Lucene search
K

2382 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/17 12:0 a.m.47 views

SolarWinds Web Help Desk < 12.8.3 HF 3 Java Deserialization RCE

The version of SolarWinds Web Help Desk installed on the remote host is prior to 12.8.3 HF3. It is, therefore, affected by a Java deserialization remote-code execution vulnerability, that, if exploited, would allow an attacker to run commands on the host machine. Note that Nessus has not tested f...

9.8CVSS6.3AI score0.36619EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.21 views

Qnap QTS and myQNAPcloud SQL Injection (CVE-2024-21901)

A SQL injection vulnerability has been reported to affect myQNAPcloud. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We have already fixed the vulnerability in the following versions: myQNAPcloud 1.0.52 2023/11/24 and later QTS...

4.7CVSS5.5AI score0.18677EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.12 views

Qnap QTS Classic Buffer Overflow (CVE-2023-50362)

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute code via a network. We have already fixed the vulnerability in the following versions: QTS...

8.8CVSS5.9AI score0.00759EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.22 views

CentOS 7 : firefox (RHSA-2022:6997)

The remote CentOS Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:6997 advisory. - libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. CVE-2022-40674 Note that Nessus has not tested for this issue but has...

8.1CVSS7.5AI score0.01659EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/07 12:0 a.m.3 views

PostgreSQL pgAdmin4 Installed (Windows)

Binary data postgresqlpgadmin4wininstalled.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/10/04 12:0 a.m.7 views

NuGet Package 'Microsoft.ML.Mkl.Redist' Detection

The remote host has a 'Microsoft.ML.Mkl.Redist' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/10/04 12:0 a.m.9 views

NuGet Package 'Microsoft.ML.CodeGenerator' Detection

The remote host has a 'Microsoft.ML.CodeGenerator' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc';...

5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/10/04 12:0 a.m.8 views

NuGet Package 'Microsoft.SemanticKernel.Abstractions' Detection

The remote host has a 'Microsoft.SemanticKernel.Abstractions' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc...

5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/10/04 12:0 a.m.6 views

Progress Telerik UI for WPF Installed

Binary data progresstelerikuiforwpfinstalled.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/10/04 12:0 a.m.6 views

NuGet Package 'Microsoft.ML' Detection

The remote host has a 'Microsoft.ML' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if descriptio...

5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/10/03 12:0 a.m.8 views

NVIDIA Container Toolkit Installed (Linux)

Binary data nvidiacontainertoolkitnixinstalled.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/09/30 12:0 a.m.6 views

Adobe Commerce / Magento Installed (Linux)

Binary data adobecommercenixinstalled.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/09/24 12:0 a.m.10 views

Laravel Weak Secret Key

Laravel applications use an application key to encrypt and sign various data, including session cookies and other sensitive information. This key is typically stored in the .env file and is used for multiple security-critical operations. When a weak or easily guessable application key is used, it...

7.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/20 12:0 a.m.6 views

SUSE SLES15: cluster-md-kmp-rt / dlm-kmp-rt / gfs2-kmp-rt / kernel-devel-rt / etc (SUSE-SU-2024:3337-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3337-1 advisory. The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. Tenable has extracted the preceding descripti...

5.9AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/20 12:0 a.m.8 views

SUSE SLES15: cluster-md-kmp-rt / dlm-kmp-rt / gfs2-kmp-rt / kernel-devel-rt / etc (SUSE-SU-2024:3338-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3338-1 advisory. The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. Tenable has extracted the preceding descripti...

5.9AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/09/16 12:0 a.m.10 views

Apple iOS < 18 Multiple Vulnerabilities (121250)

Binary data appleios18check.nbin...

9.1CVSS7.3AI score0.07939EPSS
Exploits2References49
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.17 views

GitLab 16.4 < 17.1.7 / 17.2 < 17.2.5 / 17.3 < 17.3.2 (CVE-2024-8124)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.1.7, starting from 17.2 prior to 17.2.5, starting from 17.3 prior to 17.3.2 which could cause Denial of...

7.5CVSS5.6AI score0.39581EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.8 views

Sequelize Configuration File Detected

Sequelize is a promise-based Node.js ORM tool for databases engines. Sequelize CLI uses by default a configuration file in 'config' directory to store the environment and database information. By accessing it, an attacker could leverage the vulnerability to gain unauthorized and privileged access...

7.4AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.16 views

EulerOS 2.0 SP9 : libldb (EulerOS-SA-2024-2396)

According to the versions of the libldb package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : MaxQueryDuration not honoured in Samba AD DC LDAPCVE-2021-3670 Tenable has extracted the preceding description block directly from the EulerOS libl...

6.5CVSS7.6AI score0.01731EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.12 views

GitLab 16.5 < 17.1.7 / 17.2 < 17.2.5 / 17.3 < 17.3.2 (CVE-2024-4472)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...

5.5CVSS5.5AI score0.00216EPSS
Exploits0References4
Rows per page
Query Builder