13716 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-0189
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - virt-who uses world-readable permissions for /etc/sysconfig/virt-who, which allows local users to obtain password for hypervisors by reading the file...
Linux Distros Unpatched Vulnerability : CVE-2019-9638
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in...
Linux Distros Unpatched Vulnerability : CVE-2017-3001
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free vulnerability related to garbage collection in the ActionScript 2 VM...
Linux Distros Unpatched Vulnerability : CVE-2017-14735
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OWASP AntiSamy before 1.5.7 allows XSS via HTML5 entities, as demonstrated by use of : to construct a javascript: URL. CVE-2017-14735 Note that Nessus relies on...
Linux Distros Unpatched Vulnerability : CVE-2015-8393
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pcregrep in PCRE before 8.38 mishandles the -q option for binary files, which might allow remote attackers to obtain sensitive information via a crafted file, a...
Linux Distros Unpatched Vulnerability : CVE-2014-9837
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service crash via a crafted png file. CVE-2014-9837 Note that...
Linux Distros Unpatched Vulnerability : CVE-2017-9055
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue, also known as DW201703-001, was discovered in libdwarf 2017-03-21. In dwarfformsdata a few data types were not checked for being in bounds, leading to...
Linux Distros Unpatched Vulnerability : CVE-2017-13673
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The vga display update in mis-calculated the region for the dirty bitmap snapshot in case split screen mode is used causing a denial of service assertion failur...
Linux Distros Unpatched Vulnerability : CVE-2019-9208
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the TCAP dissector could crash. This was addressed in epan/dissectors/asn1/tcap/tcap.cnf by avoiding NULL point...
Linux Distros Unpatched Vulnerability : CVE-2019-6778
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In QEMU 3.0.0, tcpemu in slirp/tcpsubr.c has a heap-based buffer overflow. CVE-2019-6778 Note that Nessus relies on the presence of the package as reported by t...
Linux Distros Unpatched Vulnerability : CVE-2020-16022
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in networking in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially bypass firewall controls via a...
Linux Distros Unpatched Vulnerability : CVE-2019-3902
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Mercurial before 4.9. It was possible to use symlinks and subrepositories to defeat Mercurial's path-checking logic and write files outside ...
Linux Distros Unpatched Vulnerability : CVE-2016-1516
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenCV 3.0.0 has a double free issue that allows attackers to execute arbitrary code. CVE-2016-1516 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2016-7938
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in print-zeromq.c:zmtp1printframe. CVE-2016-7938 Note that Nessus relies on the presence of th...
Linux Distros Unpatched Vulnerability : CVE-2017-9937
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibTIFF 4.0.8, there is a memory malloc failure in tifjbig.c. A crafted TIFF document can lead to an abort resulting in a remote denial of service attack...
Linux Distros Unpatched Vulnerability : CVE-2015-8139
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors. CVE-2015-8139 Note that Nessu...
Linux Distros Unpatched Vulnerability : CVE-2017-9936
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibTIFF 4.0.8, there is a memory leak in tifjbig.c. A crafted TIFF document can lead to a memory leak resulting in a remote denial of service attack...
Linux Distros Unpatched Vulnerability : CVE-2017-15032
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c. CVE-2017-15032 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2016-6185
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrar...
Linux Distros Unpatched Vulnerability : CVE-2018-5208
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings. CVE-2018-5208 Note that...