated by use for container image pulls by Docker or CRI-O. This...

CentOS 7 : kpatch-patch (RHSA-2020:0027)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0027 advisory. - An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the...

CentOS 7 : kpatch-patch (RHSA-2021:2285)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2285 advisory. - An issue was discovered in the Linux kernel through 5.10.11. PI futexes have a kernel stack use-after-free during fault handling, allowing local users to...

FastStone Image Viewer Installed (Windows)

Binary data faststoneimageviewerinstalled.nbin...

DeepSpeed < 0.15.1 Command Injection

The remote host contains a DeepSpeedserve version that is prior to 0.15.1. It is, therefore, affected by an arbitrary code execution vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

Google Chrome < 129.0.6668.100 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 129.0.6668.100. It is, therefore, affected by multiple vulnerabilities as referenced in the 202410stable-channel-update-for-desktop8 advisory. - Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remo...

Ubuntu 22.04 LTS : WEBrick vulnerability (USN-7057-2)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-7057-2 advisory. USN-7057-1 fixed a vulnerability in WEBrick. This update provides the corresponding updates for Ubuntu 22.04 LTS. Tenable has extracted the preceding description...

Siemens SIMATIC S7-200 SMART Devices Uncontrolled Resource Consumption (CVE-2024-43647)

Affected devices do not properly handle TCP packets with an incorrect structure. This could allow an unauthenticated remote attacker to cause a denial of service condition. To restore normal operations, the network cable of the device needs to be unplugged and re-plugged. This plugin only works...

KB5044277: Windows 10 version 1809 / Windows Server 2019 Security Update (October 2024)

The remote Windows host is missing security update 5044277. It is, therefore, affected by multiple vulnerabilities - libcurl's ASN1 parser has this utf8asn1str function used for parsing an ASN.1 UTF-8 string. Itcan detect an invalid field and return error. Unfortunately, when doing so it also...

Security Updates for Microsoft SharePoint Server 2019 (October 2024)

The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates. It is, therefore, affected by a privilage elevation vulnerability. %NASLMINLEVEL 70300 C Tenable, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid208291;...

Security Updates for Microsoft SharePoint Server 2016 (October 2024)

The Microsoft SharePoint Server 2016 installation on the remote host is missing security updates. It is, therefore, affected by a privilage elevation vulnerability. %NASLMINLEVEL 70300 C Tenable, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid208293;...

Security Updates for Microsoft Excel Products (October 2024)

The Microsoft Excel Products are missing a security update. They are, therefore, affected by a remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not tested for this issue but has instead...

Google Chrome < 129.0.6668.100 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 129.0.6668.100. It is, therefore, affected by multiple vulnerabilities as referenced in the 202410stable-channel-update-for-desktop8 advisory. - Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a...

KB5044321: Windows Server 2008 R2 Security Update (October 2024)

The remote Windows host is missing security update 5044321. It is, therefore, affected by multiple vulnerabilities - Windows Routing and Remote Access Service RRAS Remote Code Execution Vulnerability CVE-2024-38212, CVE-2024-38261, CVE-2024-38265, CVE-2024-43453, CVE-2024-43549, CVE-2024-43564,...

DeepSpeed Detection

A DeepSpeed Python library is installed on the remote host. Note that Nessus has relied upon on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'xcompat.inc'; if description scriptid208299; scriptversion"1.4";...

KB5044286: Windows 10 LTS 1507 Security Update (October 2024)

The remote Windows host is missing security update 5044286. It is, therefore, affected by multiple vulnerabilities - Remote Desktop Client Remote Code Execution Vulnerability CVE-2024-43599 - Remote Registry Service Elevation of Privilege Vulnerability CVE-2024-43532 - Microsoft WDAC OLE DB...