openSUSE 15 Security Update : htmldoc (openSUSE-SU-2024:0303-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2024:0303-1 advisory. - CVE-2024-45508: Fixed an out-of-bounds write in parseparagraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only...

Amazon Linux AMI : microcode_ctl (ALAS-2024-1946)

The version of microcodectl installed on the remote host is prior to 2.1-47.43. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1946 advisory. Improper isolation in some IntelR Processors stream cache mechanism may allow an authenticated user to potentially enable...

Photon OS 3.0: Python3 PHSA-2024-3.0-0795

An update of the python3 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-3.0-0795. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Google Chrome < 129.0.6668.58 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 129.0.6668.58. It is, therefore, affected by multiple vulnerabilities as referenced in the 202409stable-channel-update-for-desktop17 advisory. - Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.58...

Schneider Electric Accutech Manager Stack Exhaustion (CVE-2024-6918)

Binary data schneiderelectricaccutechmanagercve-2024-6918.nbin...

Photon OS 4.0: Linux PHSA-2024-4.0-0694

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-4.0-0694. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Ubuntu 24.04 LTS : xmltok library vulnerabilities (USN-7001-2)

The remote Ubuntu 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7001-2 advisory. USN-7001-1 fixed vulnerabilities in xmltol library. This update provides the corresponding updates for Ubuntu 24.04 LTS. Tenable has extracted the...

TeamViewer < 15.51.5 Improper Privilege Management (tv-2024-1001)

The version of TeamViewer Client installed on the remote host is prior to 15.51.5. It is, therefore, affected by an improper privilege management vulnerability. Improper initialization of default settings in TeamViewer Remote Client prior version 15.51.5 for Windows, Linux and macOS, allow a low...

Ubuntu 22.04 LTS : Expat vulnerabilities (USN-7000-2)

The remote Ubuntu 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7000-2 advisory. USN-7000-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for Ubuntu 22.04 LTS. Tenable has extracted the preceding...

Apple iOS < 18 Multiple Vulnerabilities (121250)

Binary data appleios18check.nbin...

Apple iOS < 17.7 Multiple Vulnerabilities (121246)

Binary data appleios177check.nbin...

Rocky Linux 9 : dovecot (RLSA-2024:6529)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:6529 advisory. dovecot: using a large number of address headers may trigger a denial of service CVE-2024-23184 dovecot: very large headers can cause resource exhaustio...

macOS 13.x < 13.7 Multiple Vulnerabilities (121234)

The remote host is running a version of macOS / Mac OS X that is 13.x prior to 13.7. It is, therefore, affected by multiple vulnerabilities: - A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, visionOS 2, iOS 18 and iPadOS 18,...

Amazon Linux 2023 : microcode_ctl (ALAS2023-2024-716)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-716 advisory. 2024-09-26: CVE-2024-22374 was added to this advisory. Improper isolation in some IntelR Processors stream cache mechanism may allow an authenticated user to potentially enable escalation of...

macOS 14.x < 14.7 Multiple Vulnerabilities (121247)

The remote host is running a version of macOS / Mac OS X that is 14.x prior to 14.7. It is, therefore, affected by multiple vulnerabilities: - A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, visionOS 2, iOS 18 and iPadOS 18,...

Rocky Linux 8 : postgresql:16 (RLSA-2024:5927)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:5927 advisory. postgresql: PostgreSQL pgstatsext and pgstatsextexprs lack authorization checks CVE-2024-4317 postgresql: PostgreSQL relation replacement during pgdump...

Rocky Linux 9 : nodejs:18 (RLSA-2024:6147)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:6147 advisory. node-tar: denial of service while parsing a tar file due to lack of folders depth validation CVE-2024-28863 nodejs: Bypass network import restriction vi...

Rocky Linux 9 : postgresql:16 (RLSA-2024:5929)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:5929 advisory. postgresql: PostgreSQL pgstatsext and pgstatsextexprs lack authorization checks CVE-2024-4317 postgresql: PostgreSQL relation replacement during pgdump...

Ubuntu 16.04 LTS : OpenSSH vulnerability (USN-6560-3)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6560-3 advisory. USN-6560-2 fixed a vulnerability in OpenSSH. This update provides the corresponding update for Ubuntu 16.04 LTS. Tenable has extracted the preceding description...

SUSE SLES15 : Recommended update for google-cloud SDK (SUSE-SU-SUSE-RU-2024:1637-3)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-SUSE-RU-2024:1637-3 advisory. - Add python311 cloud services packages and dependencies jscPED-7987, jscPED-6697 - Bellow 5 binaries Obsolete the python3.6...