113 matches found
CVE-2025-52599
Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems ICS and OT/IoT security, has discovered Inadequate of permission management for camera guest account. The manufacturer has released patch firmware for the flaw, please refer to the...
Linux Distros Unpatched Vulnerability : CVE-2025-12432
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Race in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security...
Linux Distros Unpatched Vulnerability : CVE-2018-18440
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DENX U-Boot through 2018.09-rc1 has a locally exploitable buffer overflow via a crafted kernel image because filesystem loading is mishandled. CVE-2018-18440 No...
Linux Distros Unpatched Vulnerability : CVE-2023-48183
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - QuickJS before c4cdd61 has a buildforiniterator NULL pointer dereference because of an erroneous lexical scope of this with eval. CVE-2023-48183 Note that Nessu...
Linux Distros Unpatched Vulnerability : CVE-2023-45929
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - S-Lang 2.3.2 was discovered to contain a segmentation fault via the function fixuptgetstr. CVE-2023-45929 Note that Nessus relies on the presence of the package...
Linux Distros Unpatched Vulnerability : CVE-2024-4472
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3...
Linux Distros Unpatched Vulnerability : CVE-2019-17264
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In libyal liblnk before 20191006, liblnklocationinformationreaddata in liblnklocationinformation.c has a heap-based buffer over-read because an incorrect variab...
Linux Distros Unpatched Vulnerability : CVE-2020-18428
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of service DOS. CVE-2020-18428...
Linux Distros Unpatched Vulnerability : CVE-2022-1035
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Segmentation Fault caused by MP4Box -lsr in GitHub repository gpac/gpac prior to 2.1.0-DEV. CVE-2022-1035 Note that Nessus relies on the presence of the package...
Linux Distros Unpatched Vulnerability : CVE-2025-22233
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CVE-2024-38820 ensured Locale-independent, lowercase conversion for both the configured disallowedFields patterns and for request parameter names. However, ther...
Linux Distros Unpatched Vulnerability : CVE-2017-5666
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The freeoptions function in optionsmanager.c in mp3splt 2.6.2 allows remote attackers to cause a denial of service invalid free and crash via a crafted file...
Linux Distros Unpatched Vulnerability : CVE-2017-9058
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In libytnef in ytnef through 1.9.2, there is a heap-based buffer over-read due to incorrect boundary checking in the SIZECHECK macro in lib/ytnef.c. CVE-2017-90...
Linux Distros Unpatched Vulnerability : CVE-2018-20170
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenStack Keystone through 14.0.1 has a user enumeration vulnerability because invalid usernames have much faster responses than valid ones for a POST...
Linux Distros Unpatched Vulnerability : CVE-2017-18207
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Waveread.readfmtchunk function in Lib/wave.py in Python through 3.6.4 does not ensure a nonzero channel value, which allows attackers to cause a denial of...
Linux Distros Unpatched Vulnerability : CVE-2024-47875
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMpurify was vulnerable to nesting-based mXSS. This vulnerability is...
Linux Distros Unpatched Vulnerability : CVE-2022-50012
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - powerpc/64: Init jump labels before parseearlyparam On 64-bit, calling jumplabelinit in setupfeaturekeys is too late because static keys may be used in...
Linux Distros Unpatched Vulnerability : CVE-2018-17467
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficiently quick clearing of stale rendered content in Navigation in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to spoof the contents of...
Linux Distros Unpatched Vulnerability : CVE-2022-27444
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/itemsubselect.cc. CVE-2022-27444 Note that Nessus relies on...
Linux Distros Unpatched Vulnerability : CVE-2018-6040
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially bypass content security policy via a...
Linux Distros Unpatched Vulnerability : CVE-2020-36179
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to...