Unix Software Discovery Commands Not Available

Nessus found problems running commands on the target host which are used to find software that is not managed by the operating system. Details of the issues encountered are reported by this plugin. Failure to properly execute commands used to find and characterize unmanaged software on the target...

LuminousMoth APT: Sweeping attacks for the chosen few

APT actors are known for the frequently targeted nature of their attacks. Typically, they will handpick a set of targets that in turn are handled with almost surgical precision, with infection vectors, malicious implants and payloads being tailored to the victims identities or environment. Its no...

CVE-2021-20099

Nessus Agent 8.2.4 and earlier for Windows were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific Windows executables as the Nessus host. This is different than CVE-2021-20100...

CVE-2021-20099

Nessus Agent 8.2.4 and earlier for Windows were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific Windows executables as the Nessus host. This is different than CVE-2021-20100...

Privilege escalation

Nessus Agent 8.2.4 and earlier for Windows were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific Windows executables as the Nessus host. This is different than CVE-2021-20099...

CVE-2021-20100

Nessus Agent 8.2.4 and earlier for Windows were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific Windows executables as the Nessus host. This is different than CVE-2021-20099...

CVE-2021-20099

Nessus Agent 8.2.4 and earlier for Windows were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific Windows executables as the Nessus host. This is different than CVE-2021-20100...

Missing Authentication for Critical Function

The vulnerability allows an attacker to substitute or modify packages retrieved from BC thus allowing to inject malicious code into ballerina executables...

SUSE: Security Advisory (SUSE-SU-2021:1598-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2014:0670-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Bn-Uefi-Helper - Helper Plugin For Analyzing UEFI Firmware

Helper plugin for analyzing UEFI firmware. This plugin contains the following features: Apply the correct prototype to the entry point function Fix segments so all segments are RWX and have the correct semantics This allows for global function pointers to be rendered correctly Apply types for cor...

CVE-2021-31703

Frontier ichris through 5.18 allows users to upload malicious executable files that might later be downloaded and run by any client user...

CVE-2021-31703

Frontier ichris through 5.18 allows users to upload malicious executable files that might later be downloaded and run by any client user...

Trojan.Win32.Scar.dulk Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/317cd84b5c0d11a9c3aacdfe2bb6031c.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.Scar.dulk Vulnerability: Insecure Permissions Description: The malware creates an...

UBUNTU-CVE-2021-30501

An assertion abort was found in upx MemBuffer::alloc in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service abort via a crafted file...

Acronis True Image has an unspecified vulnerability

Acronis True Image is a well-known data backup and restore software from Singapore-based Acronis. Acronis True Image 2020 version 24.5.22510 contains a security vulnerability that could be exploited by an attacker to add arbitrary malicious executables to a whitelist or even exclude an entire dri...

openSUSE Security Update : dtc (openSUSE-2021-746)

This update for dtc fixes the following issues : - make all packaged binaries PIE-executables bsc1184122. This update was imported from the SUSE:SLE-15-SP2:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

OPENSUSE-SU-2021:0746-1 Security update for dtc

This update for dtc fixes the following issues: - make all packaged binaries PIE-executables bsc1184122. This update was imported from the SUSE:SLE-15-SP2:Update update project...

Security update for dtc (low)

openSUSE Security Update: Security update for dtc Announcement ID: openSUSE-SU-2021:0746-1 Rating: low References: 1184122 Affected Products: openSUSE Leap 15.2 An update that contains security fixes can now be installed. Description: This update for dtc fixes the following issues: - make all...

SUSE-SU-2021:1598-1 Security update for dtc

This update for dtc fixes the following issues: - make all packaged binaries PIE-executables bsc1184122...