Lucene search
K

23 matches found

Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.16 views

Photon OS 5.0: Cmake PHSA-2023-5.0-0035

An update of the cmake package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0035. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.8CVSS7.5AI score0.82017EPSS
Exploits14References20
OpenVAS
OpenVAS
added 2021/10/18 12:0 a.m.22 views

Debian: Security Advisory (DLA-2786-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.10782EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/10/17 12:0 a.m.33 views

Debian DLA-2786-1 : nghttp2 - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2786 advisory. - nghttp2 version = 1.10.0 and nghttp2 = 1.31.1. CVE-2018-1000168 - In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial ...

7.5CVSS7AI score0.10782EPSS
Exploits0References7
CBLMariner
CBLMariner
added 2021/08/11 6:39 a.m.23 views

CVE-2018-1000168 affecting package nodejs 8.11.4-7

CVE-2018-1000168 affecting package nodejs 8.11.4-7. An upgraded version of the package is available that resolves this issue...

7.5CVSS9.9AI score0.10782EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2018:1918-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.10782EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2019/10/25 6:31 a.m.41 views

CVE-2018-1000168

nghttp2 version = 1.10.0 and nghttp2 = 1.31.1...

7.5CVSS6.1AI score0.10782EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.37 views

openSUSE Security Update : nodejs8 (openSUSE-2019-513)

This update for nodejs8 to version 8.11.3 fixes the following issues : These security issues were fixed : - CVE-2018-7167: Calling Buffer.fill or Buffer.alloc with some parameters could have lead to a hang which could have resulted in a DoS bsc1097375. - CVE-2018-7161: By interacting with the htt...

7.8CVSS7.3AI score0.10782EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2019/02/18 4:55 p.m.162 views

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 SP1 security update

Red Hat JBoss Core Services Pack Apache Server 2.4.29 Service Pack 1 packages for Microsoft Windows and Oracle Solaris are now available. Red Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...

9.8CVSS6.7AI score0.90647EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.37 views

Fedora 28 : nghttp2 (2018-bdefa5e5bb)

update to the latest upstream release fixes CVE-2018-1000168 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

7.5CVSS7.3AI score0.10782EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.37 views

SUSE SLES15 Security Update : nodejs8 (SUSE-SU-2018:1918-1)

This update for nodejs8 to version 8.11.3 fixes the following issues: These security issues were fixed : - CVE-2018-7167: Calling Buffer.fill or Buffer.alloc with some parameters could have lead to a hang which could have resulted in a DoS bsc1097375. - CVE-2018-7161: By interacting with the http...

7.8CVSS7.2AI score0.10782EPSS
Exploits0References11
IBM Security Bulletins
IBM Security Bulletins
added 2018/11/27 4:5 p.m.32 views

Security Bulletin: Multiple vulnerabilities in Node.js affects IBM Rational Application Developer for WebSphere Software included in Rational Developer for i

Summary Portions of IBM Rational Application Developer for WebSphere Software are shipped as a component of Rational Developer for i RPG and COBOL + Modernization Tools, Java and EGL editions. Multiple Node.js vulnerabilities have been discovered that affect the Cordova platform packaged with...

7.8CVSS0.8AI score0.10782EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/11/14 12:0 a.m.34 views

Node.js multiple vulnerabilities (July 2018 Security Releases).

The version of Node.js installed on the remote host is 6.x prior to 6.14.3, 8.x prior to 8.11.3, 9.x prior to 9.11.2 or 10.x prior to 10.4.1. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for these issues but has instead relied only on the application's...

7.8CVSS7.3AI score0.10782EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.29 views

openSUSE: Security Advisory for nodejs8 (openSUSE-SU-2018:1963-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.2AI score0.10782EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2018/09/26 6:40 p.m.41 views

Security Bulletin: Multiple Security Vulnerabilities affect IBM® Cloud Private and IBM Cloud Private Cloud Foundry (CVE-2018-7167, CVE-2018-7164, CVE-2018-7162, CVE-2018-1000168, CVE-2018-7161)

Summary IBM Cloud Private and IBM Cloud Private Cloud Foundry are vulnerable to multiple security vulnerabilities Vulnerability Details CVEID: CVE-2018-7167 DESCRIPTION: Node.js is vulnerable to a denial of service. By invoking Buffer.fill or Buffer.alloc , a remote attacker could exploit this...

7.8CVSS0.6AI score0.10782EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/07/24 12:0 a.m.36 views

Photon OS 1.0 : gcc / nghttp2 (PhotonOS-PHSA-2018-1.0-0150 (deprecated)

An update of 'gcc', 'nghttp2' packages of Photon OS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-1.0-0150. The text itself is copyright C VMware,...

7.5CVSS0.1AI score0.10782EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/07/16 12:0 a.m.34 views

openSUSE Security Update : nodejs8 (openSUSE-2018-724)

This update for nodejs8 to version 8.11.3 fixes the following issues : These security issues were fixed : - CVE-2018-7167: Calling Buffer.fill or Buffer.alloc with some parameters could have lead to a hang which could have resulted in a DoS bsc1097375. - CVE-2018-7161: By interacting with the htt...

7.8CVSS7.3AI score0.10782EPSS
Exploits0References7
OPENSUSE Linux
OPENSUSE Linux
added 2018/07/14 3:11 a.m.71 views

Security update for nodejs8 (moderate)

This update for nodejs8 to version 8.11.3 fixes the following issues: These security issues were fixed: - CVE-2018-7167: Calling Buffer.fill or Buffer.alloc with some parameters could have lead to a hang which could have resulted in a DoS bsc1097375. - CVE-2018-7161: By interacting with the http2...

5CVSS2.3AI score0.10782EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2018/07/10 12:0 a.m.38 views

Node.js Denial-of-Service Vulnerability - 02 - Mac OS X

Node.js is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nodejs:node.js";...

7.5CVSS6.5AI score0.10782EPSS
Exploits0References1
ALT Linux
ALT Linux
added 2018/06/30 12:0 a.m.71 views

Security fix for the ALT Linux 10 package node version 8.11.3-alt1

June 30, 2018 Vitaly Lipatov 8.11.3-alt1 - new version 8.11.3 with rpmgs script - 2018-06-12, Version 8.11.3 'Carbon' LTS, @evanlucas - CVE-2018-7167, CVE-2018-7161, CVE-2018-1000168...

7.8CVSS7.1AI score0.10782EPSS
Exploits0
Cvelist
Cvelist
added 2018/05/08 3:0 p.m.29 views

CVE-2018-1000168

nghttp2 version = 1.10.0 and nghttp2 = 1.31.1...

7.5AI score0.10782EPSS
Exploits0References6
Rows per page
Query Builder