8 matches found
CMS Made Simple <= 2.2.21 Multiple Vulnerabilities
CMS Made Simple is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Linux Distros Unpatched Vulnerability : CVE-2023-23004
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel before 5.19, drivers/gpu/drm/arm/malidpplanes.c misinterprets the getsgtable return value expects it to be NULL in the error case, whereas i...
Linux Distros Unpatched Vulnerability : CVE-2022-32511
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jmespath.rb aka JMESPath for Ruby before 1.6.1 uses JSON.load in a situation where JSON.parse is preferable. CVE-2022-32511 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2018-19824
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel through 4.19.6, a local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device with zero interface...
Linux Distros Unpatched Vulnerability : CVE-2017-9354
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the RGMP dissector could crash. This was addressed in epan/dissectors/packet-rgmp.c by validating an IPv4...
Linux Distros Unpatched Vulnerability : CVE-2014-5118
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Trusted Boot tboot before 1.8.2 has a 'loader.c' Security Bypass Vulnerability CVE-2014-5118 Note that Nessus relies on the presence of the package as reported ...
Linux Distros Unpatched Vulnerability : CVE-2017-13002
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The AODV parser in tcpdump before 4.9.2 has a buffer over-read in print-aodv.c:aodvextension. CVE-2017-13002 Note that Nessus relies on the presence of the...
Advisory: exmh symlink vulnerability
Author: Stan Bubrouski [email protected] Date: December 31, 2000 Package: exmh Versions affected: 2.2 and probably previous versions. Severity: A malicious local user could use a symlink attack to overwrite any file writable by the user executing exmh. Problem: When exmh detects a problem at start...