22 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-27851
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When safe filter is used with variable expansion, all following pipelines on the same string are incorrectly interpreted as safe too, enabling unsafe data to be...
Linux Distros Unpatched Vulnerability : CVE-2023-1402
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The course participation report required additional checks to prevent roles being displayed which the user did not have access to view. CVE-2023-1402 Note that...
Linux Distros Unpatched Vulnerability : CVE-2021-39875
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In all versions of GitLab CE/EE since version 13.6, it is possible to see pending invitations of any public group or public project by visiting an API endpoint...
Linux Distros Unpatched Vulnerability : CVE-2025-0290
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.0 prior to 17.5.5, from 17.6 prior to 17.6.3, and from 17.7 prior to 17.7.1...
Linux Distros Unpatched Vulnerability : CVE-2023-45924
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a segmentation violation via the function glXGetDrawableScreen. NOTE: this is disputed becau...
Linux Distros Unpatched Vulnerability : CVE-2019-14204
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfshandler reply helper function: nfsumountallreply...
Linux Distros Unpatched Vulnerability : CVE-2019-7341
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Reflected - Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable...
Linux Distros Unpatched Vulnerability : CVE-2025-26533
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An SQL injection risk was identified in the module list filter within course search. CVE-2025-26533 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2018-6042
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect security UI in Omnibox in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HT...
Linux Distros Unpatched Vulnerability : CVE-2020-13674
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The QuickEdit module does not properly validate access to routes, which could allow cross-site request forgery under some circumstances and lead to possible dat...
Linux Distros Unpatched Vulnerability : CVE-2023-29580
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - yasm 1.3.0.55.g101bc was discovered to contain a segmentation violation via the component yasmexprcreate at /libyasm/expr.c. CVE-2023-29580 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2025-49178
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the X server's request handling. Non-zero 'bytes to ignore' in a client's request can cause the server to skip processing another client's...
Linux Distros Unpatched Vulnerability : CVE-2020-6816
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Mozilla Bleach before 3.12, a mutation XSS in bleach.clean when RCDATA and either svg or math tags are whitelisted and the keyword argument strip=False...
Linux Distros Unpatched Vulnerability : CVE-2019-20149
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ctorName in index.js in kind-of v6.0.2 allows external user input to overwrite certain internal attributes via a conflicting name, as demonstrated by...
Linux Distros Unpatched Vulnerability : CVE-2022-0338
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insertion of Sensitive Information into Log File in Conda loguru prior to 0.5.3. CVE-2022-0338 Note that Nessus relies on the presence of the package as reporte...
Linux Distros Unpatched Vulnerability : CVE-2024-2611
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A missing delay on when pointer lock was used could have allowed a malicious page to trick a user into granting permissions. This vulnerability affects Firefox...
Linux Distros Unpatched Vulnerability : CVE-2025-21905
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: limit printed string from FW file There's no guarantee here that the file is...
Linux Distros Unpatched Vulnerability : CVE-2025-37978
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: block: integrity: Do not call setpagedirtylock Placing multiple protection information buffe...
Linux Distros Unpatched Vulnerability : CVE-2024-39481
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: media: mc: Fix graph walk in mediapipelinestart The graph walk tries to follow all links, ev...
Linux Distros Unpatched Vulnerability : CVE-2021-47409
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: dwc2: check return value after calling platformgetresource It will cause null-ptr-deref if platformgetresource returns NULL, we need check the return value...