CVE-2024-45335

Trend Micro Antivirus One, version 3.10.4 and below contains a vulnerability that could allow an attacker to use a specifically crafted virus to allow itself to bypass and evade a virus scan detection...

CVE-2024-45335

Trend Micro Antivirus One (v3.10.4 and earlier) is affected due to insufficient input validation that could allow a specially crafted virus to bypass or evade virus scanning detection. The issue could potentially be exploited by a remote attacker to defeat detection. Remediation: upgrade to a ver...

CVE-2024-45335

Trend Micro Antivirus One, version 3.10.4 and below contains a vulnerability that could allow an attacker to use a specifically crafted virus to allow itself to bypass and evade a virus scan detection...

SUSE CVE-2024-50008

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix memcpy field-spanning write warning in mwifiexcmd80211scanext Replace one-element array with a flexible-array member in struct hostcmdds80211scanext. With this, fix the following warning: elo 16 17:51:58...

AZL-52287 CVE-2024-50008 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix memcpy field-spanning write warning in mwifiexcmd80211scanext Replace one-element array with a flexible-array member in struct hostcmdds80211scanext. With this, fix the following warning: elo 16 17:51:58...

DEBIAN-CVE-2024-50008

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix memcpy field-spanning write warning in mwifiexcmd80211scanext Replace one-element array with a flexible-array member in struct hostcmdds80211scanext. With this, fix the following warning: elo 16 17:51:58...

DEBIAN-CVE-2024-50005

In the Linux kernel, the following vulnerability has been resolved: mac802154: Fix potential RCU dereference issue in mac802154scanworker In the mac802154scanworker function, the scanreq-type field was accessed after the RCU read-side critical section was unlocked. According to RCU usage rules,...

UBUNTU-CVE-2024-50005

In the Linux kernel, the following vulnerability has been resolved: mac802154: Fix potential RCU dereference issue in mac802154scanworker In the mac802154scanworker function, the scanreq-type field was accessed after the RCU read-side critical section was unlocked. According to RCU usage rules,...

UBUNTU-CVE-2024-50008

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix memcpy field-spanning write warning in mwifiexcmd80211scanext Replace one-element array with a flexible-array member in struct hostcmdds80211scanext. With this, fix the following warning: elo 16 17:51:58...

DEBIAN-CVE-2024-47738

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: don't use rate mask for offchannel TX either Like the commit ab9177d83c04 "wifi: mac80211: don't use rate mask for scanning", ignore incorrect settings to avoid no supported rate warning reported by syzbot. The...

PT-2024-33847

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58 Description: A vulnerability in the Linux kernel has been fixed, involving the mwifiex WiFi driver. The issue was a memcpy field-spanning write warning in the mwifiex cmd 802 11 scan ext function. This...

[NetScaler-AAA] MAC address EPA scan on macOS 15 may fail

If you have EPA policies to scan Gateway clients MAC address, it may fail after end users upgrading macOS to version 15. Log says, the MAC address predefined in EPA policy cannot be found. Log sample: 2024-09-26 15:54:30 Epa Failed2024-09-26 15:54:30 Case ID : 9fc302024-09-26 15:54:30 Epa log msg...

Qnap QTS Command Injection (CVE-2024-21903)

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.6.2722...

Qnap QTS Command Injection (CVE-2018-0730)

This command injection vulnerability in File Station allows attackers to execute commands on the affected device. To fix the vulnerability, QNAP recommend updating QTS to their latest versions. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for mo...

PT-2024-35557

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.65 Description A vulnerability in the Linux kernel has been resolved, related to the nvme-multipath feature. The issue occurs when a partition scan is performed within the controller's scan work context, whic...

Fedora 39 : libgsf (2024-7d06f67cf5)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-7d06f67cf5 advisory. Fixes for memory vulnerabilities. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

Fedora 40 : firefox (2024-db72f480e8)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-db72f480e8 advisory. - New upstream version 131.0.2 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

CVE-2024-23375

Memory corruption during the network scan request...

CVE-2024-23375 Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in RIL

Memory corruption during the network scan request...

CVE-2024-23375

CVE-2024-23375 relates to memory corruption in Qualcomm chipsets, stemming from a buffer copy in the RIL that does not check input size. Multiple sources (NVD/Red Hat/CVE Repo) describe the issue as a memory corruption during the network scan request, with impact described as high for confidentia...