56 matches found
ROOT-OS-DEBIAN-11-CVE-2022-50163 CVE-2022-50163 in rootio-linux - Patched by Root
Root has patched CVE-2022-50163 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...
RHCOS 4 : OpenShift Container Platform 4.6.55 (RHSA-2022:0565)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0565 advisory. - jenkins: no POST request is required for the endpoint handling manual build requests which could result in CSRF CVE-2022-20612 -...
RHCOS 4 : OpenShift Container Platform 4.10.6 (RHSA-2022:1025)
The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:1025 advisory. - workflow-cps: OS command execution through crafted SCM contents CVE-2022-25173 - workflow-cps-global-lib: OS command execution...
RHCOS 3 : OpenShift Container Platform 3.11.715 (RHSA-2022:4999)
The remote Red Hat Enterprise Linux CoreOS 3 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:4999 advisory. - cri-o: memory exhaustion on the node when access to the kube api CVE-2022-1708 Note that Nessus has not tested for this issue but has inste...
Azure Linux 3.0 Security Update: python-waitress (CVE-2022-31015)
The version of python-waitress installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-31015 advisory. - Waitress is a Web Server Gateway Interface server for Python 2 and 3. Waitress versions 2.1.0 and...
MiracleLinux 8 : thunderbird-91.6.0-1.el8.ML.1 (AXSA:2022-3068:03)
The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3068:03 advisory. Mozilla: Extensions could have bypassed permission confirmation during update CVE-2022-22754 Mozilla: Memory safety bugs fixed in Firefox 97 and...
MiracleLinux 8 : grafana-pcp-3.2.0-2.el8 (AXSA:2022-4370:02)
The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-4370:02 advisory. golang: net/http: improper sanitization of Transfer-Encoding header CVE-2022-1705 golang: io/fs: stack exhaustion in Glob CVE-2022-30630 golang:...
MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2022-3808:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3808:01 advisory. QEMU: QXL: integer overflow in cursoralloc can lead to heap buffer overflow CVE-2021-4206 QEMU: QXL: double fetch in qxlcursor can lead to heap buff...
MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2022-3011:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3011:01 advisory. QEMU: off-by-one error in modesensepage in hw/scsi/scsi-disk.c CVE-2021-3930 QEMU: net: e1000: infinite loop while processing transmit descriptors...
MiracleLinux 7 : gegl-0.2.0-19.el7.1 (AXSA:2022-2991:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-2991:01 advisory. gegl: shell expansion via a crafted pathname CVE-2021-45463 Tenable has extracted the preceding description block directly from the MiracleLinux security...
MiracleLinux 8 : vim-8.0.1763-16.el8.12 (AXSA:2022-3106:02)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3106:02 advisory. vim: Heap-based buffer overflow in blockinsert in src/ops.c CVE-2022-0261 vim: Heap-based buffer overflow in utfheadoff in mbyte.c CVE-2022-0318 vim...
MiracleLinux 7 : java-11-openjdk-11.0.15.0.9-2.el7 (AXSA:2022-3150:06)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3150:06 advisory. OpenJDK: Defective secure validation in Apache Santuario Libraries, 8278008 CVE-2022-21476 OpenJDK: Unbounded memory allocation when compiling craft...
MiracleLinux 8 : dotnet3.1-3.1.420-1.el8.ML.1 (AXSA:2022-3744:08)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3744:08 advisory. dotnet: NuGet Credential leak due to loss of control of third party symbol server domain CVE-2022-30184 Tenable has extracted the preceding description block...
MiracleLinux 8 : aide-0.16-14.el8.1 (AXSA:2022-3054:01)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-3054:01 advisory. aide: heap-based buffer overflow on outputs larger than B64BUF CVE-2021-45417 Tenable has extracted the preceding description block directly from the...
MiracleLinux 8 : dovecot-2.3.16-3.el8 (AXSA:2022-4213:02)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4213:02 advisory. dovecot: Privilege escalation when similar master and non-master passdbs are used CVE-2022-30550 Tenable has extracted the preceding description block direct...
MiracleLinux 8 : squid:4 (AXSA:2022-3562:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3562:01 advisory. squid: out-of-bounds read in WCCP protocol data may lead to information disclosure CVE-2021-28116 Tenable has extracted the preceding description block...
MiracleLinux 9 : webkit2gtk3-2.36.7-1.el9 (AXSA:2022-4080:03)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4080:03 advisory. webkitgtk: processing maliciously crafted web content may lead to arbitrary code execution CVE-2022-32893 Tenable has extracted the preceding description blo...
MiracleLinux 7 : grub2-2.02-0.87.11.0.1.el7.AXS7 (AXSA:2022-4404:04)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4404:04 advisory. grub2: Integer underflow in grubnetrecvip4packets CVE-2022-28733 Tenable has extracted the preceding description block directly from the MiracleLinux securit...
MiracleLinux 8 : mailman:2.1 (AXSA:2022-2979:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-2979:01 advisory. mailman: CSRF token bypass allows to perform CSRF attacks and admin takeover CVE-2021-44227 Tenable has extracted the preceding description block directly fr...
MiracleLinux 7 : firefox-102.5.0-1.0.1.el7.AXS7 (AXSA:2022-4189:37)
The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-4189:37 advisory. Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen notification bypass CVE-2022-45404...