1853 matches found
LangChain < 0.1.0 SSRF
The version of LangChain installed on the remote host is prior to 0.1.0. It is, therefore, affected by a SSRF vulnerability. An attacker in control of the contents of 'https://example.com' could place a malicious HTML file in there with links like 'https://example.completely.different/myfile.html...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-50233)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50233 advisory. - In the Linux kernel, the following vulnerability has been resolved: staging: iio: frequency: ad9832: fix...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-50008)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50008 advisory. - In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix memcpy field- spannin...
Oracle Siebel CRM (October 2012 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2012 CPU advisory. - Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: Portal Framework. The supported version that is affected ...
Adobe Premiere Pro < 24.6.4 / 25.0 < 25.1 Arbitrary code execution (APSB24-104)
The version of Adobe Premiere Pro installed on the remote Windows host is prior to 24.6.4, 25.1. It is, therefore, affected by a vulnerability as referenced in the APSB24-104 advisory. - Premiere Pro versions 25.0, 24.6.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that...
IBM Java 7.1 < 7.1.5.24 / 8.0 < 8.0.8.35
The version of IBM Java installed on the remote host is 7.1 prior to 7.1.5.24 / 8.0 prior to 8.0.8.35. It is, therefore, affected by a vulnerability as referenced in the IBM Security Update December 2024 advisory. - In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may...
Oracle Linux 9 : containernetworking-plugins (ELSA-2024-9089)
The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-9089 advisory. - rebuild for CVE-2024-24791 - rebuild for following CVEs: CVE-2022-41724 CVE-2022-41725 CVE-2023-24538 CVE-2023-24534 CVE-2023-24536 CVE-2022-41723...
Fedora 37 : drupal7-link (2022-e795e17c38)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-e795e17c38 advisory. - https://www.drupal.org/project/link/releases/7.x-1.11 - SA-CONTRIB-2022-034 - https://www.drupal.org/project/link/releases/7.x-1.10 -...
Fedora 37 : python3.9 (2022-607efb9e65)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-607efb9e65 advisory. The release you're looking at is Python 3.9.15, a security bugfix release for the legacy 3.9 series...
Fedora 37 : python3.7 (2022-843902162d)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-843902162d advisory. The release you're looking at is Python 3.7.15, a security bugfix release for the legacy 3.7 series...
Mastodon < 3.5.9 Multiples Vulnerabilities
According to its self-reported version number, the Mastodon application running on the remote host is prior to 3.5.9 or 4.0.x prior to 4.0.5 or 4.1.x prior to 4.1.3. It is, therefore, affected by multiples vulnerabilities : - Verified profile links can be formatted in a misleading way - Denial of...
Cisco Adaptive Security Appliance Software SSH Remote Command Injection Vulnerability (cisco-sa-asa-ssh-rce-gRAuPEUF)
A vulnerability in the SSH subsystem of Cisco Adaptive Security Appliance ASA Software could allow an authenticated, remote attacker to execute operating system commands as root. This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by...
SonicWall Connect Tunnel Multiple Vulnerabilities (SNWLID-2024-0017)
According to its self-reported version, the remote installed SMA1000 Connect Tunnel client is vulnerable to a number of vulnerabilities: - The Improper link resolution before file access 'Link Following' vulnerability in SonicWall Connect Tunnel version 12.4.3.271 and earlier of Windows client...
NuGet Package 'Betalgo.OpenAI' Detection
The remote host has a 'Betalgo.OpenAI' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...
FreeBSD : electron32 -- multiple vulnerabilities (cc068959-ce2b-42eb-81ed-055551fe0e51)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the cc068959-ce2b-42eb-81ed-055551fe0e51 advisory. Electron developers report: This update fixes the following vulnerabilities: Tenable has...
Fedora 40 : rust-pyo3 / rust-pyo3-build-config / rust-pyo3-ffi / etc (2024-23292e9f6d)
The remote Fedora 40 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2024-23292e9f6d advisory. Update pyo3 to version 0.22.4. This version addresses a potential use-after-free RUSTSEC-2024-0378. Tenable has extracted the preceding description block...
Adobe Dimension < 3.4.3 Arbitrary code execution (APSB21-40) (macOS)
The version of Adobe Dimension installed on the remote macOS host is prior to 3.4.3. It is, therefore, affected by a vulnerability as referenced in the APSB21-40 advisory. - Adobe Dimension version 3.4 and earlier is affected by an Uncontrolled Search Path Element element. An unauthenticated...
Adobe Media Encoder < 14.0 Multiple Vulnerabilities (APSB19-52)
The version of Adobe Media Encoder installed on the remote Windows host is prior to 14.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB19-52 advisory. - Adobe Media Encoder versions 13.1 and earlier have an out-of-bounds write vulnerability. Successful...
Adobe InCopy 16.0 < 16.4.0 Multiple Vulnerabilities (APSB21-71)
The version of Adobe InCopy installed on the remote host is prior to 16.4.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB21-71 advisory. - Adobe InCopy version 11.1 and earlier is affected by a memory corruption vulnerability due to insecure handling of a...
Adobe After Effects < 17.1.3 Multiple Arbitrary Code Execution (APSB20-62) (macOS)
The version of Adobe After Effects installed on the remote macOS host is prior to 17.1.3. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB20-62 advisory. - Adobe After Effects version 17.1.1 and earlier for Windows is affected by an uncontrolled search path...