Django Weak Secret Key

Django applications use an application key to encrypt and sign various data, including session cookies and other sensitive information. This key is typically stored in the settings.py file and is used for multiple security-critical operations. When a weak or easily guessable application key is...

Flask Weak Secret Key

Flask applications use an application key to encrypt and sign various data, including session cookies and other sensitive information. When a weak or easily guessable application key is used, it compromises the security of the entire application. Attackers can potentially decrypt sensitive data,...

Oracle Linux 8 : python3 (ELSA-2024-6975)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6975 advisory. - Security fix for CVE-2024-6232 Resolves: RHEL-57399 - Security fix for CVE-2024-6923 Resolves: RHEL-53065 Tenable has extracted the preceding...

Apple TV < 18 Multiple Vulnerabilities (121248)

According to its banner, the version of Apple TV on the remote device is prior to 18. It is therefore affected by multiple vulnerabilities as described in the 121248 %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid207682; scriptversion"1.1";...

GLSA-202409-24 : Tor: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202409-24 Tor: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Tor. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly from the...

Cisco IOS XR Software CLI Privilege Escalation (cisco-sa-iosxr-priv-esc-CrG5vhCq)

According to its self-reported version, Cisco IOS XR is affected by a vulnerability. - A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to obtain read/write file system access on the underlying operating system of an affected device. This...

Oracle Linux 8 : nano (ELSA-2024-6986)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-6986 advisory. 2.9.8-3 - fix incomplete backport of the fix for the emergency file replacement vulnerability RHEL-35236 2.9.8-2 - fix emergency file replacement vulnerability...

Oracle Linux 9 : grafana (ELSA-2024-6947)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-6947 advisory. 9.2.10-17 - Resolves RHEL-57925: CVE-2024-34156 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

GLSA-202409-23 : ZNC: Remote Code Execution

The remote host is affected by the vulnerability described in GLSA-202409-23 ZNC: Remote Code Execution ZNC's modtcl could allow for remote code execution via a KICK. Tenable has extracted the preceding description block directly from the Gentoo Linux security advisory. Note that Nessus has not...

EulerOS 2.0 SP8 : jose (EulerOS-SA-2024-2475)

According to the versions of the jose packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : latchset jose through version 11 allows attackers to cause a denial of service CPU consumption via a large p2c aka PBES2 Count value.CVE-2023-50967...

SUSE SLES15 Security Update : qemu (SUSE-SU-2024:3396-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3396-1 advisory. - CVE-2024-4467: Fixed denial of service and file read/write via qemu-img info command bsc1227322 Tenable has extracted the preceding...

Google Chrome < 129.0.6668.70 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 129.0.6668.70. It is, therefore, affected by multiple vulnerabilities as referenced in the 202409stable-channel-update-for-desktop24 advisory. - Integer overflow in Skia in Google Chrome prior to 129.0.6668.70 allowed a...

NetApp SnapCenter Server Installed (Windows)

Binary data netappsnapcenterwininstalled.nbin...

Ruby Gem Modules Installed (Linux)

Binary data rubymodulesnixinstalled.nbin...

Ruby Gem Modules Installed (Windows)

Binary data rubymoduleswininstalled.nbin...

AI/LLM Matroid AI Detection

Binary data 701484.prm...

AI/LLM Clarifai Detection

Binary data 701485.prm...

AI/LLM IBM watsonx Detection

Binary data 701486.prm...

AI/LLM Perplexity Detection

Binary data 701489.prm...

AI/LLM Bettybot Domain Detection

Binary data 701483.prm...