13714 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-50664
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gpac 2.4 contains a heap-buffer-overflow at isomedia/sampledescs.c:1799 in gfisomnewmphadescription in gpac/MP4Box. CVE-2024-50664 Note that Nessus relies on th...
Linux Distros Unpatched Vulnerability : CVE-2024-5160
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overflow in Dawn in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page...
Linux Distros Unpatched Vulnerability : CVE-2024-53899
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly whe...
Linux Distros Unpatched Vulnerability : CVE-2024-57655
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in the dfeninorder component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...
Linux Distros Unpatched Vulnerability : CVE-2024-7973
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overflow in PDFium in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file...
Linux Distros Unpatched Vulnerability : CVE-2024-56738
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU GRUB aka GRUB2 through 2.12 does not use a constant-time algorithm for grubcryptomemcmp and thus allows side-channel attacks. CVE-2024-56738 Note that Nessu...
Linux Distros Unpatched Vulnerability : CVE-2024-57966
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libarchiveplugin.cpp in KDE ark before 24.12.0 can extract to an absolute path from an archive. CVE-2024-57966 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2025-0447
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Navigation in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to perform privilege escalation via a crafted HTML...
Linux Distros Unpatched Vulnerability : CVE-2025-26819
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Monero through 0.18.3.4 before ec74ff4 does not have response limits on HTTP server connections. CVE-2025-26819 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2025-1019
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The z-order of the browser windows could be manipulated to hide the fullscreen notification. This could potentially be leveraged to perform a spoofing attack...
Linux Distros Unpatched Vulnerability : CVE-2024-6993
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - chromium - None CVE-2024-6993 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 80900 C Tenable, In...
Linux Distros Unpatched Vulnerability : CVE-2024-4948
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Dawn in Google Chrome prior to 125.0.6422.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromiu...
Linux Distros Unpatched Vulnerability : CVE-2017-11697
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The hashopen function in hash.c:229 in Mozilla Network Security Services NSS allows context-dependent attackers to cause a denial of service floating point...
Linux Distros Unpatched Vulnerability : CVE-2024-57650
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in the qiinststatefree component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...
Linux Distros Unpatched Vulnerability : CVE-2025-0436
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in Skia in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Linux Distros Unpatched Vulnerability : CVE-2024-30171
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Bouncy Castle Java TLS API and JSSE Provider before 1.78. Timing-based leakage may occur in RSA based handshakes because of exception...
Linux Distros Unpatched Vulnerability : CVE-2024-49990
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/xe/hdcp: Check GSC structure validity Sometimes xegsc is not initialized when checked at HDCP capability check. Add gsc structure check to avoid null pointe...
Linux Distros Unpatched Vulnerability : CVE-2024-7383
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libnbd. The client did not always correctly verify the NBD server's certificate when using TLS to connect to an NBD server. This issue allow...
Linux Distros Unpatched Vulnerability : CVE-2024-8194
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Type Confusion in V8 in Google Chrome prior to 128.0.6613.113 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium...
Linux Distros Unpatched Vulnerability : CVE-2024-57653
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in the qstvecsetcopy component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...