2348 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-32719
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.18, when a federation link was displayed in the RabbitMQ management UI vi...
Linux Distros Unpatched Vulnerability : CVE-2024-3661
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DHCP can add routes to a client's routing table via the classless static route option 121. VPN-based security solutions that rely on routes to redirect traffic...
Linux Distros Unpatched Vulnerability : CVE-2024-26920
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tracing/trigger: Fix to return error if failed to alloc snapshot Fix registersnapshottrigger to return error code if it failed to allocate a snapshot instead of...
Linux Distros Unpatched Vulnerability : CVE-2021-45115
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. UserAttributeSimilarityValidator incurred significant overhead in...
Linux Distros Unpatched Vulnerability : CVE-2024-45231
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Django v5.1.1, v5.0.9, and v4.2.16. The django.contrib.auth.forms.PasswordResetForm class, when used in a view implementing password...
Linux Distros Unpatched Vulnerability : CVE-2020-25674
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WriteOnePNGImage from coders/png.c the PNG coder has a for loop with an improper exit condition that can allow an out-of-bounds READ via heap-buffer-overflow...
Linux Distros Unpatched Vulnerability : CVE-2022-25327
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The PAM module for fscrypt doesn't adequately validate fscrypt metadata files, allowing users to create malicious metadata files that prevent other users from...
Linux Distros Unpatched Vulnerability : CVE-2024-38809
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Applications that parse ETags from If-Match or If-None-Match request headers are vulnerable to DoS attack. Users of affected versions should upgrade to the...
Linux Distros Unpatched Vulnerability : CVE-2021-42523
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There are two Information Disclosure vulnerabilities in colord, and they lie in colord/src/cd-device-db.c and colord/src/cd-profile-db.c separately. They exist...
Linux Distros Unpatched Vulnerability : CVE-2022-35583
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wkhtmlTOpdf 0.12.6 is vulnerable to SSRF which allows an attacker to get initial access into the target's system by injecting iframe tag with initial asset IP...
Linux Distros Unpatched Vulnerability : CVE-2021-41495
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Null Pointer Dereference vulnerability exists in numpy.sort in NumPy and 1.19 in the PyArrayDescrNew function due to missing return-value validation, which allo...
Linux Distros Unpatched Vulnerability : CVE-2023-37276
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. aiohttp v3.8.4 and earlier are bundled with llhttp v6.0.6. Vulnerable code is us...
Linux Distros Unpatched Vulnerability : CVE-2024-33869
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur via a crafted PostScript document because of path...
Linux Distros Unpatched Vulnerability : CVE-2020-25663
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A call to ConformPixelInfo in the SetImageAlphaChannel routine of /MagickCore/channel.c caused a subsequent heap-use-after-free or heap-buffer-overflow READ whe...
Linux Distros Unpatched Vulnerability : CVE-2024-41058
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in fscachewithdrawvolume We got the following issue in...
Linux Distros Unpatched Vulnerability : CVE-2024-4068
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The NPM package braces, versions prior to 3.0.3, fails to limit the number of characters it can handle, which could lead to Memory Exhaustion. In lib/parse.js, ...
Linux Distros Unpatched Vulnerability : CVE-2020-24588
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The 802.11 standard that underpins Wi-Fi Protected Access WPA, WPA2, and WPA3 and Wired Equivalent Privacy WEP doesn't require that the A-MSDU flag in the...
Linux Distros Unpatched Vulnerability : CVE-2023-5088
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset to be targeted to offset 0 instead potentially overwriting the...
Linux Distros Unpatched Vulnerability : CVE-2023-28487
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sudo before 1.9.13 does not escape control characters in sudoreplay output. CVE-2023-28487 Note that Nessus relies on the presence of the package as reported by...
Linux Distros Unpatched Vulnerability : CVE-2024-26846
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nvme-fc: do not wait in vain when unloading module The module exit path has race between deleting all controllers and freeing 'left over IDs'. To prevent double...