19 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-22232
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTML injection was possible via the full name field before versions 13.11.6, 13.12.6, and 14.0.2 in GitLab CE CVE-2021-22232 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2016-7652
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before...
Linux Distros Unpatched Vulnerability : CVE-2025-8582
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of untrusted input in Core in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to spoof the contents of the Omnibox URL ba...
Linux Distros Unpatched Vulnerability : CVE-2021-31808
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to an input-validation bug, it is vulnerable to a Denial of Service attack against all...
Fedora 42 : firefox (2025-e689575030)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-e689575030 advisory. - Updated to new upstream release 142.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...
Linux Distros Unpatched Vulnerability : CVE-2016-7550
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - asterisk 13.10.0 is affected by: denial of service issues in asterisk. The impact is: cause a denial of service remote. CVE-2016-7550 Note that Nessus relies on...
Linux Distros Unpatched Vulnerability : CVE-2014-2901
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wolfssl before 3.2.0 does not properly issue certificates for a server's hostname. CVE-2014-2901 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2022-1061
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap Buffer Overflow in parseDragons in GitHub repository radareorg/radare2 prior to 5.6.8. CVE-2022-1061 Note that Nessus relies on the presence of the package...
Linux Distros Unpatched Vulnerability : CVE-2018-6165
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect handling of reloads in Navigation in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a...
Linux Distros Unpatched Vulnerability : CVE-2022-22816
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pathgetbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path. CVE-2022-22816 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2021-47475
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - comedi: vmk80xx: fix transfer-buffer overflows The driver uses endpoint-sized USB transfer buffers but up until recently had no sanity checks on the sizes. Comm...
Plex Media Server 1.41.7.x < 1.42.1 Undisclosed Vulnerability
According to its version, the Plex Media Server installed on the remote host is 1.41.7.x prior to 1.42.1. It is, therefore, affected by an undisclosed vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number...
Linux Distros Unpatched Vulnerability : CVE-2024-42097
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ALSA: emux: improve patch ioctl data validation In loaddata, make the validation of and skipping over the main info block match that in loadguspatch. In...
Linux Distros Unpatched Vulnerability : CVE-2024-57259
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sqfssearchdir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path...
Linux Distros Unpatched Vulnerability : CVE-2020-26973
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Certain input to the CSS Sanitizer confused it, resulting in incorrect components being removed. This could have been used as a sanitizer bypass. This...
Linux Distros Unpatched Vulnerability : CVE-2024-38609
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: connac: check for null before dereferencing The wcid can be NULL. It should be...
Linux Distros Unpatched Vulnerability : CVE-2024-44937
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: platform/x86: intel-vbtn: Protect ACPI notify handler against recursion Since commit...
Linux Distros Unpatched Vulnerability : CVE-2018-18502
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla developers and community members reported memory safety bugs present in Firefox 64. Some of these bugs showed evidence of memory corruption and we presu...
Linux Distros Unpatched Vulnerability : CVE-2025-46420
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libsoup. It is vulnerable to memory leaks in the soupheaderparsequalitylist function when parsing a quality list that contains elements with...