1829 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-39494
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ima: Fix use-after-free on a dentry's dname.name -dname.name can change on rename and the...
Linux Distros Unpatched Vulnerability : CVE-2023-22458
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Redis is an in-memory database that persists on disk. Authenticated users can issue a HRANDFIELD or ZRANDMEMBER command with specially crafted arguments to...
Linux Distros Unpatched Vulnerability : CVE-2023-52593
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: wfx: fix possible NULL pointer dereference in wfxsetmfpap Since 'ieee80211beaconget' can return NULL, 'wfxsetmfpap' should check the return value before...
Linux Distros Unpatched Vulnerability : CVE-2023-52323
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack. CVE-2023-52323 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2024-46822
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arm64: acpi: Harden getcpuforacpiid against missing CPU entry In a review discussion of the changes to support vCPU hotplug where a check was added on the GICC...
Linux Distros Unpatched Vulnerability : CVE-2022-37434
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications th...
Linux Distros Unpatched Vulnerability : CVE-2022-35018
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Advancecomp v2.3 was discovered to contain a segmentation fault. CVE-2022-35018 Note that Nessus relies on the presence of the package as reported by the vendor...
Linux Distros Unpatched Vulnerability : CVE-2022-48648
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: sfc: fix null pointer dereference in efxhardstartxmit Trying to get the channel from the...
Linux Distros Unpatched Vulnerability : CVE-2024-39329
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. The django.contrib.auth.backends.ModelBackend.authenticate method allows remote...
Linux Distros Unpatched Vulnerability : CVE-2023-52735
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf, sockmap: Don't let sockmapclose,destroy,unhash call itself sockmap proto callbacks should never call themselves by design. Protect against bugs like 1 and...
Linux Distros Unpatched Vulnerability : CVE-2021-3933
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow could occur when OpenEXR processes a crafted file on systems where sizet 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLi...
Linux Distros Unpatched Vulnerability : CVE-2021-46242
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the component H5ACunpinentry. CVE-2021-46242 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2024-4439
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WordPress Core is vulnerable to Stored Cross-Site Scripting via user display names in the Avatar block in various versions up to 6.5.2 due to insufficient outpu...
Linux Distros Unpatched Vulnerability : CVE-2023-24473
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information disclosure vulnerability exists in the TGAInput::readtga2header functionality of OpenImageIO Project OpenImageIO v2.4.7.1. A specially crafted...
Linux Distros Unpatched Vulnerability : CVE-2022-2122
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DOS / potential heap overwrite in qtdemux using zlib decompression. Integer overflow in qtdemux element in qtdemuxinflate function which causes a segfault, or...
Linux Distros Unpatched Vulnerability : CVE-2023-36177
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in badaix Snapcast version 0.27.0, allows remote attackers to execute arbitrary code and gain sensitive information via crafted request ...
Linux Distros Unpatched Vulnerability : CVE-2024-3596
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response Access-Accept, Access-Reject, or...
Linux Distros Unpatched Vulnerability : CVE-2024-46544
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect Default Permissions vulnerability in Apache Tomcat Connectors allows local users to view and modify shared memory containing modjk configuration which...
Linux Distros Unpatched Vulnerability : CVE-2024-0321
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV. CVE-2024-0321 Note that Nessus relies on the presence of the package as reported by...
Linux Distros Unpatched Vulnerability : CVE-2023-28746
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Information exposure through microarchitectural state after transient execution from some register files for some IntelR AtomR Processors may allow an...