Lucene search
K

23 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2017-14604

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNOME Nautilus before 3.23.90 allows attackers to spoof a file type by using the .desktop file extension, as demonstrated by an attack in which a .desktop file'...

6.5CVSS5.8AI score0.02471EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2018:1694-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.8AI score0.02471EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2018:2058-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.8AI score0.02471EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for nautilus (EulerOS-SA-2018-1034)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.02471EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.16 views

Huawei EulerOS: Security Advisory for nautilus (EulerOS-SA-2018-1053)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.02471EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.32 views

NewStart CGSL MAIN 5.04 : nautilus Vulnerability (NS-SA-2019-0015)

The remote NewStart CGSL host, running version MAIN 5.04, has nautilus packages installed that are affected by a vulnerability: - An untrusted .desktop file with executable permission set could choose its displayed name and icon, and execute commands without warning when opened by the user. An...

6.5CVSS6.2AI score0.02471EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/08/07 12:0 a.m.17 views

openSUSE: Security Advisory for nautilus (openSUSE-SU-2018:2210-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.5CVSS6.5AI score0.02471EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/08/06 3:12 p.m.73 views

Security update for nautilus (low)

This update for nautilus fixes the following issues: Security issue fixed: - CVE-2017-14604: Add a metadata::trusted metadata to the file once the user acknowledges the file as trusted, and also remove the "trusted" content in the desktop file bsc1060031. This update was imported from the...

4CVSS1.8AI score0.02471EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2018/07/26 12:0 a.m.22 views

SUSE SLED12 / SLES12 Security Update : nautilus (SUSE-SU-2018:2058-1)

This update for nautilus fixes the following issues: Security issue fixed : - CVE-2017-14604: Add a metadata::trusted metadata to the file once the user acknowledges the file as trusted, and also remove the 'trusted' content in the desktop file bsc1060031. Note that Tenable Network Security has...

6.5CVSS5.6AI score0.02471EPSS
Exploits1References4
OSV
OSV
added 2018/07/25 9:0 a.m.2 views

SUSE-SU-2018:2058-1 Security update for nautilus

This update for nautilus fixes the following issues: Security issue fixed: - CVE-2017-14604: Add a metadata::trusted metadata to the file once the user acknowledges the file as trusted, and also remove the 'trusted' content in the desktop file bsc1060031...

6.5CVSS6.3AI score0.02471EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2018/06/15 12:0 a.m.23 views

SUSE SLES11 Security Update : nautilus (SUSE-SU-2018:1694-1)

This update for nautilus fixes the following security issue : - CVE-2017-14604: Fixed a file type spoofing attack by adding a metadata::trusted attribute to a file once the user acknowledges the file as trusted, and also remove the 'trusted' content in the desktop file bsc1060031. Note that Tenab...

6.5CVSS5.6AI score0.02471EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2018/04/18 12:0 a.m.35 views

Amazon Linux 2 : nautilus (ALAS-2018-960)

Insufficient validation of trust of .desktop files with execute permission An untrusted .desktop file with executable permission set could choose its displayed name and icon, and execute commands without warning when opened by the user. An attacker could use this flaw to trick a user into opening...

6.5CVSS6.1AI score0.02471EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/03/20 12:0 a.m.24 views

EulerOS 2.0 SP1 : nautilus (EulerOS-SA-2018-1053)

According to the version of the nautilus packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An untrusted .desktop file with executable permission set could choose its displayed name and icon, and execute commands without warning when...

6.5CVSS6.2AI score0.02471EPSS
Exploits1References2
Amazon
Amazon
added 2018/02/20 12:0 a.m.27 views

Medium: nautilus

Issue Overview: Insufficient validation of trust of .desktop files with execute permission An untrusted .desktop file with executable permission set could choose its displayed name and icon, and execute commands without warning when opened by the user. An attacker could use this flaw to trick a...

6.5CVSS6.4AI score0.02471EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/02/13 12:0 a.m.25 views

EulerOS 2.0 SP2 : nautilus (EulerOS-SA-2018-1034)

According to the version of the nautilus packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An untrusted .desktop file with executable permission set could choose its displayed name and icon, and execute commands without warning when...

6.5CVSS6.2AI score0.02471EPSS
Exploits1References2
Cent OS
Cent OS
added 2018/01/26 1:32 a.m.109 views

nautilus security update

CentOS Errata and Security Advisory CESA-2018:0223 An update for nautilus is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

6.5CVSS6.5AI score0.02471EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2018/01/26 12:0 a.m.55 views

CentOS 7 : nautilus (CESA-2018:0223)

An update for nautilus is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

6.5CVSS6.1AI score0.02471EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/01/25 12:0 a.m.21 views

Scientific Linux Security Update : nautilus on SL7.x x86_64 (20180125)

Security Fixes : - An untrusted .desktop file with executable permission set could choose its displayed name and icon, and execute commands without warning when opened by the user. An attacker could use this flaw to trick a user into opening a .desktop file disguised as a document, such as a PDF,...

6.5CVSS6.1AI score0.02471EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/01/25 12:0 a.m.57 views

RHEL 7 : nautilus (RHSA-2018:0223)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0223 advisory. Nautilus is the file manager and graphical shell for the GNOME desktop. Security Fixes: An untrusted .desktop file with executable permission set cou...

6.5CVSS6.2AI score0.02471EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2017/09/20 9:18 a.m.20 views

CVE-2017-14604

An untrusted .desktop file with executable permission set could choose its displayed name and icon, and execute commands without warning when opened by the user. An attacker could use this flaw to trick a user into opening a .desktop file disguised as a document, such as a PDF, and execute...

6.5CVSS2.5AI score0.02471EPSS
Exploits1References1
Rows per page
Query Builder