Azure Linux 3.0 Security Update: iperf3 (CVE-2024-53580)

The version of iperf3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53580 advisory. - iperf v3.17.1 was discovered to contain a segmentation violation via the iperfexchangeparameters function...

Photon OS 5.0: Linux PHSA-2025-5.0-0460

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0460. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Fedora 41 : java-11-openjdk (2025-e6f20785e3)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-e6f20785e3 advisory. January CPU 2025 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

Fedora 41 : yq (2025-cd51e0177b)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-cd51e0177b advisory. Rebuilt against golang-x-net 0.33.0 for CVE-2024-45338 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...

Fedora 40 : golang-x-crypto (2024-8f83d0ed92)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-8f83d0ed92 advisory. Fix CVE-2024-45337 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

Fedora 41 : chromium (2024-791faa660a)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-791faa660a advisory. Update to 131.0.6778.108 High CVE-2024-12053: Type Confusion in V8 Tenable has extracted the preceding description block directly from the Fedora...

Photon OS 4.0: Grpc PHSA-2024-4.0-0719

An update of the grpc package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-4.0-0719. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Eaton 5P Cross-site Scripting (CVE-2020-7915)

An issue was discovered on Eaton 5P 850 devices. The Ubicacion SAI field allows XSS attacks by an administrator. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

Fedora 41 : needrestart (2024-a9cf3dad4f)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-a9cf3dad4f advisory. Rebase to fix CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

Oracle Linux 9 : python3.9 (ELSA-2024-9468)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-9468 advisory. 3.9.19-8.1 - Security fix for CVE-2024-6232 Resolves: RHEL-57420 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Fedora 37 : moodle (2022-74a9c8e95f)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-74a9c8e95f advisory. Fixes for multiple CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Fedora 38 : fasterxml-oss-parent / jackson-annotations / jackson-bom / etc (2022-6aa833b95f)

The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2022-6aa833b95f advisory. Rebase Jackson packages to the latest upstream version 2.14.1 Tenable has extracted the preceding description block directly from the Fedora securit...

Photon OS 3.0: Curl PHSA-2024-3.0-0802

An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-3.0-0802. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

RockyLinux 8 : xmlrpc-c (RLSA-2024:8859)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:8859 advisory. libexpat: Integer Overflow or Wraparound CVE-2024-45491 Tenable has extracted the preceding description block directly from the RockyLinux security advisory. Note...

Unspecified vulnerability in Huawei HarmonyOS (CNVD-2025-15879)

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from improper handling of device information in the device management module. An attacker...

EulerOS 2.0 SP12 : dnsmasq (EulerOS-SA-2024-2784)

According to the versions of the dnsmasq package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : dnsmasq 2.9 is vulnerable to Integer Overflow via forwardquery.CVE-2023-49441 Tenable has extracted the preceding description block directly from...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-47755)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47755 advisory. - NIST NVD Details CVE-2024-47755 Note that Nessus has not tested for this issue but has instead relied only o...

Photon OS 4.0: Unbound PHSA-2024-4.0-0707

An update of the unbound package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-4.0-0707. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

RHEL 6 : libproxy (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libproxy: uncontrolled recursion via an infinite stream response leading to stack exhaustion CVE-2020-25219 Note th...

Fedora 38 : dr_libs (2023-494ae331b6)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-494ae331b6 advisory. Update to 4b3d078 drwav 0.13.8: fix a possible null-pointer dereference and a crash when loading files with badly-formed metadata. Tenable has extracted the...