Lucene search
+L

410 matches found

Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.22 views

RHEL 5 : php-pear (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - php-pear: File overwrite by malicious server CVE-2017-5630 Note that Nessus has not tested for this issue but has...

7.5CVSS7.3AI score0.12513EPSS
Exploits5References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.22 views

RHEL 5 : apr-util (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - apr-util, httpd: Billion laughs attack regression CVE-2016-6312 Note that Nessus has not tested for this issue but...

6.5CVSS7.6AI score0.02199EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.16 views

RHEL 5 : libxinerama (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libXinerama: Integer overflow leading to heap-based buffer overflow CVE-2013-1985 Note that Nessus has not tested f...

6.8CVSS7AI score0.01817EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.18 views

RHEL 5 : nfs-utils (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nfs-utils: rpc.gssd is vulnerable to DNS spoofing CVE-2013-1923 Note that Nessus has not tested for this issue but...

3.2CVSS7.2AI score0.01045EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.16 views

RHEL 5 : tog-pegasus (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - tog-pegasus: xml hash table collision CPU usage DoS CVE-2011-4967 Note that Nessus has not tested for this issue bu...

7.5CVSS7.1AI score0.02653EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.21 views

RHEL 5 : sos (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - sos: Usage of predictable temporary files allows privilege escalation CVE-2015-7529 Note that Nessus has not tested...

7.8CVSS7.9AI score0.00438EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.14 views

RHEL 5 : flex (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - flex: Recursive calls in the function markbeginningasnormal resulting in a denial of service CVE-2019-6293 Note tha...

5.6AI score0.01588EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.42 views

RHEL 5 : Red Hat JBoss Enterprise Application Platform 6.4.19 (RHSA-2018:0271)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0271 advisory. Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server. This release of Red...

8.1CVSS7.7AI score0.99988EPSS
Exploits28References11
Tenable Nessus
Tenable Nessus
added 2024/04/21 12:0 a.m.24 views

RHEL 5 : redhat-ds-base (RHSA-2008:0269)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2008:0269 advisory. Red Hat Directory Server is an LDAPv3 compliant server. The redhat-ds-base package includes the LDAP server and command line utilities for server...

7.5CVSS6.4AI score0.04931EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2020/07/01 11:21 a.m.123 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.23 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 6.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7AI score0.9927EPSS
Exploits46References11
RedHat Linux
RedHat Linux
added 2020/07/01 10:57 a.m.92 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.23 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 6.4 for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.8CVSS7AI score0.9927EPSS
Exploits46References11
RedHat Linux
RedHat Linux
added 2020/07/01 10:55 a.m.117 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.23 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 6.4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.8CVSS7AI score0.9927EPSS
Exploits46References11
Tenable Nessus
Tenable Nessus
added 2020/07/01 12:0 a.m.58 views

RHEL 5 : Red Hat JBoss Enterprise Application Platform 6.4.23 (RHSA-2020:2781)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2781 advisory. Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server. This release of Red...

9.8CVSS7.7AI score0.9927EPSS
Exploits46References14
Veracode
Veracode
added 2020/04/10 1:8 a.m.25 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as the fix for CVE-2011-2482 provided by RHSA-2011:1212 introduced a regression: on systems that do not have Security-Enhanced Linux SELinux in Enforcing mode, a socket lock race could occur between sctprcv and sctpaccept. A...

7.5CVSS2.9AI score0.03769EPSS
Exploits1References11Affected Software1
Veracode
Veracode
added 2020/04/10 1:3 a.m.21 views

Denial Of Service (DoS)

openswan is vulnerable to denial of service DoS. The vulnerability exists as a use-after-free flaw was found in the way Openswan's pluto IKE daemon used cryptographic helpers. A remote, authenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon. This issue...

4CVSS2.5AI score0.02086EPSS
Exploits0References10Affected Software1
Veracode
Veracode
added 2020/04/10 12:21 a.m.24 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as a flaw was found in the backported stack unwinder fixes in Red Hat Enterprise Linux 5. On AMD64 and Intel 64 platforms, a local user could trigger this flaw and cause a denial of service...

4.7CVSS2AI score0.00363EPSS
Exploits0References8Affected Software1
Veracode
Veracode
added 2020/04/10 12:20 a.m.28 views

Arbitrary Code Execution

cups is vulnerable to arbitrary code execution. The vulnerability exists as a heap buffer overflow flaw was found in a CUPS administration interface CGI script. A local attacker able to connect to the IPP port TCP port 631 could send a malicious request causing the script to crash or, potentially...

9.3CVSS1.7AI score0.06765EPSS
Exploits1References28Affected Software1
Veracode
Veracode
added 2020/04/10 12:16 a.m.30 views

Denial Of Service (DoS)

httpd is vulnerable to denial of service DoS. The vulnerability exists as the Apache HTTP Server did not verify that a process was an Apache child process before sending it signals. A local attacker with the ability to run scripts on the Apache HTTP Server could manipulate the scoreboard and caus...

4.7CVSS0.7AI score0.03298EPSS
Exploits2References414Affected Software1
Prion
Prion
added 2019/11/07 11:15 p.m.22 views

Design/Logic Flaw

frysk packages through 2008-08-05 as shipped in Red Hat Enterprise Linux 5 are built with an insecure RPATH set in the ELF header of multiple binaries in /usr/bin/f e.g. fcore, fcatch, fstack, fstep, ... shipped in the package. A local attacker can exploit this vulnerability by running arbitrary...

4.6CVSS7.3AI score0.0035EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2019/11/07 10:43 p.m.24 views

CVE-2008-3278

frysk packages through 2008-08-05 as shipped in Red Hat Enterprise Linux 5 are built with an insecure RPATH set in the ELF header of multiple binaries in /usr/bin/f e.g. fcore, fcatch, fstack, fstep, ... shipped in the package. A local attacker can exploit this vulnerability by running arbitrary...

7.7AI score0.0035EPSS
Exploits0References3
Rows per page
Query Builder