Versa Director Installed (Linux)

Binary data versadirectornixinstalled.nbin...

AI/LLM Claude Sonnet API Detection

Binary data 701487.prm...

AI/LLM Google Gemini API Detection

Binary data 701488.prm...

Fedora 40 : xen (2024-a5861bce91)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-a5861bce91 advisory. update to xen-4.18.3 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for th...

AlmaLinux 9 : golang (ALSA-2024:6913)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:6913 advisory. net/http: Denial of service due to improper 100-continue handling in net/http CVE-2024-24791 go/parser: golang: Calling any of the Parse functions...

AlmaLinux 8 : go-toolset:rhel8 (ALSA-2024:6908)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:6908 advisory. net/http: Denial of service due to improper 100-continue handling in net/http CVE-2024-24791 go/parser: golang: Calling any of the Parse functions...

Oracle Linux 8 : python3.11 (ELSA-2024-6962)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6962 advisory. - Security fix for CVE-2024-8088 Resolves: RHEL-55934 - Security fix for CVE-2024-6923 Resolves: RHEL-53089 Tenable has extracted the preceding...

Photon OS 5.0: Runc PHSA-2024-5.0-0375

An update of the runc package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-5.0-0375. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

FreeBSD : frr - BGP (802961eb-7a89-11ef-bdd7-a0423f48a938)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 802961eb-7a89-11ef-bdd7-a0423f48a938 advisory. [email protected] reports: An issue was discovered in FRRouting FRR. bgpattrencap in bgpd/bgpattr.c does no...

AlmaLinux 8 : python3.12 (ALSA-2024:6961)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:6961 advisory. python: incorrect IPv4 and IPv6 private ranges CVE-2024-4032 cpython: python: email module doesn't properly quotes newlines in email headers, allowing...

AlmaLinux 8 : gtk3 (ALSA-2024:6963)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:6963 advisory. gtk3: gtk2: Library injection from CWD CVE-2024-6655 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory. Note that...

Siemens Third Party Component in SICAM products Copy without Checking Size of Input (CVE-2024-34057)

Triangle Microworks TMW IEC 61850 Client source code libraries before 12.2.0 lack a buffer size check when processing received messages. The resulting buffer overflow can cause a crash, resulting in a denial of service. This plugin only works with Tenable.ot. Please visit...

Photon OS 5.0: Linux PHSA-2024-5.0-0376

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-5.0-0376. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

SUSE SLES12 Security Update : python36 (SUSE-SU-2024:3430-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3430-1 advisory. - CVE-2024-6232: excessive backtracking when parsing tarfile headers leads to ReDoS. bsc1230227 Tenable has extracted the preceding...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : xen (SUSE-SU-2024:3421-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3421-1 advisory. - CVE-2024-45817: Fixed a deadlock in vlapicerror XSA-462, bsc1230366 Tenable has extracted the preceding...

Oracle Linux 8 : python3.12 (ELSA-2024-6961)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6961 advisory. - Security fix for CVE-2024-8088 Resolves: RHEL-55939 - Security fix for CVE-2024-6923 Resolves: RHEL-53075 Tenable has extracted the preceding...

AlmaLinux 8 : python3.11 (ALSA-2024:6962)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:6962 advisory. python: incorrect IPv4 and IPv6 private ranges CVE-2024-4032 cpython: python: email module doesn't properly quotes newlines in email headers, allowing...

Pyramid Weak Secret Key

Pyramid applications use an application key to encrypt and sign various data, including session cookies and other sensitive information. This key is typically stored in an environment variable and is used for multiple security-critical operations. When a weak or easily guessable application key i...

Laravel Weak Secret Key

Laravel applications use an application key to encrypt and sign various data, including session cookies and other sensitive information. This key is typically stored in the .env file and is used for multiple security-critical operations. When a weak or easily guessable application key is used, it...

Ruby On Rails Weak Secret Key

Ruby On Rails applications use an application key to encrypt and sign various data, including session cookies and other sensitive information. This key is typically stored in the .env file and is used for multiple security-critical operations. When a weak or easily guessable application key is...