754 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-4557
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple Denial of Service DoS conditions has been discovered in GitLab CE/EE affecting all versions starting from 1.0 prior to 16.11.5, starting from 17.0 prio...
Linux Distros Unpatched Vulnerability : CVE-2023-40550
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data during the system's boot phase...
Linux Distros Unpatched Vulnerability : CVE-2020-13933
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Shiro before 1.6.0, when using Apache Shiro, a specially crafted HTTP request may cause an authentication bypass. CVE-2020-13933 Note that Nessus relies ...
Linux Distros Unpatched Vulnerability : CVE-2020-28037
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - isbloginstalled in wp-includes/functions.php in WordPress before 5.5.2 improperly determines whether WordPress is already installed, which might allow an attack...
Linux Distros Unpatched Vulnerability : CVE-2021-28963
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Shibboleth Service Provider before 3.2.1 allows content injection because template generation uses attacker-controlled parameters. CVE-2021-28963 Note that Ness...
Linux Distros Unpatched Vulnerability : CVE-2023-4693
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read flaw was found on grub2's NTFS filesystem driver. This issue may allow a physically present attacker to present a specially crafted NTFS...
Linux Distros Unpatched Vulnerability : CVE-2024-36462
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Uncontrolled resource consumption refers to a software vulnerability where a attacker or system uses excessive resources, such as CPU, memory, or network...
Linux Distros Unpatched Vulnerability : CVE-2021-44758
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via a preferredmechtype of GSSCNOOID and a nonzero initialrespons...
Linux Distros Unpatched Vulnerability : CVE-2019-19638
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libsixel 1.8.2. There is a heap-based buffer overflow in the function loadpnm at frompnm.c, due to an integer overflow. CVE-2019-1963...
Linux Distros Unpatched Vulnerability : CVE-2022-35048
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b0b2c. CVE-2022-35048 Note that Nessus relies on the presenc...
Linux Distros Unpatched Vulnerability : CVE-2018-10935
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the 389 Directory Server that allows users to cause a crash in the LDAP server using ldapsearch with server side sort. CVE-2018-10935 Note...
Linux Distros Unpatched Vulnerability : CVE-2022-1244
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - heap-buffer-overflow in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is capable of inducing denial of service. CVE-2022-1244 Note that...
Linux Distros Unpatched Vulnerability : CVE-2021-22227
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A reflected cross-site script vulnerability in GitLab before versions 13.11.6, 13.12.6 and 14.0.2 allowed an attacker to send a malicious link to a victim and...
Linux Distros Unpatched Vulnerability : CVE-2017-0356
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw, similar to to CVE-2016-9646, exists in ikiwiki before 3.20170111, in the passwordauth plugin's use of CGI::FormBuilder, allowing an attacker to bypass...
Linux Distros Unpatched Vulnerability : CVE-2017-2896
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An exploitable out-of-bounds write vulnerability exists in the xlsmergedCells function of libxls 1.4. . A specially crafted XLS file can cause a memory corrupti...
Linux Distros Unpatched Vulnerability : CVE-2016-6632
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in phpMyAdmin where, under certain conditions, phpMyAdmin may not delete temporary files during the import of ESRI files. All 4.6.x...
Linux Distros Unpatched Vulnerability : CVE-2019-14872
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dtoar function of the newlib libc library, prior to version 3.3.0, performs multiple memory allocations without checking their return value. This could resu...
Linux Distros Unpatched Vulnerability : CVE-2019-11391
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a...
Linux Distros Unpatched Vulnerability : CVE-2019-10654
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The lzo1xdecompress function in liblzo2.so.2 in LZO 2.10, as used in Long Range Zip aka lrzip 0.631, allows remote attackers to cause a denial of service invali...
Linux Distros Unpatched Vulnerability : CVE-2016-10531
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - marked is an application that is meant to parse and compile markdown. Due to the way that marked 0.3.5 and earlier parses input, specifically HTML entities, it'...