Oracle Linux 8 : .NET / 9.0 (ELSA-2025-8815)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8815 advisory. 9.0.107-1.0.1 - Add support for Oracle Linux 9.0.107-1 - Update to .NET SDK 9.0.107 and Runtime 9.0.6 - Resolves: RHEL-94422 Tenable has extracted the preceding...

Exploit for CVE-2024-42049

CVE-2024-42049-PoC CVE Details - https://nvd.nist.gov/vuln...

CBL Mariner 2.0 Security Update: libreswan (CVE-2023-30570)

The version of libreswan installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-30570 advisory. - pluto in Libreswan before 4.11 allows a denial of service responder SPI mishandling and daemon crash via...

Azure Linux 3.0 Security Update: php (CVE-2025-1219)

The version of php installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1219 advisory. - In PHP from 8.1. before 8.1.32, from 8.2. before 8.2.28, from 8.3. before 8.3.19, from 8.4. before 8.4.5, when...

Splunk Enterprise 9.1.0 < 9.1.8, 9.2.0 < 9.2.5, 9.3.0 < 9.3.3 (SVD-2025-0303)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2025-0303 advisory. - In Splunk Enterprise versions below 9.3.3, 9.2.5, and 9.1.8 and Splunk Cloud Platform versions below 9.2.2403.108, and...

CBL Mariner 2.0 Security Update: xorg-x11-server / xorg-x11-server-Xwayland (CVE-2025-26600)

The version of xorg-x11-server / xorg-x11-server-Xwayland installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-26600 advisory. - A use-after-free flaw was found in X.Org and Xwayland. When a device is...

Azure Linux 3.0 Security Update: python3 (CVE-2024-0450)

The version of python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-0450 advisory. - An issue was found in the CPython zipfile module affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and...

Azure Linux 3.0 Security Update: libarchive (CVE-2024-48957)

The version of libarchive installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-48957 advisory. - executefilteraudio in archivereadsupportformatrar.c in libarchive before 3.7.5 allows out-of-bounds acce...

Azure Linux 3.0 Security Update: pytorch (CVE-2024-27319)

The version of pytorch installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27319 advisory. - Versions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds Read as the...

Azure Linux 3.0 Security Update: kernel (CVE-2024-43856)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43856 advisory. - In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in dmamfreecoherent...

Azure Linux 3.0 Security Update: kernel (CVE-2024-40902)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-40902 advisory. - In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for...

Mattermost Server 10.0.x < 10.3 (MMSA-2024-00400)

The version of Mattermost Server installed on the remote host is prior to 10.3. It is, therefore, affected by a improper access control vulnerability as referenced in the MMSA-2024-00400 advisory due to a failure to accurately reflect missing settings, which allows confusion for admins regarding ...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-49954)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49954 advisory. - In the Linux kernel, the following vulnerability has been resolved: staticcall: Replace pointless WARNON in...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-50142)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50142 advisory. - In the Linux kernel, the following vulnerability has been resolved: xfrm: validate new SA's prefixlen using ...

CBL Mariner 2.0 Security Update: CBL-Mariner Releases / ceph / zstd (CVE-2021-24032)

The version of CBL-Mariner Releases / ceph / zstd installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-24032 advisory. - Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for...

CheckPoint/Sofaware Firewall Multiple Vulnerabilities

No description provided by source. ProCheckUp Research http://procheckup.com/procheckup-labs/pr11-07.aspx PR11-07 Multiple peristent XSS, XSS, XSRF, offsite redirection and information disclosure flaws within CheckPoint/Sofaware firewalls Vulnerability found: 3rd May 2011 Vendor informed: 20th Ju...

Debian Security Advisory DSA 2837-1 (openssl - programming error)

Anton Johansson discovered that an invalid TLS handshake package could crash OpenSSL with a NULL pointer dereference. The oldstable distribution squeeze is not affected. OpenVAS Vulnerability Test $Id: deb2837.nasl 6663 2017-07-11 09:58:05Z teissa $ Auto-generated from advisory DSA 2837-1 using...

Debian Security Advisory DSA 2771-1 (nas - several vulnerabilities)

Hamid Zamani discovered multiple security problems buffer overflows, format string vulnerabilities and missing input sanitising, which could lead to the execution of arbitrary code. OpenVAS Vulnerability Test $Id: deb2771.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from advisory DSA...

Debian Security Advisory DSA 2739-1 (cacti - several vulnerabilities)

Two security issues SQL injection and command line injection via SNMP settings were found in Cacti, a web interface for graphing of monitoring systems. OpenVAS Vulnerability Test $Id: deb2739.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from advisory DSA 2739-1 using nvtgen 1.0 Script...

CiviCRM 3.1 &lt; Beta 5 - Multiple Cross-Site Scripting Vulnerabilities

Author: h00die [email protected] & Ch3nz [email protected] Software Link: http://sourceforge.net/projects/civicrm/files/civicrm-latest/3.1.beta1/civicrm-3.1.beta1-standalone.tar.gz/download Version: and from being in the same input box. In several cases it is possible to use multiple input boxes th...