SaltStack Salt API Unauthenticated RCE through wheel_async client

This module leverages an authentication bypass and directory traversal vulnerabilities in Saltstack Salt's REST API to execute commands remotely on the master as the root user. Every 60 seconds, salt-master service performs a maintenance process check that reloads and executes all the grains on t...

PT-2021-4110 · Genivia +1 · Genivi Diagnostic Log/Trace +1

Name of the Vulnerable Software and Affected Versions: GENIVI Diagnostic Log and Trace DLT versions 2.10.0 through 2.18.6 Description: The issue is related to the incorrect handling of special characters in configuration files, which can cause a vulnerable component to crash. This can lead to...

PT-2021-17484 · Netasq +2 · Netasq +2

Name of the Vulnerable Software and Affected Versions: Stormshield Network Security versions 1.0.0 through 4.2.0 Netasq versions 9.1.0 through 9.1.11 Description: The issue affects the ClamAV Engine component, which can be subject to a Denial of Service DoS when parsing malformed png files, leadi...

CVE-2020-12768 affecting package kernel 5.4.91-6

CVE-2020-12768 affecting package kernel 5.4.91-6. A patched version of the package is available...

CVE-2020-12659 affecting package kernel 5.4.91-6

CVE-2020-12659 affecting package kernel 5.4.91-6. A patched version of the package is available...

CVE-2020-10711 affecting package kernel 5.4.91-6

CVE-2020-10711 affecting package kernel 5.4.91-6. A patched version of the package is available...

CVE-2020-11608 affecting package kernel 5.4.91-6

CVE-2020-11608 affecting package kernel 5.4.91-6. A patched version of the package is available...

Tenable SecurityCenter < 5.14.0 Multiple Vulnerabilities (TNS-2020-02)

According to its self-reported version, the Tenable SecurityCenter application installed on the remote host is earlier than 5.14.0. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for these issues nor the stand-alone patch but has instead relied only on the...

SonicWall Secure Mobile Access Remote Code Execution (SNWLID-2021-0001)

According to its self-reported version, the remote SonicWall Secure Mobile Access is affected by a remote code execution vulnerability. An unauthenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands. Note that Nessus has not tested for these issues bu...

PT-2021-16511 · Belkin · Belkin Linksys Wrt160Nl

Name of the Vulnerable Software and Affected Versions: Belkin Linksys WRT160NL version 1.0.04.002 US 20130619 Description: The administration web interface on Belkin Linksys WRT160NL devices allows remote authenticated attackers to execute system commands with root privileges via shell...

CVE-2020-15437 affecting package kernel 5.4.91-6

CVE-2020-15437 affecting package kernel 5.4.91-6. A patched version of the package is available...

CVE-2020-35494 affecting package binutils 2.32-5

CVE-2020-35494 affecting package binutils 2.32-5. A patched version of the package is available...

PT-2021-14791 · Moodle +1 · Moodle +1

Name of the Vulnerable Software and Affected Versions: Moodle version 3.10 Description: A command execution vulnerability exists in the default legacy spellchecker plugin. This issue can be exploited through a specially crafted series of HTTP requests, leading to command execution. An attacker mu...

PT-2021-1692 · Cisco · Cisco Small Business Rv130W +3

Name of the Vulnerable Software and Affected Versions: Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers affected versions not specified Description: The issue is related to multiple vulnerabilities in the web-based management interface of the affected routers. These vulnerabilities...

PT-2021-7592 · Cgal +1 · Cgal +1

Name of the Vulnerable Software and Affected Versions: CGAL libcgal version 5.1.1 Description: The issue is related to the Nef polygon-parsing functionality and involves an out-of-bounds read and type confusion, potentially leading to code execution. This can be triggered by a specially crafted...

PT-2020-17295 · WordPress · Secure-File-Manager

Name of the Vulnerable Software and Affected Versions: Secure-file-manager plugin versions through 2.5 for WordPress Description: The issue arises from the secure-file-manager plugin loading elFinder code without proper access control, allowing any authenticated user to run the elFinder upload...

CVE-2020-14364 affecting package qemu-kvm 4.2.0-48

CVE-2020-14364 affecting package qemu-kvm 4.2.0-48. A patched version of the package is available...

PT-2020-4762 · Microsoft · Raw Image Extension

Name of the Vulnerable Software and Affected Versions: Raw Image Extension affected versions not specified Description: The issue is related to a buffer overflow in the Raw Image Extension plugin. This could allow a remote attacker to execute arbitrary code. Recommendations: At the moment, there ...

PT-2020-4879 · Microsoft · Windows Ntfs +1

Name of the Vulnerable Software and Affected Versions: Windows Network File System NFS affected versions not specified Description: The issue is related to a buffer overflow in the Network File System NFS of Windows operating systems. This can be exploited to gain unauthorized access to protected...

CVE-2020-11102 affecting package qemu-kvm 4.2.0-48

CVE-2020-11102 affecting package qemu-kvm 4.2.0-48. A patched version of the package is available...