13714 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-24790
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The various Is methods IsPrivate, IsLoopback, etc did not work as expected for IPv4-mapped IPv6 addresses, returning false for addresses which would return true...
Linux Distros Unpatched Vulnerability : CVE-2024-10827
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Serial in Google Chrome prior to 130.0.6723.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Linux Distros Unpatched Vulnerability : CVE-2021-3828
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nltk is vulnerable to Inefficient Regular Expression Complexity CVE-2021-3828 Note that Nessus relies on the presence of the package as reported by the vendor...
Linux Distros Unpatched Vulnerability : CVE-2023-46316
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines. CVE-2023-46316 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2023-46931
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in ffdmxparsesidedata /afltest/gpac/src/filters/ffdmx.c:202:14 in gpac/MP4Box...
Linux Distros Unpatched Vulnerability : CVE-2021-43565
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The x/crypto/ssh package before 0.0.0-20211202192323-5770296d904e of golang.org/x/crypto allows an attacker to panic an SSH server. CVE-2021-43565 Note that...
Linux Distros Unpatched Vulnerability : CVE-2023-48368
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper input validation in IntelR Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access...
Linux Distros Unpatched Vulnerability : CVE-2022-48886
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ice: Add check for kzalloc Add the check for the return value of kzalloc in order to avoid...
Linux Distros Unpatched Vulnerability : CVE-2023-40745
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service application crash or possibly execute an arbitrary...
Linux Distros Unpatched Vulnerability : CVE-2023-49469
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Reflected Cross Site Scripting XSS vulnerability in Shaarli v0.12.2, allows remote attackers to execute arbitrary code via search tag function. CVE-2023-49469...
Linux Distros Unpatched Vulnerability : CVE-2023-1989
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free flaw was found in btsdioremove in drivers\bluetooth\btsdio.c in the Linux Kernel. In this flaw, a call to btsdioremove with an unfinished job,...
Linux Distros Unpatched Vulnerability : CVE-2024-42460
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because there is a missing check for whether the leading bit of r and s is zero...
Linux Distros Unpatched Vulnerability : CVE-2024-45321
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers. CVE-2024-45321 Note that...
Linux Distros Unpatched Vulnerability : CVE-2024-45490
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer. CVE-2024-45490 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2024-41946
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - REXML is an XML toolkit for Ruby. The REXML gem 3.3.2 has a DoS vulnerability when it parses an XML that has many entity expansions with SAX2 or pull parser API...
Linux Distros Unpatched Vulnerability : CVE-2022-49278
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: remoteproc: Fix count check in rproccoredumpwrite Check count for 0, to avoid a potential...
Linux Distros Unpatched Vulnerability : CVE-2023-25433
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. Incorrect updating of buffer size after rotateImage in tiffcrop cause...
Linux Distros Unpatched Vulnerability : CVE-2024-36941
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: nl80211: don't free NULL coalescing rule If the parsing fails, we can dereference a NULL pointer here. CVE-2024-36941 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2023-28466
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dotlsgetsockopt in net/tls/tlsmain.c in the Linux kernel through 6.2.6 lacks a locksock call, leading to a race condition with a resultant use-after-free or NUL...
Linux Distros Unpatched Vulnerability : CVE-2021-41043
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in tcpslice triggers AddressSanitizer, no other confirmed impact. CVE-2021-41043 Note that Nessus relies on the presence of the package as report...