49 matches found
NewStart CGSL MAIN 7.02 : freeglut Vulnerability (NS-SA-2025-0168)
The remote NewStart CGSL host, running version MAIN 7.02, has freeglut packages installed that are affected by a vulnerability: - freeglut through 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddMenuEntry function. CVE-2024-24259 Note that Nessus has not...
NewStart CGSL MAIN 7.02 : gtk2 Vulnerability (NS-SA-2025-0110)
The remote NewStart CGSL host, running version MAIN 7.02, has gtk2 packages installed that are affected by a vulnerability: - A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory...
NewStart CGSL MAIN 7.02 : sysstat Vulnerability (NS-SA-2025-0201)
The remote NewStart CGSL host, running version MAIN 7.02, has sysstat packages installed that are affected by a vulnerability: - sysstat through 12.7.2 allows a multiplication integer overflow in checkoverflow in common.c. NOTE: this issue exists because of an incomplete fix for CVE-2022-39377...
NewStart CGSL MAIN 6.06 (SP) : libcap Vulnerability (NS-SA-2025-0022)
The remote NewStart CGSL host, running version MAIN 6.06 SP, has libcap packages installed that are affected by a vulnerability: - A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can...
NewStart CGSL MAIN 6.02 : python-requests Vulnerability (NS-SA-2024-0058)
The remote NewStart CGSL host, running version MAIN 6.02, has python-requests packages installed that are affected by a vulnerability: - A flaw was found in the way python-requests set the domain cookie parameter for certain HTTP responses. A remote attacker could use this flaw to modify a cookie...
NewStart CGSL MAIN 6.06 : ruby Vulnerability (NS-SA-2023-0084)
The remote NewStart CGSL host, running version MAIN 6.06, has ruby packages installed that are affected by a vulnerability: - There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including...
NewStart CGSL MAIN 6.06 : cups Vulnerability (NS-SA-2023-0089)
The remote NewStart CGSL host, running version MAIN 6.06, has cups packages installed that are affected by a vulnerability: - A logic issue was addressed with improved state management. This issue is fixed in Security Update 2022-003 Catalina, macOS Monterey 12.3, macOS Big Sur 11.6.5. An...
NewStart CGSL MAIN 6.06 : samba Vulnerability (NS-SA-2023-0141)
The remote NewStart CGSL host, running version MAIN 6.06, has samba packages installed that are affected by a vulnerability: - Netlogon RPC Elevation of Privilege Vulnerability CVE-2022-38023 Note that Nessus has not tested for this issue but has instead relied only on the application's...
NewStart CGSL MAIN 6.02 : libarchive Vulnerability (NS-SA-2022-0092)
The remote NewStart CGSL host, running version MAIN 6.02, has libarchive packages installed that are affected by a vulnerability: - readheader in archivereadsupportformatrar.c in libarchive 3.3.2 suffers from an off-by-one error for UTF-16 names in RAR archives, leading to an out-of-bounds read i...
NewStart CGSL CORE 5.04 / MAIN 5.04 : cyrus-sasl Vulnerability (NS-SA-2022-0077)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has cyrus-sasl packages installed that are affected by a vulnerability: - In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement. CVE-2022-24407 Note...
NewStart CGSL MAIN 6.02 : cyrus-sasl Vulnerability (NS-SA-2022-0088)
The remote NewStart CGSL host, running version MAIN 6.02, has cyrus-sasl packages installed that are affected by a vulnerability: - In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement. CVE-2022-24407 Note that Nessus h...
NewStart CGSL CORE 5.04 / MAIN 5.04 : httpd Vulnerability (NS-SA-2022-0076)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has httpd packages installed that are affected by a vulnerability: - Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP...
NewStart CGSL MAIN 6.02 : file Vulnerability (NS-SA-2022-0086)
The remote NewStart CGSL host, running version MAIN 6.02, has file packages installed that are affected by a vulnerability: - cdfreadpropertyinfo in cdf.c in file through 5.37 does not restrict the number of CDFVECTOR elements, which allows a heap-based buffer overflow 4-byte out-of-bounds write...
NewStart CGSL MAIN 6.02 : initscripts Vulnerability (NS-SA-2022-0069)
The remote NewStart CGSL host, running version MAIN 6.02, has initscripts packages installed that are affected by a vulnerability: - rc.sysinit in initscripts before 8.76.3-1 on Fedora 9 and other Linux platforms allows local users to delete arbitrary files via a symlink attack on a file or...
NewStart CGSL MAIN 6.02 : cups Vulnerability (NS-SA-2021-0124)
The remote NewStart CGSL host, running version MAIN 6.02, has cups packages installed that are affected by a vulnerability: - A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated privileges...
NewStart CGSL CORE 5.04 / MAIN 5.04 : freetype Vulnerability (NS-SA-2021-0013)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has freetype packages installed that are affected by a vulnerability: - Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTM...
NewStart CGSL MAIN 6.02 : libcroco Vulnerability (NS-SA-2021-0056)
The remote NewStart CGSL host, running version MAIN 6.02, has libcroco packages installed that are affected by a vulnerability: - libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption. CVE-2020-12825 Note that Nessus has not tested fo...
NewStart CGSL CORE 5.04 / MAIN 5.04 : targetcli Vulnerability (NS-SA-2021-0044)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has targetcli packages installed that are affected by a vulnerability: - Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target and for the backup directory and backup files. CVE-2020-13867 Note that Nessus...
NewStart CGSL CORE 5.04 / MAIN 5.04 : unoconv Vulnerability (NS-SA-2021-0043)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has unoconv packages installed that are affected by a vulnerability: - The unoconv package before 0.9 mishandles untrusted pathnames, leading to SSRF and local file inclusion. CVE-2019-17400 Note that Nessus has not tested for...
NewStart CGSL MAIN 6.02 : linux-firmware Vulnerability (NS-SA-2021-0082)
The remote NewStart CGSL host, running version MAIN 6.02, has linux-firmware packages installed that are affected by a vulnerability: - Improper buffer restriction in some IntelR Wireless BluetoothR products before version 21.110 may allow an unauthenticated user to potentially enable escalation ...