90 matches found
Photon OS 3.0: Curl PHSA-2022-3.0-0406
An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-3.0-0406. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 5.0: Openjdk11 PHSA-2023-5.0-0032
An update of the openjdk11 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0032. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
RHEL 6 : pyyaml (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - PyYAML: yaml.load API could execute arbitrary code CVE-2017-18342 Note that Nessus has not tested for this issue bu...
RHEL 9 : nautilus (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nautilus: NULL pointer dereference via pasting crafted zip file CVE-2022-37290 Note that Nessus has not tested for...
RHEL 7 : guava (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - guava: Unbounded memory allocation in AtomicDoubleArray and CompoundOrdering classes allow remote attackers to caus...
Rocky Linux 9 : less (RLSA-2024:1692)
The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:1692 advisory. - closealtfile in filename.c in less before 606 omits shellquote calls for LESSCLOSE. CVE-2022-48624 Note that Nessus has not tested for this issue but has inste...
RHEL 5 : kernel (RHSA-2017:2801)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:2801 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: A flaw was found in the way the Linux kernel...
RHEL 7 : rh-git218-git (RHSA-2018:3800)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:3800 advisory. Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-serve...
Fedora 39 : chromium (2024-39b249a59c)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-39b249a59c advisory. update to 123.0.6312.105 High CVE-2024-3156: Inappropriate implementation in V8 High CVE-2024-3158: Use after free in Bookmarks High CVE-2024-3159:...
Fedora 38 : clojure (2024-91dab41dfa)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-91dab41dfa advisory. Security fix for CVE-2024-22871 Update to upstream release 1.11.2 Tenable has extracted the preceding description block directly from the Fedora...
Oracle Linux 9 : nss (ELSA-2024-0790)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-0790 advisory. 3.90.0-6 - Fix ecc DER wrapping. 3.90.0-5 - Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes...
Cisco Unity Connection Arbitrary File Upload (cisco-sa-cuc-unauth-afu-FROYsCsD)
According to its self-reported version, Cisco Unity Connection running on the report host is affected by an Arbitrary File Upload Vulnerability. Due to lack of authentication in a specific API and improper validation of user-supplied data, an unauthenticated, remote attacker can store malicious...
Fedora 39 : bind9-next (2023-1c069009b8)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-1c069009b8 advisory. - Upstream release notes Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...
Fedora 39 : ulauncher (2023-f4046ed450)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-f4046ed450 advisory. hore: Update to 5.15.4 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...
F5 Networks BIG-IP : Intel CPU vulnerability (K82356391)
The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K82356391 advisory. Improper buffer restrictions in BIOS firmware for some IntelR Processors may allow a privileged user to potentially...
Fedora 37 : attract-mode (2023-e58495988e)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-e58495988e advisory. Ensure stbimage contains the latest CVE patches Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...
CentOS 8 : squid:4 (CESA-2023:6267)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:6267 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...
Fedora 37 : traceroute (2023-734aa51998)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-734aa51998 advisory. Update to 2.1.3 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...
RHEL 8 : open-vm-tools (RHSA-2023:5213)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:5213 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization...
Oracle Linux 7 : cups (ELSA-2020-1050)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1050 advisory. - 1651575 - CVE-2018-4700 cups - 1608764 - CVE-2018-4180 cups Tenable has extracted the preceding description block directly from the Oracle Linux...