755 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-30597
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in moodle where the description user field was not hidden when being set as a hidden user field. CVE-2022-30597 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2023-5546
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ID numbers displayed in the quiz grading report required additional sanitizing to prevent a stored XSS risk. CVE-2023-5546 Note that Nessus relies on the presen...
Linux Distros Unpatched Vulnerability : CVE-2024-34008
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Actions in the admin management of analytics models did not include the necessary token to prevent a CSRF risk. CVE-2024-34008 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2024-34007
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The logout option within MFA did not include the necessary token to avoid the risk of users inadvertently being logged out via CSRF. CVE-2024-34007 Note that...
Linux Distros Unpatched Vulnerability : CVE-2024-34006
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The site log report required additional encoding of event descriptions to ensure any HTML in the content is displayed in plaintext instead of being rendered...
Linux Distros Unpatched Vulnerability : CVE-2023-40318
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - Unknown description CVE-2023-40318 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 80900 C Tenabl...
Linux Distros Unpatched Vulnerability : CVE-2024-34001
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Actions in the admin preset tool did not include the necessary token to prevent a CSRF risk. CVE-2024-34001 Note that Nessus relies on the presence of the packa...
Linux Distros Unpatched Vulnerability : CVE-2016-0659
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availability via vectors related to Optimizer. CVE-2016-0659 Note that...
Linux Distros Unpatched Vulnerability : CVE-2022-38248
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nagios XI before v5.8.7 was discovered to contain multiple cross-site scripting XSS vulnerabilities at auditlog.php. CVE-2022-38248 Note that Nessus relies on t...
Linux Distros Unpatched Vulnerability : CVE-2022-0197
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - phoronix-test-suite is vulnerable to Cross-Site Request Forgery CSRF CVE-2022-0197 Note that Nessus relies on the presence of the package as reported by the...
Linux Distros Unpatched Vulnerability : CVE-2014-8089
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SQL injection vulnerability in Zend Framework before 1.12.9, 2.2.x before 2.2.8, and 2.3.x before 2.3.3, when using the sqlsrv PHP extension, allows remote...
Linux Distros Unpatched Vulnerability : CVE-2023-5544
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Wiki comments required additional sanitizing and access restrictions to prevent a stored XSS risk and potential IDOR risk. CVE-2023-5544 Note that Nessus relies...
Linux Distros Unpatched Vulnerability : CVE-2024-58240
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tls: separate no-async decryption request handling from async If we're not doing async, the handling is much simpler. There's no reference counting, we just nee...
Linux Distros Unpatched Vulnerability : CVE-2019-13239
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - inc/user.class.php in GLPI before 9.4.3 allows XSS via a user picture. CVE-2019-13239 Note that Nessus relies on the presence of the package as reported by the...
Linux Distros Unpatched Vulnerability : CVE-2023-35952
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple stack-based buffer overflow vulnerabilities exist in the readOFF.cpp functionality of libigl v2.4.0. A specially-crafted .off file can lead to a buffer...
Linux Distros Unpatched Vulnerability : CVE-2023-40324
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - Unknown description CVE-2023-40324 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 80900 C Tenabl...
Linux Distros Unpatched Vulnerability : CVE-2016-8642
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Moodle 2.x and 3.x, the question engine allows access to files that should not be available. CVE-2016-8642 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2025-38653
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: proc: use the same treatment to check proclseek as ones for procreaditer et.al Check...
Linux Distros Unpatched Vulnerability : CVE-2018-1000879
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libarchive version commit 379867ecb330b3a952fb7bfa7bffb7bbd5547205 onwards release v3.3.0 onwards contains a CWE-476: NULL Pointer Dereference vulnerability in...
Linux Distros Unpatched Vulnerability : CVE-2025-30192
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker spoofing answers to ECS enabled requests sent out by the Recursor has a chance of success higher than non-ECS enabled queries. The updated version...