Lucene search
K

47 matches found

NVD
NVD
added 2026/06/16 8:16 p.m.10 views

CVE-2026-0142

In iavbparsekeydata of avbrsa.c, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS0.00069EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/09/23 12:0 a.m.23 views

Oracle Linux 9 : golang (ELSA-2024-6913)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6913 advisory. - Rebase to Go1.21.13 to pick the fix for CVE-2024-24791 Tenable has extracted the preceding description block directly from the Oracle Linux security...

7.5CVSS6.9AI score0.01414EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/09/03 12:0 a.m.23 views

AlmaLinux 9 : buildah (ALSA-2024:6189)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:6189 advisory. golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm CVE-2024-24783 Tenable has extracted the preceding description block direct...

5.9CVSS7.4AI score0.00667EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/08/12 12:0 a.m.33 views

Dell iDRAC Service Module < 5.3.1.0 Multiple Vulnerabilities

Dell iDRAC Service Module version 5.3.0.0 and prior, contains multiple Out-of-bound Write Vulnerabilities. A privileged local attacker could execute arbitrary code potentially resulting in a denial of service event. Note that Nessus has not tested for this issue but has instead relied only on the...

5.8CVSS5.9AI score0.00196EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.19 views

Photon OS 4.0: Postgresql14 PHSA-2023-4.0-0513

An update of the postgresql14 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0513. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.8CVSS6.9AI score0.04322EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.18 views

Photon OS 3.0: Vim PHSA-2023-3.0-0645

An update of the vim package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-3.0-0645. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid20391...

7.8CVSS6.8AI score0.00624EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.21 views

Photon OS 4.0: Vim PHSA-2023-4.0-0467

An update of the vim package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0467. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid20457...

7.8CVSS7AI score0.00624EPSS
Exploits8References9
Tenable Nessus
Tenable Nessus
added 2023/11/21 12:0 a.m.27 views

SUSE SLES12: xen / xen-devel / xen-doc-html / xen-libs / xen-libs-32bit / etc (SUSE-SU-2023:4486-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4486-1 advisory. - CVE-2023-46835: x86/AMD: mismatch in IOMMU quarantine page table levels XSA-445 bsc1216654. - CVE-2023-46836: x86: BTC/SRSO fixes...

5.5CVSS5.9AI score0.00284EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2023/10/19 12:0 a.m.69 views

Oracle Linux 8 : nghttp2 (ELSA-2023-5837)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-5837 advisory. - fix HTTP/2 Rapid Reset CVE-2023-44487 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus...

7.5CVSS7.3AI score0.99999EPSS
Exploits19References2
Tenable Nessus
Tenable Nessus
added 2023/10/13 12:0 a.m.67 views

Security Updates for Microsoft Visual Studio Products (October 2023)

The Microsoft Visual Studio Products are missing security updates. It is, therefore, affected by multiple denial of service vulnerabilities: - A denial of service DoS vulnerability. An attacker can exploit this issue to cause the affected component to deny system or application services...

7.5CVSS7.1AI score0.99999EPSS
Exploits19References6
Tenable Nessus
Tenable Nessus
added 2023/02/10 12:0 a.m.26 views

IBM DB2 11.1 < 11.1.4 FP6 41246 / 11.5 < 11.5.8 FP0 26513 Denial of Service (Unix)

According to its self-reported version number, IBM Db2 is affected by a denial of service when executing a specially crafted 'Load' command. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable,...

7.5CVSS7.2AI score0.00739EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/02/10 12:0 a.m.35 views

IBM DB2 10.5 < 10.5.0 FP11 41247 / 11.1 < 11.1.4 FP6 41246 / 11.5 < 11.5.8 FP0 26513 Information Disclosure (Unix)

According to its self-reported version number, IBM Db2 is affected by an information disclosure due to improper privilege management when a specially crafted table access is used. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...

7.5CVSS7.2AI score0.00641EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/04/19 12:0 a.m.35 views

No memory limit for dom0less domUs (XSA-383)

The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allows a domain to allocate memory beyond what an administrator originally configured. Note that Nessus has not tested for this issue...

6.8CVSS5.2AI score0.0187EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/09/13 12:0 a.m.36 views

FreeBSD : go -- archive/zip: overflow in preallocation check can cause OOM panic (4ea1082a-1259-11ec-b4fa-dd5a552bdd17)

The Go project reports : An oversight in the previous fix still allows for an OOM panic when the indicated directory size in the archive header is so large that subtracting it from the archive size overflows a uint64, effectively bypassing the check that the number of files in the archive is...

7.5CVSS6.8AI score0.06934EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/06/17 12:0 a.m.17 views

RHEL 7 : dhcp (RHSA-2021:2469)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2469 advisory. The Dynamic Host Configuration Protocol DHCP is a protocol that allows individual devices on an IP network to get their own network configuration...

7.4CVSS8AI score0.06118EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/06/15 12:0 a.m.52 views

Tenable Nessus Agent < 8.2.5 Multiple Vulnerabilities (TNS-2021-12)

According to its self-reported version, the Tenable Nessus agent running on the remote Windows host is prior to 8.2.5. It is, therefore, affected by multiple vulnerabilities: - Multiple local privilege escalation vulnerabilities. A local attacker can exploit these to gain administrator privileges...

6.7CVSS6.7AI score0.00348EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/03/12 12:0 a.m.46 views

Adobe FrameMaker 2019 <= 15.0.8 (2019.0.8) / Adobe FrameMaker 2020 <= 16.0.1 (2020.0.1) Arbitrary Code Execution (APSB21-14)

The version of Adobe FrameMaker installed on the remote Windows host is prior or equal to Adobe FrameMaker 2019 15.0.8 / Adobe FrameMaker 2020 16.0.1. It is, therefore, affected by a vulnerability as referenced in the apsb21-14 advisory. - Adobe Framemaker version 2020.0.1 and earlier is affected...

9.3CVSS8.2AI score0.21224EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/01/29 12:0 a.m.61 views

Xen OOM DoS (XSA-349)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability due to an issue with the watch event queue. A malicious guest can exploit this, by abusing the unbounded queue, to cause an out-of-memory error in the...

6.5CVSS6.2AI score0.00348EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/01/07 12:0 a.m.33 views

XENMEM_aquire_resources Error Path DoS (XSA-334)

A denial of service DoS vulnerability exists in Xen servers XENMEMacquireresource due to an error path exiting without releasing an RCU Read, Copy, Update reference. An authenticated, local attacker can exploit this issue, via a malicious HVM stubdomain which can cause an RCU reference to be...

5.5CVSS6.2AI score0.00416EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/01/05 12:0 a.m.33 views

Xen Management Tool DoS (XSA-323)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability due to a bad path name limit in oxenstored. A malicious guest administrator can exploit this, by creating paths in the guest's own namespace that are too...

6CVSS6AI score0.00385EPSS
Exploits0References2
Rows per page
Query Builder