31 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-50407
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: hisilicon/qm - increase the memory of local variables Increase the buffer to prevent stack overflow by fuzz test. The maximum length of the qos...
Linux Distros Unpatched Vulnerability : CVE-2024-43428
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - To address a cache poisoning risk in Moodle, additional validation for local storage was required. CVE-2024-43428 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2021-33479
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in measurepitch in pgm2asc.c. CVE-2021-33479 Note that Nessus relies on...
Linux Distros Unpatched Vulnerability : CVE-2022-43497
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to inject an arbitrary script. The developer al...
Linux Distros Unpatched Vulnerability : CVE-2021-22169
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was identified in GitLab EE 13.4 or later which leaked internal IP address via error messages. CVE-2021-22169 Note that Nessus relies on the presence o...
Linux Distros Unpatched Vulnerability : CVE-2018-4361
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory consumption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9...
Linux Distros Unpatched Vulnerability : CVE-2016-6173
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NSD before 4.1.11 allows remote DNS master servers to cause a denial of service /tmp disk consumption and slave server crash via a zone transfer with unlimited...
Linux Distros Unpatched Vulnerability : CVE-2017-6590
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in network-manager-applet aka network-manager-gnome in Ubuntu 12.04 LTS, 14.04 LTS, 16.04 LTS, and 16.10. A local attacker could use thi...
Linux Distros Unpatched Vulnerability : CVE-2016-9909
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of the less than...
Linux Distros Unpatched Vulnerability : CVE-2025-8581
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Extensions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker who convinced a user to engage in specific UI...
Linux Distros Unpatched Vulnerability : CVE-2022-3996
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some...
Linux Distros Unpatched Vulnerability : CVE-2021-0164
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper access control in firmware for IntelR PROSet/Wireless Wi-Fi in multiple operating systems and KillerTM Wi-Fi in Windows 10 and 11 may allow an...
Linux Distros Unpatched Vulnerability : CVE-2021-31808
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to an input-validation bug, it is vulnerable to a Denial of Service attack against all...
Linux Distros Unpatched Vulnerability : CVE-2021-22239
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An unauthorized user was able to insert metadata when creating new issue on GitLab CE/EE 14.0 and later. CVE-2021-22239 Note that Nessus relies on the presence ...
Linux Distros Unpatched Vulnerability : CVE-2020-35653
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Pillow before 8.1.0, PcxDecode has a buffer over-read when decoding a crafted PCX file because the user-supplied stride value is trusted for buffer...
Linux Distros Unpatched Vulnerability : CVE-2014-0083
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA passwords. CVE-2014-0083 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2020-28367
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via malicious gcc flags specified via a...
Linux Distros Unpatched Vulnerability : CVE-2017-11328
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overflow in the yrobjectarraysetitem function in object.c in YARA 3.x allows a denial- of-service attack by scanning a crafted .NET file...
Linux Distros Unpatched Vulnerability : CVE-2023-5616
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Ubuntu, gnome-control-center did not properly reflect SSH remote login status when the system was configured to use systemd socket activation for...
Linux Distros Unpatched Vulnerability : CVE-2022-30688
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - needrestart 0.8 through 3.5 before 3.6 is prone to local privilege escalation. Regexes to detect the Perl, Python, and Ruby interpreters are not anchored,...