Linux Distros Unpatched Vulnerability : CVE-2024-6119

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: Applications performing certificate name checks e.g., TLS clients checking server certificates may attempt to read an invalid memory address...

Linux Distros Unpatched Vulnerability : CVE-2024-50242

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fs/ntfs3: Additional check in ntfsfilerelease CVE-2024-50242 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 809...

Linux Distros Unpatched Vulnerability : CVE-2024-8900

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker could write data to the user's clipboard, bypassing the user prompt, during a certain sequence of navigational events. This vulnerability affects...

Linux Distros Unpatched Vulnerability : CVE-2018-18454

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CCITTFaxStream::readRow in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted pdf file, as...

Linux Distros Unpatched Vulnerability : CVE-2018-7173

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding...

Linux Distros Unpatched Vulnerability : CVE-2024-50602

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libexpat before 2.6.4. There is a crash within the XMLResumeParser function because XMLStopParser can stop/suspend an unstarted parse...

Linux Distros Unpatched Vulnerability : CVE-2024-57966

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libarchiveplugin.cpp in KDE ark before 24.12.0 can extract to an absolute path from an archive. CVE-2024-57966 Note that Nessus relies on the presence of the...

Linux Distros Unpatched Vulnerability : CVE-2024-50047

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in async decryption Doing an async decryption large read crashes with a...

Linux Distros Unpatched Vulnerability : CVE-2024-7255

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds read in WebTransport in Google Chrome prior to 127.0.6533.88 allowed a remote attacker to potentially perform out of bounds memory access via a...

Linux Distros Unpatched Vulnerability : CVE-2023-7258

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A denial of service exists in Gvisor Sandbox where a bug in reference counting code in mount point tracking could lead to a panic, making it possible for an...

Linux Distros Unpatched Vulnerability : CVE-2023-3111

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use after free vulnerability was found in preparetorelocate in fs/btrfs/relocation.c in btrfs in the Linux Kernel. This possible flaw can be triggered by...

Linux Distros Unpatched Vulnerability : CVE-2023-42794

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incomplete Cleanup vulnerability in Apache Tomcat. The internal fork of Commons FileUpload packaged with Apache Tomcat 9.0.70 through 9.0.80 and 8.5.85 through...

Linux Distros Unpatched Vulnerability : CVE-2023-4752

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use After Free in GitHub repository vim/vim prior to 9.0.1858. CVE-2023-4752 Note that Nessus relies on the presence of the package as reported by the vendor...

Linux Distros Unpatched Vulnerability : CVE-2024-23271

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A logic issue was addressed with improved checks. This issue is fixed in Safari 17.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, tvOS 17.3, watchOS 10.3. A...

Linux Distros Unpatched Vulnerability : CVE-2021-31162

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the standard library in Rust before 1.52.0, a double free can occur in the Vec::fromiter function if freeing the element panics. CVE-2021-31162 Note that...

Linux Distros Unpatched Vulnerability : CVE-2024-38632

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vfio/pci: fix potential memory leak in vfiointxenable If vfioirqctxalloc failed will lead to 'name' memory leak. CVE-2024-38632 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2022-49376

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: sd: Fix potential NULL pointer dereference If sdprobe sees an early error before sdkp-device is initialized, sdzbcreleasedisk is called. This causes a NUL...

Linux Distros Unpatched Vulnerability : CVE-2021-37533

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Prior to Apache Commons Net 3.9.0, Net's FTP client trusts the host from PASV response by default. A malicious server can redirect the Commons Net code to use a...

Linux Distros Unpatched Vulnerability : CVE-2023-50868

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Closest Encloser Proof aspect of the DNS protocol in RFC 5155 when RFC 9276 guidance is skipped allows remote attackers to cause a denial of service CPU...

Linux Distros Unpatched Vulnerability : CVE-2021-45293

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Denial of Service vulnerability exists in Binaryen 103 due to an Invalid memory address dereference in wasm::WasmBinaryBuilder::visitLet. CVE-2021-45293 Note...