Microsoft 3D Viewer < 7.2306.12012.0 Multiple Vulnerabilities (May 2025) - Windows

Microsoft 3D Viewer is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:microsoft:3dviewer";...

Fedora: Security Advisory (FEDORA-2025-bd6664e83b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2025-8352a35e30)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SquirrelMail <= 1.4.23, 1.5.x <= 1.5.2 XSS Vulnerability

SquirrelMail is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Microsoft Project 2016 RCE Vulnerability (KB5002561)

This host is missing a critical security update according to Microsoft KB5002561 SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Lexmark Printer CSRF Vulnerability (CVE-2020-10095)

Multiple Lexmark printer devices are prone to a cross-site request forgery CSRF vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Linux Distros Unpatched Vulnerability : CVE-2024-49906

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Check null pointer before try to access it why & how Change the order of the pipectx-planestate check to ensure that planestate is not null...

Linux Distros Unpatched Vulnerability : CVE-2017-11697

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The hashopen function in hash.c:229 in Mozilla Network Security Services NSS allows context-dependent attackers to cause a denial of service floating point...

Linux Distros Unpatched Vulnerability : CVE-2024-53073

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NFSD: Never decrement pendingasynccopies on error The error flow in nfsd4copy calls cleanupasynccopy, which already decrements nn-pendingasynccopies...

Linux Distros Unpatched Vulnerability : CVE-2024-53117

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Improve MSGZEROCOPY error handling Add a missing kfreeskb to prevent memory...

Linux Distros Unpatched Vulnerability : CVE-2024-8034

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HT...

Linux Distros Unpatched Vulnerability : CVE-2024-7383

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libnbd. The client did not always correctly verify the NBD server's certificate when using TLS to connect to an NBD server. This issue allow...

Linux Distros Unpatched Vulnerability : CVE-2024-9956

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in WebAuthentication in Google Chrome on Android prior to 130.0.6723.58 allowed a local attacker to perform privilege escalation vi...

Linux Distros Unpatched Vulnerability : CVE-2024-56622

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: sysfs: Prevent div by zero Prevent a division by 0 when monitoring is not...

Linux Distros Unpatched Vulnerability : CVE-2024-50248

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ntfs3: Add bounds checking to mienumattr Added bounds checking to make sure that every attr...

Linux Distros Unpatched Vulnerability : CVE-2025-24150

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A privacy issue was addressed with improved handling of files. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3. Copying a URL...

Linux Distros Unpatched Vulnerability : CVE-2024-8909

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in UI in Google Chrome on iOS prior to 129.0.6668.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page...

Linux Distros Unpatched Vulnerability : CVE-2025-0239

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When using Alt-Svc, ALPN did not properly validate certificates when the original server is redirecting to an insecure site. This vulnerability was fixed in...

Linux Distros Unpatched Vulnerability : CVE-2024-51774

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - qBittorrent before 5.0.1 proceeds with use of https URLs even after certificate validation errors. CVE-2024-51774 Note that Nessus relies on the presence of the...

Linux Distros Unpatched Vulnerability : CVE-2024-8638

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Type Confusion in V8 in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromi...