Fedora 41 : OpenIPMI (2025-ae55d50be2)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-ae55d50be2 advisory. Update to 2.0.36 Fixes CVE-2024-42934 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has...

Fedora 40 : git-lfs (2025-50deb0acd5)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-50deb0acd5 advisory. Update to latest version Fix CVE-2024-53263 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...

Adobe Audition < 13.0.7 Multiple Arbitrary Code Execution (APSB20-40) (macOS)

The version of Adobe Audition installed on the remote macOS host is prior to 13.0.7. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB20-40 advisory. - Adobe Audition versions 13.0.6 and earlier have an out-of-bounds write vulnerability. Successful exploitation coul...

Adobe Bridge 10.x < 10.0 Multiple Vulnerabilities (APSB19-53)

The version of Adobe Bridge installed on the remote macOS or Mac OS X host is prior to 10.0. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb19-53 advisory. - Adobe Bridge CC versions 9.1 and earlier have a memory corruption vulnerability. Successful exploitation...

Adobe Premiere Pro < 14.2 Information Disclosure (APSB20-27) (macOS)

The version of Adobe Premiere Pro installed on the remote macOS host is prior to 14.2. It is, therefore, affected by a vulnerability as referenced in the APSB20-27 advisory. - Adobe Premiere Pro versions 14.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead...

Adobe Digital Editions < 4.5.10 Information Disclosure (APSB19-04) (macOS)

The version of Adobe Digital Editions installed on the remote macOS host is prior to 4.5.10. It is, therefore, affected by a vulnerability as referenced in the APSB19-04 advisory. - Adobe Digital Editions versions 4.5.9 and below have an out of bounds read vulnerability. Successful exploitation...

SolarWinds Web Help Desk < 12.8.3 HF 3 Java Deserialization RCE

The version of SolarWinds Web Help Desk installed on the remote host is prior to 12.8.3 HF3. It is, therefore, affected by a Java deserialization remote-code execution vulnerability, that, if exploited, would allow an attacker to run commands on the host machine. Note that Nessus has not tested f...

Qnap QTS Classic Buffer Overflow (CVE-2023-50362)

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute code via a network. We have already fixed the vulnerability in the following versions: QTS...

Qnap QTS and myQNAPcloud SQL Injection (CVE-2024-21901)

A SQL injection vulnerability has been reported to affect myQNAPcloud. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We have already fixed the vulnerability in the following versions: myQNAPcloud 1.0.52 2023/11/24 and later QTS...

CentOS 7 : firefox (RHSA-2022:6997)

The remote CentOS Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:6997 advisory. - libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. CVE-2022-40674 Note that Nessus has not tested for this issue but has...

NuGet Package 'Microsoft.ML.CodeGenerator' Detection

The remote host has a 'Microsoft.ML.CodeGenerator' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc';...

NuGet Package 'Microsoft.ML.Mkl.Redist' Detection

The remote host has a 'Microsoft.ML.Mkl.Redist' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

NuGet Package 'Microsoft.SemanticKernel.Abstractions' Detection

The remote host has a 'Microsoft.SemanticKernel.Abstractions' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc...

NuGet Package 'Microsoft.ML' Detection

The remote host has a 'Microsoft.ML' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if descriptio...

SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3338-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3338-1 advisory. The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. Tenable has extracted the preceding descripti...

SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3337-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3337-1 advisory. The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. Tenable has extracted the preceding descripti...

GitLab 16.5 < 17.1.7 / 17.2 < 17.2.5 / 17.3 < 17.3.2 (CVE-2024-4472)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...

GitLab 16.4 < 17.1.7 / 17.2 < 17.2.5 / 17.3 < 17.3.2 (CVE-2024-8124)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.1.7, starting from 17.2 prior to 17.2.5, starting from 17.3 prior to 17.3.2 which could cause Denial of...

Security Updates for Microsoft Office Products (September 2024) (macOS)

The version of Microsoft Office for Mac installed on the remote host is affected by a vulnerability as referenced in the september-10-2024 advisory. - Microsoft Excel Elevation of Privilege Vulnerability CVE-2024-43465 Note that Nessus has not tested for this issue but has instead relied only on...

Ubuntu 14.04 LTS : Drupal vulnerabilities (USN-6981-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6981-2 advisory. USN-6981-1 fixed vulnerabilities in Drupal. This update provides the corresponding updates for Ubuntu 14.04 LTS. Tenable has extracted the preceding...