2357 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-39945
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper access control in the GitLab CE/EE API affecting all versions starting from 9.4 before 14.3.6, all versions starting from 14.4 before 14.4.4, all...
Linux Distros Unpatched Vulnerability : CVE-2024-4835
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A XSS condition exists within GitLab in versions 15.11 before 16.10.6, 16.11 before 16.11.3, and 17.0 before 17.0.1. By leveraging this condition, an attacker c...
Linux Distros Unpatched Vulnerability : CVE-2021-39919
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In all versions of GitLab CE/EE starting version 14.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5....
Linux Distros Unpatched Vulnerability : CVE-2020-29566
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.14.x. When they require assistance from the device model, x86 HVM guests must be temporarily de-scheduled. The device...
Linux Distros Unpatched Vulnerability : CVE-2021-43113
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iTextPDF in iText 7 and up to excluding 4.4.13.3 7.1.17 allows command injection via a CompareTool filename that is mishandled on the gs aka Ghostscript command...
Linux Distros Unpatched Vulnerability : CVE-2020-7769
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This affects the package nodemailer before 6.4.16. Use of crafted recipient email addresses may result in arbitrary command flag injection in sendmail transport...
Linux Distros Unpatched Vulnerability : CVE-2022-39421
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.40. Easily...
Linux Distros Unpatched Vulnerability : CVE-2021-33464
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in yasm version 1.3.0. There is a heap-buffer-overflow in incfopen in modules/preprocs/nasm/nasm-pp.c. CVE-2021-33464 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2019-15486
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - django-js-reverse aka Django JS Reverse before 0.9.1 has XSS via jsreverseinline. CVE-2019-15486 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2021-36691
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image.cc jxl::PlaneBase::PlaneBase. When encoding a malicous GIF file using cjxl, an attacker c...
Linux Distros Unpatched Vulnerability : CVE-2020-2681
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.36, prior to...
Linux Distros Unpatched Vulnerability : CVE-2022-0623
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-bounds Read in Homebrew mruby prior to 3.2. CVE-2022-0623 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL...
Linux Distros Unpatched Vulnerability : CVE-2023-3431
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Access Control in GitHub repository plantuml/plantuml prior to 1.2023.9. CVE-2023-3431 Note that Nessus relies on the presence of the package as report...
Linux Distros Unpatched Vulnerability : CVE-2018-18646
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows SSRF. CVE-2018-18646...
Linux Distros Unpatched Vulnerability : CVE-2019-17673
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON GET requests because certain requests lack a Vary: Origin header. CVE-2019-17673 Note tha...
Linux Distros Unpatched Vulnerability : CVE-2021-1789
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update...
Linux Distros Unpatched Vulnerability : CVE-2023-29942
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - llvm-project commit a0138390 was discovered to contain a segmentation fault via the component mlir::Type::isamlir::LLVM::LLVMVoidType. CVE-2023-29942 Note that...
Linux Distros Unpatched Vulnerability : CVE-2022-43600
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple code execution vulnerabilities exist in the IFFOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput...
Linux Distros Unpatched Vulnerability : CVE-2022-43255
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gfodfnewiod at odf/odfcode.c. CVE-2022-43255 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2024-4784
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GitLab EE starting from version 16.7 before 17.0.6, version 17.1 before 17.1.4 and 17.2 before 17.2.2 that allowed bypassing the...