754 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-52567
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In versions 0.84...
Linux Distros Unpatched Vulnerability : CVE-2018-16472
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A prototype pollution attack in cached-path-relative versions =1.0.1 allows an attacker to inject properties on Object.prototype which are then inherited by all...
Linux Distros Unpatched Vulnerability : CVE-2025-38484
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iio: backend: fix out-of-bound write The buffer is set to 80 character. If a caller write mo...
Linux Distros Unpatched Vulnerability : CVE-2018-16492
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A prototype pollution vulnerability was found in module extend 2.0.2, 3.0.2 that allows an attacker to inject arbitrary properties onto Object.prototype...
Linux Distros Unpatched Vulnerability : CVE-2017-8294
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libyara/re.c in the regex component in YARA 3.5.0 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted ru...
Linux Distros Unpatched Vulnerability : CVE-2022-3123
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site Scripting XSS - Reflected in GitHub repository splitbrain/dokuwiki prior to 2022-07-31a. CVE-2022-3123 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2017-15573
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Redmine before 3.2.6 and 3.3.x before 3.3.3, XSS exists because markup is mishandled in wiki content. CVE-2017-15573 Note that Nessus relies on the presence ...
Linux Distros Unpatched Vulnerability : CVE-2021-22930
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption, to change...
Linux Distros Unpatched Vulnerability : CVE-2023-53161
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The buffered-reader crate before 1.1.5 for Rust allows out-of-bounds array access and a panic. CVE-2023-53161 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2025-38477
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/sched: schqfq: Fix race condition on qfqaggregate A race condition can occur when 'agg' is modified in qfqchangeagg called during qfqenqueue while other...
Linux Distros Unpatched Vulnerability : CVE-2025-38405
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: nvmet: fix memory leak of bio integrity If nvmet receives commands with metadata there is a...
Linux Distros Unpatched Vulnerability : CVE-2022-25802
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Best Practical Request Tracker RT before 4.4.6 and 5.x before 5.0.3 allows XSS via a crafted content type for an attachment. CVE-2022-25802 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2024-45993
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb. CVE-2024-45993 Note that Nessus relies on the presence of the package as reported by...
Linux Distros Unpatched Vulnerability : CVE-2024-22259
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Applications that use UriComponentsBuilder in Spring Framework to parse an externally provided URL e.g. through a query parameter AND perform validation checks ...
Linux Distros Unpatched Vulnerability : CVE-2019-1010266
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lodash prior to 4.17.11 is affected by: CWE-400: Uncontrolled Resource Consumption. The impact is: Denial of service. The component is: Date handler. The attack...
Linux Distros Unpatched Vulnerability : CVE-2017-9438
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libyara/re.c in the regexp module in YARA 3.5.0 allows remote attackers to cause a denial of service stack consumption via a crafted rule involving hex strings...
Linux Distros Unpatched Vulnerability : CVE-2022-1809
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Access of Uninitialized Pointer in GitHub repository radareorg/radare2 prior to 5.7.0. CVE-2022-1809 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2021-29482
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format...
Linux Distros Unpatched Vulnerability : CVE-2021-39517
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function BlockBitmapRequester::ReconstructUnsampled located in...
Linux Distros Unpatched Vulnerability : CVE-2023-1605
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Denial of Service in GitHub repository radareorg/radare2 prior to 5.8.6. CVE-2023-1605 Note that Nessus relies on the presence of the package as reported by the...