58876 matches found
CBL Mariner 2.0 Security Update: ruby (CVE-2024-27281)
The version of ruby installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27281 advisory. - An issue was discovered in RDoc 6.3.3 through 6.6.2, as distributed in Ruby 3.x through 3.3.0. When parsing...
SUSE SLES12: libodbc2 / libodbc2-32bit / unixODBC / unixODBC-32bit / etc (SUSE-SU-2024:2978-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:2978-1 advisory. - CVE-2024-1013: Fixed out of bounds stack write due to pointer-to-integer types conversion on 64-bit architectures bsc1228143 Tenable has...
Rocky Linux 8 : httpd:2.4 (RLSA-2024:5193)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:5193 advisory. httpd: Security issues via?backend applications whose response headers are malicious or exploitable CVE-2024-38476 Tenable has extracted the preceding descriptio...
EulerOS 2.0 SP12 : mod_http2 (EulerOS-SA-2024-2244)
According to the versions of the modhttp2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to generate an informative HTTP 413 response. If a clien...
Acronis Cyber Infrastructure Service Detection
Binary data acroniscyberinfrastructureservicedetect.nbin...
Apache OFBiz Path Traversal (CVE-2024-32113)
Binary data apacheofbizcve-2024-32113.nbin...
Johnson Controls ExacqVision Web Server Installed (Linux)
Binary data johnsoncontrolsexacqvisionwebservernixinstalled.nbin...
RHEL 8 : kpatch-patch-4_18_0-553 (RHSA-2024:5522)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:5522 advisory. This is a kernel live patch module which can be loaded by the kpatch command line utility to modify the code of a running kernel. This patch...
EulerOS Virtualization 2.11.0 : mod_http2 (EulerOS-SA-2024-2196)
According to the versions of the modhttp2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to generate an informative HTTP 413...
EulerOS 2.0 SP12 : gnutls (EulerOS-SA-2024-2237)
According to the versions of the gnutls packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to verify a specially crafted .pem bundle using the...
EulerOS 2.0 SP12 : expat (EulerOS-SA-2024-2235)
According to the versions of the expat package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers created via...
WordPress Plugin 'GiveWP - Donation Plugin and Fundraising Platform' < 3.14.2 RCE
The WordPress application running on the remote host has a version of the 'GiveWP - Donation Plugin and Fundraising Platform' plugin that is prior to 3.14.2. It is, therefore, affected by a remote code execution vulnerability. Deserialization of malicious PHP objects injected through the...
EulerOS Virtualization 2.11.0 : expat (EulerOS-SA-2024-2191)
According to the versions of the expat package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers created via...
CBL Mariner 2.0 Security Update: bind / dhcp (CVE-2024-1737)
The version of bind / dhcp installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1737 advisory. - Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same...
CBL Mariner 2.0 Security Update: bind / dhcp (CVE-2024-1975)
The version of bind / dhcp installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1975 advisory. - If a server hosts a zone containing a KEY Resource Record, or a resolver DNSSEC-validates a KEY Resource...
EulerOS Virtualization 2.10.1 : sssd (EulerOS-SA-2024-2149)
According to the versions of the sssd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to...
CBL Mariner 2.0 Security Update: bind (CVE-2024-4076)
The version of bind installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4076 advisory. - Client queries that trigger serving stale data and that also require lookups in local authoritative zone data M...
Apple iTunes < 12.12.9 Multiple Vulnerabilities (uncredentialed check)
The version of Apple iTunes installed on the remote Windows host is prior to 12.12.9. It is, therefore, affected by multiple vulnerabilities as referenced in the HT213763 advisory. - A logic issue was addressed with improved checks. This issue is fixed in iTunes 12.12.9 for Windows. An app may be...
CBL Mariner 2.0 Security Update: xorg-x11-server (CVE-2024-31083)
The version of xorg-x11-server installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-31083 advisory. - A use-after-free vulnerability was found in the ProcRenderAddGlyphs function of Xorg servers. This...
CBL Mariner 2.0 Security Update: libtiff (CVE-2024-7006)
The version of libtiff installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-7006 advisory. - A null pointer dereference flaw was found in Libtiff via tifdirinfo.c. This issue May allow an attacker to...