Linux Distros Unpatched Vulnerability : CVE-2024-54502

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The issue was addressed with improved checks. This issue is fixed in Safari 18.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.6, macOS Sequoia 15.2, tvOS 18.2, vision...

Linux Distros Unpatched Vulnerability : CVE-2025-22865

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Using ParsePKCS1PrivateKey to parse a RSA key that is missing the CRT values would panic when verifying that the key is well formed. CVE-2025-22865 Note that...

Linux Distros Unpatched Vulnerability : CVE-2025-0435

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Navigation in Google Chrome on Android prior to 132.0.6834.83 allowed a remote attacker to perform UI spoofing via a crafted HTM...

Linux Distros Unpatched Vulnerability : CVE-2018-8103

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The JBIG2Stream::readGenericBitmap function in JBIG2Stream.cc in xpdf 4.00 allows attackers to launch denial of service heap-based buffer over-read and...

Linux Distros Unpatched Vulnerability : CVE-2022-47016

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was n...

Linux Distros Unpatched Vulnerability : CVE-2020-25084

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - QEMU 5.0.0 has a use-after-free in hw/usb/hcd-xhci.c because the usbpacketmap return value is not checked. CVE-2020-25084 Note that Nessus relies on the presenc...

Linux Distros Unpatched Vulnerability : CVE-2022-49573

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcp: Fix a data-race around sysctltcpearlyretrans. While reading sysctltcpearlyretrans, it can be changed concurrently. Thus, we need to add READONCE to its...

Linux Distros Unpatched Vulnerability : CVE-2022-45198

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pillow before 9.2.0 performs Improper Handling of Highly Compressed GIF Data Data Amplification. CVE-2022-45198 Note that Nessus relies on the presence of the...

Linux Distros Unpatched Vulnerability : CVE-2024-26843

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - efi: runtime: Fix potential overflow of soft-reserved region size mdsize will have been narrowed if we have = 4GB worth of pages in a soft-reserved region...

Linux Distros Unpatched Vulnerability : CVE-2024-4331

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Picture In Picture in Google Chrome prior to 124.0.6367.118 allowed a remote attacker to potentially exploit heap corruption via a crafted HTM...

Linux Distros Unpatched Vulnerability : CVE-2023-49463

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libheif v1.17.5 was discovered to contain a segmentation violation via the function findexiftag at /libheif/exif.cc. CVE-2023-49463 Note that Nessus relies on t...

Linux Distros Unpatched Vulnerability : CVE-2021-31525

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/http in Go before 1.15.12 and 1.16.x before 1.16.4 allows remote attackers to cause a denial of service panic via a large header to ReadRequest or...

Linux Distros Unpatched Vulnerability : CVE-2021-38576

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways, ...

Linux Distros Unpatched Vulnerability : CVE-2024-0901

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the...

Linux Distros Unpatched Vulnerability : CVE-2024-4368

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Dawn in Google Chrome prior to 124.0.6367.118 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromi...

Linux Distros Unpatched Vulnerability : CVE-2023-35824

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in dm1105remove in drivers/media/pci/dm1105/dm1105.c. CVE-2023-35824 Note...

Linux Distros Unpatched Vulnerability : CVE-2024-43858

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jfs: Fix array-index-out-of-bounds in diFree CVE-2024-43858 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 8090...

Linux Distros Unpatched Vulnerability : CVE-2024-34509

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dcmdata in DCMTK before 3.6.9 has a segmentation fault via an invalid DIMSE message. CVE-2024-34509 Note that Nessus relies on the presence of the package as...

Linux Distros Unpatched Vulnerability : CVE-2023-31612

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in the dfeqexplist component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

Linux Distros Unpatched Vulnerability : CVE-2021-31879

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Wget through 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-1000007. CVE-2021-31879 Note...