Citrix ADC and Citrix NetScaler Gateway Arbitrary Code Execution (CTX267027) (Direct Check)

Binary data citrixsslvpnCVE-2019-19781.nbin...

RHEL 8 : httpd:2.4 (RHSA-2019:2893)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:2893 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: HTTP/2: request for large respon...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4196)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4196 advisory. - posix-timer: Properly check sigevent-sigevnotify Thomas Gleixner Orabug: 28481412 CVE-2017-18344 - x86/mm/kmmio: Make the tracer robust against...

SUSE SLES12 Security Update : java-1_8_0-ibm (SUSE-SU-2016:3078-1)

This update for java-180-ibm fixes the following issues : - CVE-2016-5568: Unspecified vulnerability allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT - CVE-2016-5556: Unspecified vulnerability allowed remote attackers to affect...

Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : php5 vulnerabilities (USN-1042-1)

It was discovered that an integer overflow in the XML UTF-8 decoding code could allow an attacker to bypass cross-site scripting XSS protections. This issue only affected Ubuntu 6.06 LTS, Ubuntu 8.04 LTS, and Ubuntu 9.10. CVE-2009-5016 It was discovered that the XML UTF-8 decoding code did not...

MS KB2286198: Windows Shell Shortcut Icon Parsing Arbitrary Code Execution (EASYHOOKUP)

Windows Shell does not properly validate the parameters of a shortcut file when loading its icon. Attempting to parse the icon of a specially crafted shortcut file can result in arbitrary code execution. A remote attacker could exploit this by tricking a user into viewing a malicious shortcut fil...

Apache 2.4.x < 2.4.61

The version of Apache httpd installed on the remote host is prior to 2.4.61. It is, therefore, affected by a vulnerability as referenced in the 2.4.61 advisory. - Apache HTTP Server: source code disclosure with handlers configured via AddType: A regression in the core of Apache HTTP Server 2.4.60...

Azul Zulu Java Multiple Vulnerabilities (2023-04-18)

The version of Azul Zulu installed on the remote host is prior to 6 6.55.0.12 / 7 7.61.0.18 / 8 8.69.0.16 / 11 11.63.16 / 17 17.41.14 / 20 20.30.12. It is, therefore, affected by multiple vulnerabilities as referenced in the 2023-04-18 advisory. - Vulnerability in the Oracle Java SE, Oracle Graal...

Oracle Linux 8 : kernel (ELSA-2022-5564)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-5564 advisory. - debug: lockdown kgdb Orabug: 34270802 CVE-2022-21499 - perf: Fix sysperfeventopen race against self Michael Petlan 2087948 2087949 CVE-2022-1729 Tenable has...

KB5011495: Windows 10 Version 1607 and Windows Server 2016 Security Update (March 2022)

The remote Windows host is missing security update 5011495. It is, therefore, affected by multiple vulnerabilities - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2022-23283, CVE-2022-23284, CVE-2022-23287, CVE-2022-23290, CVE-2022-23293,...

MariaDB 10.5.0 < 10.5.15 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.5.15. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.5.15 advisory. - MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements that improperly interact with...

Ubuntu 20.04 LTS : Linux kernel (OEM) vulnerabilities (USN-5115-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5115-1 advisory. It was discovered that a race condition existed in the Atheros Ath9k WiFi driver in the Linux kernel. An attacker could possibly use this to expose...

OpenSSL 1.1.1 < 1.1.1l Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 1.1.1l. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.1.1l advisory. - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the string data...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9362)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9362 advisory. - bpf: Fix masking negation logic upon negative dst register Daniel Borkmann Orabug: 32911990 CVE-2021-31829 - Bluetooth: verify AMP hcichan before...

openSUSE Security Update : MozillaFirefox (openSUSE-2021-621)

This update for MozillaFirefox fixes the following issues : - Firefox was updated to 78.10.0 ESR bsc1184960 - CVE-2021-23994: Out of bound write due to lazy initialization - CVE-2021-23995: Use-after-free in Responsive Design Mode - CVE-2021-23998: Secure Lock icon could have been spoofed -...

CentOS 8 : mariadb-connector-c (CESA-2020:5503)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:5503 advisory. - mariadb-connector-c: Improper validation of content in a OK packet received from server CVE-2020-13249 - mysql: C API unspecified vulnerability CPU J...

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2486-1)

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2020-14314: Fixed a potential negative array index in ext4 bsc1173798. CVE-2020-14331: Fixed a missing check in scrollback handling bsc1174205 bsc1174247...

RHEL 6 : kernel-rt (RHSA-2020:1353)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1353 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

EulerOS 2.0 SP3 : bind (EulerOS-SA-2019-2557)

According to the versions of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - 'managed-keys' is a feature which allows a BIND resolver to automatically maintain the keys used by trust anchors which operators configure for us...

Mozilla Firefox < 67.0

The version of Firefox installed on the remote Windows host is prior to 67.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2019-13 advisory. - A use-after-free vulnerability can occur in the chrome event handler when it is freed while still in use. This results ...

SUSE SLES11 Security Update : kernel (SUSE-SU-2016:2976-1)

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. For the PowerPC64 a new 'bigmem' flavor has been added to support big Power machines. FATE319026 The following security bugs were fixed : - CVE-2016-7042: The prockeysshow function in security/keys/proc....

McAfee Application Control swin.sys Memory Corruption (SB10145)

The version of McAfee Application Control is 6.1.0 prior to build 706, 6.1.1 prior to build 404, 6.1.2 prior to build 449, 6.1.3 prior to build 441, or 6.2.0 prior to build 505. It is, therefore, affected by a kernel memory corruption issue in the swin.sys driver when handling a 786 syscall, whic...

Oracle Java SE Multiple Vulnerabilities (June 2013 CPU) (Unix)

The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is earlier than or equal to 7 Update 21, 6 Update 45 or 5 Update 45. It is, therefore, potentially affected by security issues in the following components : - 2D - AWT - CORBA - Deployment - Hotspot -...

Dell Client BIOS DoS (DSA-2023-467)

The Dell BIOS on the remote device is missing a security patch and is, therefore, affected by an improper NULL termination vulnerability that can result in a denial of service DoS condition. A high-privilege user with network access to the affected device can send malicious data to the device in...

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-5442-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5442-1 advisory. Kyle Zeng discovered that the Network Queuing and Scheduling subsystem of the Linux kernel did not properly perform reference counting in som...

AlmaLinux 8 : gcc-toolset-11-gcc (ALSA-2021:4586)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2021:4586 advisory. - An issue was discovered in the Bidirectional Algorithm in the Unicode Specification through 14.0. It permits the visual reordering of characters via control...

F5 Networks BIG-IP : Linux kernel vulnerability (K51674118)

The version of F5 Networks BIG-IP installed on the remote host is prior to 13.1.4.1 / 14.1.4.3 / 15.1.4 / 16.0.1.2 / 16.1.0. It is, therefore, affected by a vulnerability as referenced in the K51674118 advisory. The coredump implementation in the Linux kernel before 5.0.10 does not use locking or...

Fedora 31 : python38 (2020-6a88dad4a0)

Python 3.8.3 This is the third maintenance release of Python 3.8. See the changelog for details. Contains the security fix for CVE-2020-8492. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

Microsoft Windows SMBv3 Compression RCE (ADV200005)(CVE-2020-0796)(Remote)

A remote code execution vulnerability exists in Microsoft Server Message Block 3.1.1 SMBv3 protocol due to how it handles a maliciously crafted compressed data packet. An unauthenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands. Note that this plug...

CentOS 7 : tomcat (RHSA-2020:0855)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:0855 advisory. - When using the Apache JServ Protocol AJP, care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having high...

CentOS 6 : java-1.8.0-openjdk (CESA-2019:3136)

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

PHP 5.6.x < 5.6.28 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.28. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the parseurl function due to returning the incorrect host. An unauthenticated, remote attacker can exploit this to hav...

Scientific Linux Security Update : java-1.8.0-openjdk on SL6.x i386/x86_64 (20160120) (SLOTH)

An out-of-bounds write flaw was found in the JPEG image format decoder in the AWT component in OpenJDK. A specially crafted JPEG image could cause a Java application to crash or, possibly execute arbitrary code. An untrusted Java application or applet could use this flaw to bypass Java sandbox...

Oracle Solaris Third-Party Patch Update : libxslt (multiple_vulnerabilities_in_libxslt)

The remote Solaris system is missing necessary patches to address security updates : - The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote attackers to obtain potentially sensitive...

Printer Job Language (PJL) Detection

Nessus had detected that the service running on the remote host will answer an HP Printer Job Language PJL request, which indicates that it is a printer device running HP JetDirect. By using the PJL protocol, users can submit printing jobs, transfer files to or from the printer, and change...

EMC Legato Networker Multiple Vulnerabilities

The remote host is running one of the following products : - Legato Networker - Sun StorEdge Enterprise Backup Software - Sun Solstice Backup Software - Informix Storage Manager The installed version of this software is vulnerable to denial of service, unauthorized access and remote command...

WordPress 4.9.x < 4.9.23 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A directory traversal via wplang. CVE-2023-2745 - A Cross-Site Request Forgery CSRF via wpajaxsetattachmentthumbnail. - An authenticated stored Cross-Site Scripting XSS vi...

CentOS 7 : kernel (RHSA-2022:0063)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0063 advisory. - A flaw memory leak in the Linux kernel performance monitoring subsystem was found in the way if using PERFEVENTIOCSETFILTER. A local user could use...

Jenkins LTS < 2.277.2 / Jenkins weekly < 2.287 Multiple Vulnerabilities

According to its its self-reported version number, the version of Jenkins running on the remote web server is Jenkins LTS prior to 2.277.2 or Jenkins weekly prior to 2.287. It is, therefore, affected by multiple vulnerabilities: - Jenkins 2.286 and earlier, LTS 2.277.1 and earlier does not valida...

MariaDB 10.4.0 < 10.4.9 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.4.9. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.4.9 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Parser. Supported versions that are affected are 5.7....

SUSE SLED15 / SLES15 Security Update : go1.12 (SUSE-SU-2019:2214-1) (Ping Flood) (Reset Flood)

This update for go1.12 fixes the following issues : Security issues fixed : CVE-2019-9512: Fixed HTTP/2 flood using PING frames that results in unbounded memory growth bsc1146111. CVE-2019-9514: Fixed HTTP/2 implementation that is vulnerable to a reset flood, potentially leading to a denial of...

GLSA-201904-25 : QEMU: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201904-25 QEMU: Multiple vulnerabilities Multiple vulnerabilities have been discovered in QEMU. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for details...

Oracle Database Multiple Vulnerabilities (October 2017 CPU)

The remote Oracle Database Server is missing the October 2017 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities as noted in the October 2017 Critical Patch Update advisory. Please consult the CVRF details for the applicable CVEs for additional information. Note tha...

ESXi 5.0 / 5.1 / 5.5 / 6.0 Multiple Vulnerabilities (VMSA-2016-0010) (remote check)

The remote VMware ESXi host is version 5.0, 5.1, 5.5, or 6.0 and is missing a security patch. It is, therefore, affected by multiple vulnerabilities : - An arbitrary code execution vulnerability exists in the Shared Folders HGFS feature due to improper loading of Dynamic-link library DLL files fr...

Multiple SSH Vulnerabilities - Cisco Systems

Four different Cisco product lines are susceptible to multiple vulnerabilities discovered in the Secure Shell SSH protocol version 1.5. These issues have been addressed, and fixes have been integrated into the Cisco products that support this protocol. By exploiting the weakness in the SSH...

Microsoft Windows Sysinternals Sysmon < 14.13 Elevation of Privilege (November 2022)

An elevation of privilege vulnerability exists in Microsoft Windows Sysinternals Sysmon prior to 14.13. A locally authenticated attacker who successfully exploited the vulnerability could manipulate information on the Sysinternals services to achieve elevation from local user to SYSTEM admin. Not...

Amazon Corretto Java 18.x < 18.0.2.9.1 Multiple Vulnerabilities

The version of Amazon Corretto installed on the remote host is prior to 18 18.0.2.9.1. It is, therefore, affected by multiple vulnerabilities as referenced in the corretto-18-2022-Jul-19 advisory. - hotspot/compiler CVE-2022-21540 - hotspot/runtime CVE-2022-21541 - core-libs/java.util...

Apache Shiro < 1.2.5 Default Cipher Key (CVE-2016-4437)

The Apache Shiro uses a default cipher key for the 'remember me' feature when not explicitly configured. An unauthenticated, remote attacker can exploit this, via a specially crafted request, to execute arbitrary code or access content that would otherwise be protected by a security constraint...

Amazon Corretto Java 8.x < 8.312.07.1 Multiple Vulnerabilities

The version of Amazon Corretto installed on the remote host is prior to 8 8.312.07.1. It is, therefore, affected by multiple vulnerabilities as referenced in the corretto-8-2021-Oct-19 advisory. - security-libs/javax.net.ssl CVE-2021-35550, CVE-2021-35578, CVE-2021-35603 - client-libs/javax.swing...

CentOS 8 : firefox (CESA-2019:1696)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2019:1696 advisory. - Mozilla: Type confusion in Array.pop CVE-2019-11707 - Mozilla: Sandbox escape using Prompt:Open CVE-2019-11708 Note that Nessus has not tested for th...