24 matches found
NewStart CGSL MAIN 7.02 : expat Vulnerability (NS-SA-2026-0035)
The remote NewStart CGSL host, running version MAIN 7.02, has expat packages installed that are affected by a vulnerability: - An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms where UINTMAX equals SIZEMAX...
NewStart CGSL MAIN 7.02 : libsoup Vulnerability (NS-SA-2025-0122)
The remote NewStart CGSL host, running version MAIN 7.02, has libsoup packages installed that are affected by a vulnerability: - GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soupheaderparseparamliststrict. There is a plausible way to reac...
NewStart CGSL MAIN 7.02 : openvswitch Multiple Vulnerabilities (NS-SA-2025-0196)
The remote NewStart CGSL host, running version MAIN 7.02, has openvswitch packages installed that are affected by multiple vulnerabilities: - A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow ...
NewStart CGSL MAIN 7.02 : cryptopp Multiple Vulnerabilities (NS-SA-2025-0115)
The remote NewStart CGSL host, running version MAIN 7.02, has cryptopp packages installed that are affected by multiple vulnerabilities: - ModularSquareRoot in Crypto++ aka cryptopp through 8.9.0 allows attackers to cause a denial of service infinite loop via crafted DER public-key data associate...
NewStart CGSL MAIN 7.02 : fapolicyd Vulnerability (NS-SA-2025-0139)
The remote NewStart CGSL host, running version MAIN 7.02, has fapolicyd packages installed that are affected by a vulnerability: - A vulnerability was found in fapolicyd. The vulnerability occurs due to an assumption on how glibc names the runtime linker, a build time regular expression may not...
NewStart CGSL MAIN 7.02 : tuned Vulnerability (NS-SA-2025-0202)
The remote NewStart CGSL host, running version MAIN 7.02, has tuned packages installed that are affected by a vulnerability: - A script injection vulnerability was identified in the Tuned package. The instancecreate D-Bus function can be called by locally logged-in users without authentication...
NewStart CGSL MAIN 7.02 : python-requests Vulnerability (NS-SA-2025-0107)
The remote NewStart CGSL host, running version MAIN 7.02, has python-requests packages installed that are affected by a vulnerability: - Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests Session, if the first request is made with verify=False to disable cert...
NewStart CGSL MAIN 7.02 : librsvg2 Vulnerability (NS-SA-2025-0127)
The remote NewStart CGSL host, running version MAIN 7.02, has librsvg2 packages installed that are affected by a vulnerability: - A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files on the local filesystem outside ...
NewStart CGSL MAIN 7.02 : less Vulnerability (NS-SA-2025-0106)
The remote NewStart CGSL host, running version MAIN 7.02, has less packages installed that are affected by a vulnerability: - less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires us...
NewStart CGSL MAIN 7.02 : git Vulnerability (NS-SA-2025-0169)
The remote NewStart CGSL host, running version MAIN 7.02, has git packages installed that are affected by a vulnerability: - Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that...
NewStart CGSL MAIN 7.02 : OpenEXR Multiple Vulnerabilities (NS-SA-2025-0107)
The remote NewStart CGSL host, running version MAIN 7.02, has OpenEXR packages installed that are affected by multiple vulnerabilities: - Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, Academy Software Foundation OpenEX image parsing...
NewStart CGSL MAIN 7.02 : squashfs-tools Multiple Vulnerabilities (NS-SA-2025-0192)
The remote NewStart CGSL host, running version MAIN 7.02, has squashfs-tools packages installed that are affected by multiple vulnerabilities: - squashfsopendir in unsquash-2.c in Squashfs-Tools 4.5 allows Directory Traversal, a different vulnerability than CVE-2021-40153. A squashfs filesystem...
NewStart CGSL MAIN 7.02 : python-setuptools Vulnerability (NS-SA-2025-0181)
The remote NewStart CGSL host, running version MAIN 7.02, has python-setuptools packages installed that are affected by a vulnerability: - A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1 allows for remote code execution via its download functions. These...
NewStart CGSL MAIN 7.02 : libvpx Vulnerability (NS-SA-2025-0071)
The remote NewStart CGSL host, running version MAIN 7.02, has libvpx packages installed that are affected by a vulnerability: - There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpximgalloc with a large value of the dw, dh, or align parameter may result in integer...
NewStart CGSL MAIN 7.02 : jasper Vulnerability (NS-SA-2025-0082)
The remote NewStart CGSL host, running version MAIN 7.02, has jasper packages installed that are affected by a vulnerability: - An invalid memory write issue in Jasper-Software Jasper v.4.1.1 and before allows a local attacker to execute arbitrary code. CVE-2023-51257 Note that Nessus has not...
NewStart CGSL MAIN 7.02 : freeglut Vulnerability (NS-SA-2025-0090)
The remote NewStart CGSL host, running version MAIN 7.02, has freeglut packages installed that are affected by a vulnerability: - freeglut through 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddMenuEntry function. CVE-2024-24259 Note that Nessus has not...
NewStart CGSL MAIN 7.02 : libxml2 Vulnerability (NS-SA-2025-0072)
The remote NewStart CGSL host, running version MAIN 7.02, has libxml2 packages installed that are affected by a vulnerability: - libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c. CVE-2025-27113 Note that Nessus has not tested for these...
NewStart CGSL MAIN 7.02 : openssh Vulnerability (NS-SA-2025-0089)
The remote NewStart CGSL host, running version MAIN 7.02, has openssh packages installed that are affected by a vulnerability: - A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a...
NewStart CGSL MAIN 7.02 : tongsuo Multiple Vulnerabilities (NS-SA-2025-0075)
The remote NewStart CGSL host, running version MAIN 7.02, has tongsuo packages installed that are affected by multiple vulnerabilities: - Use of the low-level GF2^m elliptic curve APIs with untrusted explicit values for the field polynomial can lead to out-of-bounds memory reads or writes...
NewStart CGSL MAIN 7.02 : nghttp2 Vulnerability (NS-SA-2025-0078)
The remote NewStart CGSL host, running version MAIN 7.02, has nghttp2 packages installed that are affected by a vulnerability: - nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 keeps reading the unbounded number of HTTP/2...