337440 matches found
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4071)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4071 advisory. - net: cdcether: fix divide by 0 on bad descriptors Bjorn Mork Orabug: 27841392 CVE-2017-16649 - sysctl: Drop reference added by grabheader in...
Security Updates for Windows Server 2008 (March 2018)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when Windows Remote Assistance incorrectly processes XML External Entities XXE. An attacker who successfully exploited the vulnerability...
Novell NetWare ncp Service NDS Object Enumeration
This host is a Novell NetWare eDirectory server, and has browse rights on the PUBLIC object. It is possible to enumerate all NDS objects, including users, with crafted queries. An attacker can use this to gain information about this host. This script was written by Forrest Rae See the Nessus...
KB5031358: Windows 11 version 21H2 Security Update (October 2023)
The remote Windows host is missing security update 5031358. It is, therefore, affected by multiple vulnerabilities - The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as exploited in the wild in August through...
Apache Apereo CAS Log4Shell Direct Check (CVE-2021-44228)
Binary data apacheapereocaslog4shell.nbin...
Slackware Linux 14.2 / 15.0 / current cyrus-sasl Multiple Vulnerabilities (SSA:2022-055-01)
The version of cyrus-sasl installed on the remote host is prior to 2.1.28. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-055-01 advisory. - cyrus-sasl aka Cyrus SASL 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of- service in...
MariaDB 10.3.0 < 10.3.24
The version of MariaDB installed on the remote host is prior to 10.3.24. It is, therefore, affected by a vulnerability as referenced in the 10.3.24 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.6.50 and prior,...
KB4550970: Windows 8.1 and Windows Server 2012 R2 April 2020 Security Update
The remote Windows host is missing security update 4550970 or cumulative update 4550961. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when a Windows scheduled task improperly handles file redirections. An attacker who successfully...
Cisco Unified Communication Manager Apache Struts RCE (CSCvm14042)
According to its self-reported version, the Cisco Unified Communications Manager CUCM running on the remote device is affected by a remote code execution vulnerability. Please see the included Cisco BID and the Cisco Security Advisory for more information. TRUSTED...
PHP 5.5.x < 5.5.32 Multiple Vulnerabilities
According to its banner, the version of PHP running on the remote web server is 5.5.x prior to 5.5.32. It is, therefore, affected by multiple vulnerabilities : - The Perl-Compatible Regular Expressions PCRE library is affected by multiple vulnerabilities related to the handling of regular...
AlmaLinux 9 : openssh (ALSA-2024:1130)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:1130 advisory. - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity...
KB5025229: Windows 10 version 1809 / Windows Server 2019 Security Update (April 2023)
The remote Windows host is missing security update 5025229. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2023-28275 - Windows Pragmatic General Multicast PGM Remote Code Execution Vulnerability...
Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-5390-1)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5390-1 advisory. David Bouman discovered that the netfilter subsystem in the Linux kernel did not properly validate passed user register indices. A local attacker could u...
PHP 7.4.x < 7.4.9 Use-After-Free Vulnerability
According to its self-reported version number, the version of PHP running on the remote web server is 7.4.x prior to 7.4.9. It is, therefore affected by a use-after-free vulnerability in the pharparse function due to mishandling of the actualalias variable. An unauthenticated, remote attacker cou...
Scientific Linux Security Update : firefox on SL6.x i386/x86_64 (20200603)
Security Fixes : - Mozilla: Use-after-free in SharedWorkerService CVE-2020-12405 - Mozilla: JavaScript Type confusion with NativeTypes CVE-2020-12406 - Mozilla: Memory safety bugs fixed in Firefox 77 and Firefox ESR 68.9 CVE-2020-12410 C Tenable Network Security, Inc. The descriptive text is C...
Security Update for .NET Core (March 2018)
The remote Windows host has an installation of .NET Core with a version less than 2.0.6. Therefore, the host is affected by multiple vulnerabilities. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The...
RHEL 6 : kernel (RHSA-2018:0018)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0018 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: An industry-wide issue was found in th...
WordPress < 4.7.1 Multiple Vulnerabilities
According to its self-reported version number, the WordPress application running on the remote web server is prior to 4.7.1. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the PHPMailer component in the class.phpmailer.php script due to...
MS16-039: Security Update for Microsoft Graphics Component (3148522)
The remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - Multiple elevation of privilege vulnerabilities exist in the Windows kernel-mode driver due to a failure to properly handle objects in memory. An attacker can exploit these...
Unpassworded '4Dgifts' Account
The account '4Dgifts' has no password set. An attacker may use it to gain further privileges on this system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid11243; scriptversion"1.37";...
Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2022-9483)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9483 advisory. - Add debugfs for controlling MMIO state data Kanth Ghatraju Orabug: 34202260 CVE-2022-21123 CVE-2022-21127 CVE-2022-21125 CVE-2022-21166 - KVM:...
KB4103712: Windows 7 and Windows Server 2008 R2 May 2018 Security Update
The remote Windows host is missing security update 4103712 or cumulative update 4103718. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully...
NetBIOS Multiple IP Address Enumeration
By sending a special NetBIOS query, Nessus was able to detect the use of multiple IP addresses on the remote host. This indicates the host may be running virtualization software, a VPN client, or has multiple network interfaces. C Tenable Network Security, Inc. include"compat.inc"; if description...
libcurl 7.69 < 8.4.0 Heap Buffer Overflow
The version of libcurl installed on the remote host is affected by a heap based buffer overflow in the SOCKS5 proxy handshake. When curl is asked to pass along the hostname to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that...
Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2022-026 (ALASKERNEL-5.4-2022-026)
The version of kernel installed on the remote host is prior to 5.4.196-108.356. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2022-026 advisory. In the Linux kernel, the following vulnerability has been resolved: dm: fix mempool NULL pointer race when...
SUSE SLES15 Security Update : kernel (Live Patch 23 for SLE 15 SP2) (SUSE-SU-2022:1947-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1947-1 advisory. - A use-after-free flaw was found in the Linux kernel's sound subsystem in the way a user triggers concurrent calls of PCM hwparams...
RHEL 7 : samba (RHSA-2020:5439)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5439 advisory. Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol,...
EulerOS 2.0 SP2 : java-1.7.0-openjdk (EulerOS-SA-2019-2460)
According to the versions of the java-1.7.0-openjdk packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development...
SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2018:3490-1) (Foreshadow)
This update for xen fixes the following issues : XEN was updated to the Xen 4.9.3 bug fix only release bsc1027519 CVE-2018-17963: qemudeliverpacketiov accepted packet sizes greater than INTMAX, which allows attackers to cause a denial of service or possibly have unspecified other impact. bsc11110...
Artifex Ghostscript < 9.25 PostScript Code Execution Vulnerability
The version of Artifex Ghostscript installed on the remote Windows host is prior to 9.25. It is, therefore, affected by a code execution vulnerability. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid117596; scriptversion"1.5";...
PHP 7.0.x < 7.0.28 Stack Buffer Overflow
According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.28. It is, therefore, affected by a stack buffer overflow vulnerability. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
SUSE SLES11 Security Update : python-pycrypto (SUSE-SU-2017:1744-1)
This update for python-pycrypto fixes the following issues : - CVE-2013-7459: Fixed a potential heap buffer overflow in ALGnew bsc1017420. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...
Citrix XenServer Multiple Vulnerabilities (CTX200892)
The version of Citrix XenServer installed on the remote host is affected by multiple vulnerabilities : - A flaw exists in the VGA emulator in QEMU that allows a local guest user to read host memory by setting the display to a high resolution. CVE-2014-3615 - A flaw exists in the setpixelformat...
Apache mod_negotiation Multi-Line Filename Upload Vulnerabilities
According to its banner, the version of Apache running on the remote host does not properly escape filenames in 406 responses. A remote attacker can exploit this to inject arbitrary HTTP headers or conduct cross-site scripting attacks by uploading a file with a specially crafted name. Note that t...
PHP 5.3 < 5.3.3 Multiple Vulnerabilities
According to its banner, the version of PHP 5.3 installed on the remote host is older than 5.3.3. Such versions may be affected by several security issues : - An error exists when processing invalid XML-RPC requests that can lead to a NULL pointer dereference. bug 51288 CVE-2010-0397 - An error...
MS10-046: Vulnerability in Windows Shell Could Allow Remote Code Execution (2286198) (EASYHOOKUP)
The remote windows host contains a version of the Windows Shell that contains a vulnerability in the way it handles shortcut icons. An attacker, exploiting this flaw, can execute arbitrary commands on the remote host subject to the privileges of the user opening the shortcut. EASYHOOKUP is one of...
SilverStream Directory Listing
The SilverStream application server running on the remote host currenly has directory listings enabled. An unauthenticated, remote attacker may use this issue to gain more knowledge about the service and possibly to retrieve sensitive files. This script was written by Tor Houghton, but I looked a...
Nortel Contivity HTTP Server cgiproc Special Character DoS
It is possible to crash the remote host by doing the HTTP request : GET /cgi/cgiproc?$ C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10160; scriptversion"1.39"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/09/29"; scriptcveid"CVE-2000-0064";...
RHEL 7 : webkitgtk4 (RHSA-2025:10364)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:10364 advisory. WebKitGTK+ is port of the WebKit portable web rendering engine to the GTK+ platform. These packages provide WebKitGTK+ for GTK+ 3. Security...
OpenSSL 3.0.0 < 3.0.9 Multiple Vulnerabilities
The version of OpenSSL installed on the remote host is prior to 3.0.9. It is, therefore, affected by multiple vulnerabilities as referenced in the 3.0.9 advisory. - The function X509VERIFYPARAMadd0policy is documented to implicitly enable the certificate policy check when doing certificate...
Spring Framework < 5.2.20 / 5.3.x < 5.3.18 Remote Code Execution (CVE-2022-22965)
The remote host contains a Spring Framework library version that is prior to 5.2.20 or 5.3.x prior to 5.3.18. It is, therefore, affected by a remote code execution vulnerability: - A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution RCE via data...
Ubuntu 16.04 ESM / 18.04 LTS : Linux kernel vulnerabilities (USN-5268-1)
The remote Ubuntu 16.04 ESM / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5268-1 advisory. Keyu Man discovered that the ICMP implementation in the Linux kernel did not properly handle received ICMP error packets. A remote attacker...
openSUSE 15 Security Update : kernel (openSUSE-SU-2021:1477-1)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1477-1 advisory. The openSUSE Leap 15.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-13405: The...
Photon OS 3.0: Curl PHSA-2021-3.0-0301
An update of the curl package has been released. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-3.0-0301. The text itself is copyright C VMware, Inc. include'deprecatednasllevel.inc...
Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-4945-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4945-1 advisory. It was discovered that the Nouveau GPU driver in the Linux kernel did not properly handle error conditions in some situations. A local attack...
KB4571694: Windows 10 Version 1607 and Windows Server 2016 August 2020 Security Update
The remote Windows host is missing security update 4571694. It is, therefore, affected by multiple vulnerabilities : - A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could instal...
Photon OS 2.0 : linux / linux-esx / linux-aws / linux-secure (PhotonOS-PHSA-2018-2.0-0042) (deprecated)
An update of 'linux', 'linux-esx', 'linux-aws', 'linux-secure' packages of Photon OS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0042. The te...
RHEL 7 : kernel (RHSA-2017:2437)
An update for kernel is now available for Red Hat Enterprise Linux 7.3 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
MS08-037: Vulnerabilities in DNS Could Allow Spoofing (951746) (uncredentialed check)
According to its self-reported version number, the Microsoft DNS Server running on the remote host contains issues in the DNS library that could allow an attacker to send malicious DNS responses to DNS requests made by the remote host thereby spoofing or redirecting internet traffic from legitima...
SQL Dump Files Disclosed via Web Server
The remote web server hosts publicly available files that contain SQL instructions. These files are most likely database dumps and may contain sensitive information. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...