CBL Mariner 2.0 Security Update: libxml2 (CVE-2024-34459)

The version of libxml2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-34459 advisory. - An issue was discovered in xmllint from libxml2 before 2.11.8 and 2.12.x before 2.12.7. Formatting error...

EulerOS 2.0 SP9 : libldb (EulerOS-SA-2024-2371)

According to the versions of the libldb package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : MaxQueryDuration not honoured in Samba AD DC LDAPCVE-2021-3670 Tenable has extracted the preceding description block directly from the EulerOS libl...

EulerOS 2.0 SP9 : gtk2 (EulerOS-SA-2024-2392)

According to the versions of the gtk2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current...

CBL Mariner 2.0 Security Update: libsndfile (CVE-2022-33065)

The version of libsndfile installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-33065 advisory. - Multiple signed integers overflow in function aureadheader in src/au.c and in functions mat4open and...

SUSE SLES12 Security Update : curl (SUSE-SU-2024:3203-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3203-1 advisory. - CVE-2024-8096: OCSP stapling bypass with GnuTLS. bsc1230093 Tenable has extracted the preceding description block directly from the SUSE...

EulerOS 2.0 SP10 : libldb (EulerOS-SA-2024-2421)

According to the versions of the libldb package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : MaxQueryDuration not honoured in Samba AD DC LDAPCVE-2021-3670 Tenable has extracted the preceding description block directly from the EulerOS libl...

Fedora 40 : wolfssl (2024-ed1a50aa61)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-ed1a50aa61 advisory. RHBZ2308628 RHBZ2308629 RHBZ2308630 RHBZ2308631 fixed in 5.7.2 release Tenable has extracted the preceding description block directly from the Fedor...

openSUSE 15 Security Update : ntpd-rs (openSUSE-SU-2024:0300-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2024:0300-1 advisory. - Introducing ntpd-rs version 1.2.3 Tenable has extracted the preceding description block directly from the SUSE security advisory. Note that Nessus has...

CBL Mariner 2.0 Security Update: shim / shim-unsigned-aarch64 (CVE-2022-28737)

The version of shim / shim-unsigned-aarch64 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-28737 advisory. - There's a possible overflow in handleimage when shim tries to load and execute crafted...

EulerOS 2.0 SP9 : libldb (EulerOS-SA-2024-2396)

According to the versions of the libldb package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : MaxQueryDuration not honoured in Samba AD DC LDAPCVE-2021-3670 Tenable has extracted the preceding description block directly from the EulerOS libl...

CBL Mariner 2.0 Security Update: shim / shim-unsigned-aarch64 / shim-unsigned-x64 (CVE-2023-40548)

The version of shim / shim-unsigned-aarch64 / shim-unsigned-x64 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-40548 advisory. - A buffer overflow was found in Shim in the 32-bit system. The...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-42102)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42102 advisory. - In the Linux kernel, the following vulnerability has been resolved: Revert mm/writeback: fix possible...

CBL Mariner 2.0 Security Update: reaper (CVE-2024-42461)

The version of reaper installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42461 advisory. - In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because BER-encoded signature...

Adobe Reader < 20.005.30680 / 24.003.20112 Multiple Vulnerabilities (APSB24-70) (macOS)

The version of Adobe Reader installed on the remote macOS host is a version prior to 20.005.30680 or 24.003.20112. It is, therefore, affected by multiple vulnerabilities. - Access of Resource Using Incompatible Type 'Type Confusion' potentially leading to Arbitrary code execution CVE-2024-45112 -...

Adobe Acrobat < 2015.006.30448 / 2017.011.30099 / 2018.011.20058 Multiple Vulnerabilities (APSB18-29) (macOS)

The version of Adobe Acrobat installed on the remote macOS host is a version prior to 2015.006.30448, 2017.011.30099, or 2018.011.20058. It is, therefore, affected by multiple vulnerabilities. - Adobe Acrobat and Reader versions 2018.011.20055 and earlier, 2017.011.30096 and earlier, and...

Microsoft Power Automate For Desktop Installed (Windows)

Binary data microsoftpowerautomatefordesktopinstalled.nbin...

Zyxel NAS Web Console Detection

Binary data zyxelnaswebconsoledetect.nbin...

WordPress Plugin 'LiteSpeed Cache' < 6.5.0.1. Unauthenticated Account Takeover

The WordPress application running on the remote host has a version of the 'LiteSpeed Cache' plugin that is prior to 6.5.0.1. It is, therefore, affected by an unauthenticated account takeover vulnerability. The plugin suffers from an unauthenticated account takeover vulnerability which allows any...

Photon OS 5.0: Linux PHSA-2024-5.0-0370

An update of the linux package has been released. File data PhotonOSPHSA-2024-50-0370linux.nasl...

Fedora 40 : bluez / iwd / libell (2024-223428e702)

The remote Fedora 40 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-223428e702 advisory. libell 0.69: Add support for getting remaining microseconds left on a timer. Add support for setting link MTU on a network interface. iwd 2.21: Fix issue wit...