PT-2025-24427 · Lucky · Lucky Lm-520-Fsc +2

Name of the Vulnerable Software and Affected Versions: Lucky LM-520-SC, LM-520-FSC and LM-520-FSC-SAM up to 20250321 Description: A vulnerability classified as problematic was found in the affected devices, leading to missing authentication. The manipulation can be launched remotely, and the...

Oracle Linux 9 : gtk3 (ELSA-2024-9184)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-9184 advisory. - Stop looking for modules in cwd CVE-2024-6655 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to apply the same fix to code in the compatibility path of a 32-bit kernel that handles 64-bit...

CVE-2023-2319

It was discovered that an update for PCS package in RHBA-2023:2151 erratum released as part of Red Hat Enterprise Linux 9.2 failed to include the fix for the Webpack issue CVE-2023-28154 for PCS package, which was previously addressed in Red Hat Enterprise Linux 9.1 via erratum RHSA-2023:1591. Th...

PT-2023-36109 · Drbd · Drbd

Name of the Vulnerable Software and Affected Versions: drbd affected versions not specified Description: The issue concerns a rebuild of the drbd package with a new secure boot key. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...

SUSE CVE-2022-3466

The version of cri-o as released for Red Hat OpenShift Container Platform 4.9.48, 4.10.31, and 4.11.6 via RHBA-2022:6316, RHBA-2022:6257, and RHBA-2022:6658, respectively, included an incorrect version of cri-o missing the fix for CVE-2022-27652, which was previously fixed in OCP 4.9.41 and 4.10....

GSD-2021-1000584 interconnect: qcom: bcm-voter: add a missing of_node_put()

interconnect: qcom: bcm-voter: add a missing ofnodeput This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.42 by commit...

CVE-2016-9598

libxml2, as used in Red Hat JBoss Core Services, allows context-dependent attackers to cause a denial of service out-of-bounds read and application crash via a crafted XML document. NOTE: this vulnerability exists because of a missing fix for CVE-2016-4483...

CVE-2016-9598

libxml2, as used in Red Hat JBoss Core Services, allows context-dependent attackers to cause a denial of service out-of-bounds read and application crash via a crafted XML document. NOTE: this vulnerability exists because of a missing fix for CVE-2016-4483...

CVE-2016-9598

libxml2, as used in Red Hat JBoss Core Services, allows context-dependent attackers to cause a denial of service out-of-bounds read and application crash via a crafted XML document. NOTE: this vulnerability exists because of a missing fix for CVE-2016-4483...

IBM MQ 8.x < 8.0.0.3 Multiple Information Disclosure (credentialed check)

The version of IBM MQ formerly IBM WebSphere MQ 8.x installed on the remote Windows host is missing fix pack 8.0.0.3 or later. It is, therefore, affected by the following vulnerabilities : - A flaw exists in the Advanced Message Security policy when a JMS client application sends a message to the...

IBM WebSphere MQ 7.1 < 7.1.0.5 / 7.5 < 7.5.0.3 Multiple Vulnerabilities

The version of IBM WebSphere MQ server 7.1 / 7.5 installed on the remote Windows host is missing fix pack 7.1.0.5 / 7.5.0.3 or later. It is, therefore, affected by the following vulnerabilities : - An information disclosure vulnerability exists due to a failure to sanitize user-supplied input in...

Cross site scripting

Cross-site scripting XSS vulnerability in jsp/cal/cal2.jsp in the calendar application in the examples web application in Apache Tomcat on Red Hat Enterprise Linux 5, Desktop Workstation 5, and Linux Desktop 5 allows remote attackers to inject arbitrary web script or HTML via the time parameter,...

tomcat: missing fix for CVE-2009-0781

Cross-site scripting XSS vulnerability in jsp/cal/cal2.jsp in the calendar application in the examples web application in Apache Tomcat on Red Hat Enterprise Linux 5, Desktop Workstation 5, and Linux Desktop 5 allows remote attackers to inject arbitrary web script or HTML via the time parameter,...

AIX 6.1 TL 1 : printers.rte (U813450)

The remote host is missing AIX PTF U813450, which is related to the security of the package printers.rte. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from AIX Security PTF U813450. The text itself is copyright C...

HP-UX Security Patch : PHSS_24945

X OV EMANATE14.2 Agent Consolidated Patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26612; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate",...

Solaris 2.5.1 (sparc) : 108194-03

The remote host is missing Sun Security Patch number 108194-03 CDE 1.0.2: dtprintinfo patch. Date this patch was last updated by Sun : Wed Aug 09 18:00:00 MDT 2000 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as...