13715 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-6836
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The vmxnet3completepacket function in hw/net/vmxnet3.c in QEMU aka Quick Emulator allows local guest OS administrators to obtain sensitive host memory informati...
Linux Distros Unpatched Vulnerability : CVE-2019-19880
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses o...
Linux Distros Unpatched Vulnerability : CVE-2015-8665
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tifgetimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service out-of-bounds read via the SamplesPerPixel tag in a TIFF image. CVE-2015-866...
Linux Distros Unpatched Vulnerability : CVE-2020-10543
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow. CVE-2020-1054...
Linux Distros Unpatched Vulnerability : CVE-2020-29660
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/ttyio.c and drivers/tty/ttyjobctrl.c may allow...
Linux Distros Unpatched Vulnerability : CVE-2014-9809
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick allows remote attackers to cause a denial of service segmentation fault and application crash via a crafted xwd image. CVE-2014-9809 Note that Nessu...
Linux Distros Unpatched Vulnerability : CVE-2020-12723
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive Sstudychunk calls. CVE-2020-12723 Note that Nessu...
Linux Distros Unpatched Vulnerability : CVE-2013-7440
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ssl.matchhostname function in CPython aka Python before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow...
Linux Distros Unpatched Vulnerability : CVE-2017-10918
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xen through 4.8.x does not validate memory allocations during certain P2M operations, which allows guest OS users to obtain privileged host OS access, aka...
Linux Distros Unpatched Vulnerability : CVE-2016-1867
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The jpcpinextcprl function in JasPer 1.900.1 allows remote attackers to cause a denial of service out- of-bounds read and application crash via a crafted JPEG...
Linux Distros Unpatched Vulnerability : CVE-2016-1000002
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gdm3 3.14.2 and possibly later has an information leak before screen lock CVE-2016-1000002 Note that Nessus relies on the presence of the package as reported by...
Linux Distros Unpatched Vulnerability : CVE-2016-7030
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeIPA uses a default password policy that locks an account after 5 unsuccessful authentication attempts, which allows remote attackers to cause a denial of...
Linux Distros Unpatched Vulnerability : CVE-2020-10969
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...
Linux Distros Unpatched Vulnerability : CVE-2015-8393
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pcregrep in PCRE before 8.38 mishandles the -q option for binary files, which might allow remote attackers to obtain sensitive information via a crafted file, a...
Linux Distros Unpatched Vulnerability : CVE-2017-9055
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue, also known as DW201703-001, was discovered in libdwarf 2017-03-21. In dwarfformsdata a few data types were not checked for being in bounds, leading to...
Linux Distros Unpatched Vulnerability : CVE-2017-3001
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free vulnerability related to garbage collection in the ActionScript 2 VM...
Linux Distros Unpatched Vulnerability : CVE-2017-14735
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OWASP AntiSamy before 1.5.7 allows XSS via HTML5 entities, as demonstrated by use of : to construct a javascript: URL. CVE-2017-14735 Note that Nessus relies on...
Linux Distros Unpatched Vulnerability : CVE-2021-0146
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Hardware allows activation of test or debug logic at runtime for some IntelR processors which may allow an unauthenticated user to potentially enable escalation...
Linux Distros Unpatched Vulnerability : CVE-2015-3418
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ProcPutImage function in dix/dispatch.c in X.Org Server aka xserver and xorg-server before 1.16.4 allows attackers to cause a denial of service divide-by-ze...
Linux Distros Unpatched Vulnerability : CVE-2014-0189
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - virt-who uses world-readable permissions for /etc/sysconfig/virt-who, which allows local users to obtain password for hypervisors by reading the file...