337440 matches found
Cisco IOS Software SSH DoS (cisco-sa-ssh-excpt-dos-FzOBQTnk)
According to its self-reported version, Cisco IOS Software and Cisco IOS XE Software is affected by denial of service vulnerability. An authenticated, remote attacker can exploit this, by continuously connecting to an affected device and sending specific SSH requests to cause an affected device t...
PHP 8.0.x < 8.0.24 Multiple Vulnerabilities
The version of PHP installed on the remote host is prior to 8.0.24. It is, therefore, affected by multiple vulnerabilities as referenced in the Version 8.0.24 advisory. - In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress quines gzip files,...
Microsoft Teams < 1.3.0.13000 Remote Code Execution
The version of Microsoft Teams installed on the remote Windows host is a version prior to 1.3.0.13000. It is, therefore, affected by remote code execution vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number....
MS KB2871997: Update to Improve Credentials Protection and Management
The remote host is missing one or more of the following Microsoft updates: KB2871997, KB2973351, KB2975625, KB2982378, KB2984972, KB2984976, KB2984981, KB2973501, or KB3126593. These updates are needed to improve the protection against possible credential theft. - For Windows 7 / 2008 R2 :...
Web mirroring stub
This script makes a mirror of the remote websites and extracts the list of CGIs that are used by the remote host. It is suggested that you change the number of pages to mirror in the 'Options' section of the client. C Tenable Network Security, Inc. @PREFERENCES@ WEBMIRROR 2.0 Written by Renaud...
Oracle WebLogic Server (April 2024 CPU)
The 12.2.1.4.0 and 14.1.1.0.0 versions of WebLogic Server installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2024 CPU advisory: - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Samples handlebars. Supported...
CentOS 7 : nss and nspr (RHSA-2020:4076)
The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4076 advisory. - When importing a curve25519 private key in PKCS8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Securi...
JQuery Detection
Nessus was able to detect JQuery on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid106658; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2024/02/08"; scriptnameenglish:"JQuery Detection"; scriptsummaryenglish:"Detec...
PHP < 7.3.24 Multiple Vulnerabilities
According to its self-reported version number, the version of PHP running on the remote web server is prior to 7.3.24. It is, therefore affected by multiple vulnerabilities %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Oracle Integrated Lights Out Manager (ILOM) < 3.2.6 Multiple Vulnerabilities (uncredentialed check)
According to its self-reported version number, the version of Oracle Integrated Lights Out Manager ILOM is affected by multiple vulnerabilities as described in the advisory. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid104047; scriptversion"1.9";...
SuperMicro IPMI PSBlock File Plaintext Password Disclosure
The remote SuperMicro IPMI device is affected by an information disclosure vulnerability because it exposes all usernames and passwords in plaintext via the PSBlock file. A remote, unauthenticated attacker can exploit this vulnerability to download all usernames and passwords and gain a shell on...
OS Identification : SinFP
This script attempts to identify the operating system type and version by using the same technique as SinFP. C Tenable, Inc. SinFP is a fingerprinting tool written by GomoR and available at http://www.gomor.org/cgi-bin/sinfp.pl This plugin is a white-room reimplementation of the SinFP methodology...
SSL/TLS Recommended Cipher Suites
The remote host has open SSL/TLS ports which advertise discouraged cipher suites. It is recommended to only enable support for the following cipher suites: TLSv1.3: - 0x13,0x01 TLS13AES128GCMSHA256 - 0x13,0x02 TLS13AES256GCMSHA384 - 0x13,0x03 TLS13CHACHA20POLY1305SHA256 TLSv1.2: - 0xC0,0x2B...
Pulse Connect Secure < 9.1R12 (SA44858)
According to its self-reported version, the version of Pulse Connect Secure running on the remote host is prior to 9.1R12. It is, therefore, affected by multiple vulnerabilities, including: - A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to perfo...
Apache Tomcat 7.0.x < 7.0.57 Multiple Vulnerabilities (POODLE)
According to its self-reported version number, the Apache Tomcat service listening on the remote host is 7.0.x prior to 7.0.57. It is, therefore, affected by the following vulnerabilities : - A memory double-free error exists in 'd1both.c' related to handling DTLS packets that allows denial of...
OpenSSL 1.1.1 < 1.1.1n Vulnerability
The version of OpenSSL installed on the remote host is prior to 1.1.1n. It is, therefore, affected by a vulnerability as referenced in the 1.1.1n advisory. - The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli...
SSL Certificate 'commonName' Mismatch
The service running on the remote host presents an SSL certificate for which the 'commonName' CN attribute does not match the hostname on which the service listens. TRUSTED...
CGI Generic SSI Injection (HTTP headers)
The remote web server hosts one or more CGI scripts that fail to adequately sanitize request strings and seem to be vulnerable to an 'SSI injection' attack. By leveraging this issue, an attacker may be able to execute arbitrary commands on the remote host. %NASLMINLEVEL 70300 C Tenable Network...
Apache Tomcat 9.0.40 < 9.0.54
The version of Tomcat installed on the remote host is prior to 9.0.54. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat9.0.54security-9 advisory. - The fix for bug 63362 present in Apache Tomcat 10.1.0-M1 to 10.1.0-M5, 10.0.0-M1 to 10.0.11, 9.0.40 to 9.0.53 a...
Check Point Gaia Operating System Multiple Vulnerabilities (sk106499)
The remote host is running a version of Gaia OS which is affected by multiple vulnerabilities: - An out of bounds read denial of service vulnerability in OpenSSL CVE-2015-1789 - An information disclosure weakness in the RC4 algorithm as used in SSL/TLS CVE-2015-2808 C Tenable Network Security, In...
MVPower DVR Remote Command Execution
The remote AOST-based network video recorder distributed by MVPower is affected by a remote command execution vulnerability. An unauthenticated remote attacker can use this vulnerability to execute operating system commands as root. This vulnerability has been used by the IoT Reaper botnet. C...
PCI DSS Compliance : Remote Access Software Has Been Detected
Due to increased risk to the cardholder data environment when remote access software is present, 1 justify the business need for this software to the ASV and confirm it is implemented securely, or 2 confirm it is disabled/ removed. Consult your ASV if you have questions about this Special Note...
OS Identification : HTTP
Nessus was able to identify the remote operating system type and version by examining the data returned by the remote HTTP server. %NASLMINLEVEL 70300 C Tenable, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid25247; scriptversion"1.202";...
Rocky Linux 8 : openssl (RLSA-2022:1065)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:1065 advisory. - The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function i...
Apache Tomcat 8.0.0.RC1 < 8.0.43
The version of Tomcat installed on the remote host is prior to 8.0.43. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat8.0.43security-8 advisory. - A bug in the handling of the pipelined requests in Apache Tomcat 9.0.0.M1 to 9.0.0.M18, 8.5.0 to 8.5.12,...
phpMyAdmin 4.x < 4.8.5 Multiple Vulnerabilities (PMASA-2019-1) (PMASA-2019-2)
According to its self-reported version number, the phpMyAdmin application hosted on the remote web server is 4.x prior to 4.8.5. It is, therefore, affected by at least one of the following vulnerabilities: - A SQL injection SQLi vulnerability exists in phpMyAdmin due to improper validation of...
Bootstrap 4.x < 4.3.1 Cross-Site Scripting
According to its self-reported version number, Bootstrap is 3.x prior 3.4.1 or 4.x prior to 4.3.1. Therefore, it may be affected by a Cross-Site Scripting XSS vulnerability via data-template attribute for tooltip and popover plugins. Note that the scanner has not tested for these issues but has...
AXIS HTTP GET Heap Overflow
The remote AXIS device is affected by a heap overflow vulnerability in its web administration interface due to a flaw in handling of special characters. An unauthenticated remote attacker can exploit this vulnerability for denial of service and possibly remote code execution. C Tenable Network...
Mambo / Joomla! Component / Module 'mosConfig_absolute_path' Multiple Parameter Remote File Include Vulnerabilities
A third-party component for Mambo, Module, or Joomla! is running on the remote host. At least one of these components is a version that is affected by a remote file include vulnerability due to improper sanitization of user-supplied input to the 'mosConfigabsolutepath' parameter before using it t...
PHP 8.1.x < 8.1.28 Multiple Vulnerabilities
According to its self-reported version number, the version of PHP installed on the remote host is 8.1.x prior to 8.1.28, 8.2.x prior to 8.2.18, or 8.3.x prior to 8.3.6. It is, therefore, affected by multiple vulnerabilities: - A command injection via array-ish $command parameter of procopen...
Curl 7.69 < 8.4.0 Heap Buffer Overflow
The version of curl installed on the remote host is affected by a heap based buffer overflow in the SOCKS5 proxy handshake. When curl is asked to pass along the hostname to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that...
IlohaMail Email Header XSS
The remote host is running at least one instance of IlohaMail version 0.8.12 or earlier. Such versions do not properly sanitize message headers, leaving users vulnerable to XSS attacks. For example, a remote attacker could inject JavaScript code that steals the user's session cookie and thereby...
Dell dbutil Driver Insufficient Access Control (DSA-2021-088)
Binary data dellCVE-2021-21551.nbin...
Pivotal Software Redis LUA < 3.2.12 / 4.0.x < 4.0.10 / 5.0 < 5.0rc2 Multiple Vulnerabilities
The version of Redis installed on the remote host is affected by multiple vulnerabilities and therefore requires a security update. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid117484; scriptversion"1.6";...
MS08-067: Microsoft Windows Server Service Crafted RPC Request Handling Remote Code Execution (958644) (ECLIPSEDWING) (uncredentialed check)
The remote Windows host is affected by a remote code execution vulnerability in the 'Server' service due to improper handling of RPC requests. An unauthenticated, remote attacker can exploit this, via a specially crafted RPC request, to execute arbitrary code with 'System' privileges. ECLIPSEDWIN...
Tenable SecurityCenter PHP < 5.6.25 Multiple Vulnerabilities (TNS-2016-09)
The Tenable SecurityCenter application installed on the remote host is missing a security patch. It is, therefore, affected by multiple vulnerabilities in the bundled version of PHP : - An unspecified flaw exists in the objectcommon2 function in varunserializer.c that occurs when handling objects...
XAMPP Example Pages Detection
The remote web server makes available example scripts from XAMPP, an easy-to-install Apache distribution containing MySQL, PHP, and Perl. Allowing access to these examples is not recommended since some are known to disclose sensitive information about the remote host and others may be affected by...
Apache Tomcat 8.5.60 < 8.5.72
The version of Tomcat installed on the remote host is prior to 8.5.72. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat8.5.72security-8 advisory. - The fix for bug 63362 present in Apache Tomcat 10.1.0-M1 to 10.1.0-M5, 10.0.0-M1 to 10.0.11, 9.0.40 to 9.0.53 a...
Oracle MySQL 5.5.x < 5.5.47 Multiple Vulnerabilities (January 2016 CPU) (April 2016 CPU)
The version of Oracle MySQL installed on the remote host is 5.5.x prior to 5.5.47. It is, therefore, affected by the following vulnerabilities : - An unspecified flaw exists in the Server : Options subcomponent that allows an authenticated, remote attacker to cause a denial of service...
phpMyAdmin url.php Redirect (PMASA-2011-4)
The version of phpMyAdmin on the remote host fails to validate input passed to the 'url' parameter in the 'url.php' script before redirecting to a specified location. An attacker may be able to exploit this issue to conduct phishing attacks by tricking users into visiting malicious websites...
Web Server Reverse Proxy Detection
The remote web server seems to allow any anonymous user to use it as a reverse proxy. This may expose internal services to potential mapping and, henceforth, compromise. C Tenable Network Security, Inc. include 'compat.inc' ; ifdescription scriptid12225; scriptversion "$Revision: 1.16 $";...
Tomcat Sample App hello.jsp 'test' Parameter XSS
The remote web server includes an example JSP application that fails to sanitize user-supplied input before using it to generate dynamic content in an error page. An unauthenticated, remote attacker can exploit this issue to inject arbitrary HTML or script code into a user's browser to be execute...
Azul Zulu Java Multiple Vulnerabilities (2022-04-19)
The version of Azul Zulu installed on the remote host is prior to 6 6.47 / 7 7.53.0.16 / 8 8.61.0.18 / 11 11.55.18 / 13 13.47.16 / 15 15.39.16 / 17 17.33.16 / 18 18.30.12. It is, therefore, affected by multiple vulnerabilities as referenced in the 2022-04-19 advisory. - zlib before 1.2.12 allows...
Web Server robots.txt Information Disclosure
The remote host contains a file named 'robots.txt' that is intended to prevent web 'robots' from visiting certain directories in a website for maintenance or indexing purposes. A malicious user may also be able to use the contents of this file to learn of sensitive documents or directories on the...
Oracle Java SE 1.7.0_221 / 1.8.0_211 / 1.11.0_3 / 1.12.0_1 Multiple Vulnerabilities (Apr 2019 CPU) (Unix)
The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is prior to 7 Update 221, 8 Update 211, 11 Update 3, or 12 Update 1. It is, therefore, affected by multiple vulnerabilities related to the following components : - 2D - Libraries - RMI - Windows DLL Nessu...
RHEL 7 : samba (RHSA-2018:2613)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2613 advisory. Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol,...
SBLIM-SFCB Multiple Buffer Overflows
The web server component of SBLIM-SFCB that is listening on the remote host contains multiple heap-based buffer overflows that can be triggered by sending an HTTP request with a specially crafted Content-Length header. Specifically : - There is a particular scenario where heap corruption can exis...
HTTP Method Remote Format String
The remote web server seems to be vulnerable to a format string attack on the method name. An attacker might use this flaw to make it crash or even execute arbitrary code on this host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11801; scriptversion"$Revision: 1.1...
Microsoft Print 3D app Remote Code Execution (February 2023)
The Microsoft Print 3D app installed on the remote Windows host may be affected by a remote code execution vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. The...
Selligent Message Studio Struts Code Execution (CVE-2017-5638)
Binary data selligentmessagestudiorce.nbin...