CBL Mariner 2.0 Security Update: clamav (CVE-2022-48579)

The version of clamav installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-48579 advisory. - UnRAR before 6.2.3 allows extraction of files outside of the destination folder via symlink chains...

CBL Mariner 2.0 Security Update: cert-manager / cf-cli / docker-buildx / erlang / kubernetes / kubevirt (CVE-2023-48795)

The version of cert-manager / cf-cli / docker-buildx / erlang / kubernetes / kubevirt installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-48795 advisory. - The SSH transport protocol with certain...

CBL Mariner 2.0 Security Update: libdb (CVE-2020-2981)

The version of libdb installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-2981 advisory. - Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Pri...

CBL Mariner 2.0 Security Update: fluent-bit (CVE-2024-4323)

The version of fluent-bit installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4323 advisory. - A memory corruption vulnerability in Fluent Bit versions 2.0.7 thru 3.0.3. This issue lies in the embedde...

CBL Mariner 2.0 Security Update: libvirt (CVE-2023-2700)

The version of libvirt installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2700 advisory. - A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI...

CBL Mariner 2.0 Security Update: grub2 (CVE-2022-28734)

The version of grub2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-28734 advisory. - Out-of-bounds write when handling split HTTP headers; When handling split HTTP headers, GRUB2 HTTP code...

CBL Mariner 2.0 Security Update: terraform (CVE-2024-3817)

The version of terraform installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-3817 advisory. - HashiCorp's go-getter library is vulnerable to argument injection when executing Git to discover remote...

CBL Mariner 2.0 Security Update: ceph (CVE-2022-0670)

The version of ceph installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-0670 advisory. - A flaw was found in Openstack manilla owning a Ceph File system share, which enables the owner to read/write an...

CBL Mariner 2.0 Security Update: libdb (CVE-2017-3607)

The version of libdb installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2017-3607 advisory. - Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Pri...

CBL Mariner 2.0 Security Update: ansible (CVE-2023-5764)

The version of ansible installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-5764 advisory. - A template injection flaw was found in Ansible where a user's controller internal templating operations May...

CBL Mariner 2.0 Security Update: hdf5 (CVE-2024-29166)

The version of hdf5 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-29166 advisory. - HDF5 through 1.14.3 contains a buffer overflow in H5Olinfodecode, resulting in the corruption of the instructi...

CBL Mariner 2.0 Security Update: wget (CVE-2024-38428)

The version of wget installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-38428 advisory. - url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there M...

CBL Mariner 2.0 Security Update: javapackages-bootstrap (CVE-2023-37460)

The version of javapackages-bootstrap installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-37460 advisory. - Plexis Archiver is a collection of Plexus components to create archives or extract archives ...

AlmaLinux 8 : python3.11-PyMySQL (ALSA-2024:4244)

The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2024:4244 advisory. python-pymysql: SQL injection if used with untrusted JSON input CVE-2024-36039 Tenable has extracted the preceding description block directly from the AlmaLinux...

CBL Mariner 2.0 Security Update: buildah (CVE-2022-2990)

The version of buildah installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-2990 advisory. - An incorrect handling of the supplementary groups in the Buildah container engine might lead to the sensitiv...

CBL Mariner 2.0 Security Update: unixODBC (CVE-2024-1013)

The version of unixODBC installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1013 advisory. - An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 byte...

CBL Mariner 2.0 Security Update: patch (CVE-2019-13636)

The version of patch installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-13636 advisory. - In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files...

CBL Mariner 2.0 Security Update: patch (CVE-2018-1000156)

The version of patch installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2018-1000156 advisory. - GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specificall...

AlmaLinux 8 : python-jinja2 (ALSA-2024:4231)

The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2024:4231 advisory. jinja2: accepts keys containing non-attribute characters CVE-2024-34064 Tenable has extracted the preceding description block directly from the AlmaLinux security...

CBL Mariner 2.0 Security Update: edk2 / hvloader (CVE-2023-45230)

The version of edk2 / hvloader installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45230 advisory. - EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID optio...