54 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-0435
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Navigation in Google Chrome on Android prior to 132.0.6834.83 allowed a remote attacker to perform UI spoofing via a crafted HTM...
Linux Distros Unpatched Vulnerability : CVE-2018-8103
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The JBIG2Stream::readGenericBitmap function in JBIG2Stream.cc in xpdf 4.00 allows attackers to launch denial of service heap-based buffer over-read and...
Linux Distros Unpatched Vulnerability : CVE-2024-54502
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The issue was addressed with improved checks. This issue is fixed in Safari 18.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.6, macOS Sequoia 15.2, tvOS 18.2, vision...
Linux Distros Unpatched Vulnerability : CVE-2025-22865
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Using ParsePKCS1PrivateKey to parse a RSA key that is missing the CRT values would panic when verifying that the key is well formed. CVE-2025-22865 Note that...
Linux Distros Unpatched Vulnerability : CVE-2022-47016
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was n...
Linux Distros Unpatched Vulnerability : CVE-2022-45198
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pillow before 9.2.0 performs Improper Handling of Highly Compressed GIF Data Data Amplification. CVE-2022-45198 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2024-0901
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the...
Linux Distros Unpatched Vulnerability : CVE-2023-31612
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in the dfeqexplist component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service DoS via crafted SQL statements...
Linux Distros Unpatched Vulnerability : CVE-2021-38576
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A BIOS bug in firmware for a particular PC model leaves the Platform authorization value empty. This can be used to permanently brick the TPM in multiple ways, ...
Linux Distros Unpatched Vulnerability : CVE-2023-31981
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sngrep v1.6.0 was discovered to contain a stack buffer overflow via the function packetsetpayload at /src/packet.c. CVE-2023-31981 Note that Nessus relies on th...
Linux Distros Unpatched Vulnerability : CVE-2022-48831
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ima: fix reference leak in asymmetricverify Don't leak a reference to the key if its algorit...
Linux Distros Unpatched Vulnerability : CVE-2022-49117
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mips: ralink: fix a refcount leak in illaccofsetup ofnodeputnp needs to be called when pdev == NULL. CVE-2022-49117 Note that Nessus relies on the presence of t...
Linux Distros Unpatched Vulnerability : CVE-2022-28919
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTMLCreator releasestable2020-07-29 was discovered to contain a cross-site scripting XSS vulnerability via the function generateFilename. CVE-2022-28919 Note th...
Linux Distros Unpatched Vulnerability : CVE-2022-49573
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcp: Fix a data-race around sysctltcpearlyretrans. While reading sysctltcpearlyretrans, it can be changed concurrently. Thus, we need to add READONCE to its...
Linux Distros Unpatched Vulnerability : CVE-2021-44505
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, an attacker can cause a NULL pointer dereference aft...
Linux Distros Unpatched Vulnerability : CVE-2021-31879
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Wget through 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-1000007. CVE-2021-31879 Note...
Linux Distros Unpatched Vulnerability : CVE-2023-40414
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 10, iOS 17 and iPadOS 17, tvOS 17, macOS Sonoma 14, Safari...
Linux Distros Unpatched Vulnerability : CVE-2023-46753
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur for a crafted BGP UPDATE message without mandatory attributes, e.g., one with only an...
Linux Distros Unpatched Vulnerability : CVE-2024-43858
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jfs: Fix array-index-out-of-bounds in diFree CVE-2024-43858 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 8090...
Linux Distros Unpatched Vulnerability : CVE-2024-34509
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dcmdata in DCMTK before 3.6.9 has a segmentation fault via an invalid DIMSE message. CVE-2024-34509 Note that Nessus relies on the presence of the package as...