HTMLawed < 1.2.9 Command Injection (CVE-2022-35914)

Binary data htmlawedcmdinjection.nbin...

KB5018476: Windows 8.1 and Windows Server 2012 R2 Security Update (October 2022)

The remote Windows host is missing security update 5018476. It is, therefore, affected by multiple vulnerabilities - Server Service Remote Protocol Elevation of Privilege Vulnerability CVE-2022-38045 - Microsoft ODBC Driver Remote Code Execution Vulnerability CVE-2022-38040 - Microsoft WDAC OLE D...

Amazon Linux 2 : kernel (ALASKERNEL-5.15-2022-003)

The version of kernel installed on the remote host is prior to 5.15.50-23.125. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2022-003 advisory. - With shadow paging enabled, the INVPCID instruction results in a call to kvmmmuinvpcidgva. If INVPCID is...

EulerOS 2.0 SP9 : openssl (EulerOS-SA-2021-1014)

According to the version of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL...

Photon OS 2.0: Linux PHSA-2020-2.0-0219

An update of the linux package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0219. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid134875...

Mozilla Thunderbird < 60.5.1

The version of Thunderbird installed on the remote Windows host is prior to 60.5.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2019-06 advisory. - A use-after-free vulnerability in the Skia library can occur when creating a path, leading to a potentially...

Junos OS: Multiple vulnerabilities in libxml2 (JSA10902)

According to its self-reported version number, the remote Juniper Junos device is affected by a vulnerability. When a specific BGP flowspec configuration is enabled and upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, a reachable assertion...

OpenSSL 1.0.2 < 1.0.2q Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 1.0.2q. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.0.2q advisory. - Simultaneous Multi-threading SMT in processors can enable local users to exploit software vulnerable to timing attacks via a...

Photon OS 2.0: Openssl / Procps-ng / Perl PHSA-2018-2.0-0084 (deprecated)

An update of 'procps-ng', 'openssl', 'perl' packages of Photon OS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0084. The text itself is...

macOS and Mac OS X Multiple Vulnerabilities (Security Update 2018-003)

The remote host is running Mac OS X 10.11.6 or Mac OS X 10.12.6 and is missing a security update. It is therefore, affected by multiple vulnerabilities. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid110323; scriptversion"1.9";...

OpenSSH < 7.5

According to its banner, the version of OpenSSH running on the remote host is prior to 7.5. It is, therefore, affected by an information disclosure vulnerability : - An unspecified timing flaw exists in the CBC padding oracle countermeasures, within the ssh and sshd functions, that allows an...

MySQL Enterprise Monitor 3.2.x < 3.2.5.1141 Multiple Vulnerabilities (SWEET32) (January 2017 CPU)

According to its self-reported version, the MySQL Enterprise Monitor application running on the remote host is 3.2.x prior to 3.2.5.1141. It is, therefore, affected by multiple vulnerabilities : - Multiple integer overflow conditions exist in the bundled version of OpenSSL in s3srvr.c, sslsess.c,...

RHEL 6 / 7 : openssl (RHSA-2016:0301) (DROWN)

Updated openssl packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

CentOS 5 / 6 : java-1.6.0-openjdk (CESA-2013:1014)

Updated java-1.6.0-openjdk packages that fix various security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

SuSE 10 Security Update : w3m (ZYPP Patch Number 7076)

w3m does not handle embedded NUL characters in the common name and in subject alternative names of X.509 certificates CVE-2010-2074. This update fixes the issue and also turns on verification of x509 certificates by default which was not the case before. %NASLMINLEVEL 70300 C Tenable Network...

MS10-024: Vulnerabilities in Microsoft Exchange and Windows SMTP Service Could Allow Denial of Service (981832) (uncredentialed check)

The installed version of Microsoft Exchange / Windows SMTP Service is affected by at least one vulnerability : - Incorrect parsing of DNS Mail Exchanger MX resource records could cause the Windows Simple Mail Transfer Protocol SMTP component to stop responding until the service is restarted...

Horde < 3.1 go.php url Parameter File Disclosure

Binary data 3477.prm...

MS04-022: Microsoft Windows Task Scheduler Remote Overflow (841873) (uncredentialed check)

There is a flaw in the Task Scheduler application which could allow a remote attacker to execute code remotely. There are many attack vectors for this flaw. An attacker, exploiting this flaw, would need to either have the ability to connect to the target machine or be able to coerce a local user ...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20095)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20095 advisory. - macsec: Fix use-after-free while sending the offloading packet Jianbo Liu Orabug: 37268700 CVE-2024-50261 - net/mlx5e: Fix CT entry update leaks...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2022-9699)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2022-9699 advisory. - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460938 CVE-2022-2588 - KVM: x86: Avoid theoretical NULL pointer...

Amazon Corretto Java 11.x < 11.0.6.10.1 Multiple Vulnerabilities

The version of Amazon Corretto installed on the remote host is prior to 11 11.0.6.10.1. It is, therefore, affected by multiple vulnerabilities as referenced in the corretto-11-2020-Jan-15 advisory. - Serialization CVE-2020-2583, CVE-2020-2604 - Security CVE-2020-2590, CVE-2020-2601 - Networking...

AlmaLinux 8 : grafana (ALSA-2021:4226)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2021:4226 advisory. - In Go before 1.14.14 and 1.15.x before 1.15.7, crypto/elliptic/p224.go can generate incorrect outputs, related to an underflow of the lowest limb during...

Oracle Linux 8 : java-11-openjdk (ELSA-2022-0185)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-0185 advisory. 1:11.0.14.0.9-2 - Fix FIPS issues in native code and with initialisation of java.security.Security - Related: rhbz2039366 1:11.0.14.0.9-1 - Update to...

RHEL 8 : java-1.8.0-openjdk (RHSA-2021:3893)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3893 advisory. The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security...

Apache 2.4.49 < 2.4.50 Multiple Vulnerabilities

The version of Apache httpd installed on the remote host is 2.4.49. It is, therefore, affected by multiple vulnerabilities as referenced in the 2.4.50 advisory. - While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external...

KB4586823: Windows 8.1 and Windows Server 2012 R2 November 2020 Security Update

The Windows installation on the remote host is missing security update 4586781. It is, therefore, affected by multiple vulnerabilities. Please review the vendor advisory for more details. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from t...

RHEL 7 : slirp4netns (RHSA-2020:0889)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:0889 advisory. The slirp4netns package contains user-mode networking for unprivileged network namespaces. It is required to enable networking for rootless...

Fedora 30 : xen (2019-cbb732f760)

add missing XSA-299 patches x86: Machine Check Error on Page Size Change DoS XSA-304, CVE-2018-12207 TSX Asynchronous Abort speculative side channel XSA-305, CVE-2019-11135 ---- VCPUOPinitialise DoS XSA-296, CVE-2019-18420 missing descriptor table limit checking in x86 PV emulation XSA-298,...

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:1744-1)

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. This update adds support for the Hygon Dhyana CPU fate327735. The following security bugs were fixed : CVE-2019-12614: An issue was discovered in dlparparseccproperty in...

KB4477029: Security update for Adobe Flash Player (November 2018)

The remote Windows host is missing security update KB4477029. It is, therefore, affected by an arbitrary code execution vulnerability in Adobe Flash Player. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid119095; scriptversion"1.6"; scriptcvsdate"Date: 2019/11/01";...

Photon OS 1.0: Linux / Openssl PHSA-2017-0042 (deprecated)

An update of linux,openssl packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0042. The text itself is copyright C VMware, Inc...

Pivotal Software Redis < 2.8.21 / 3.x < 3.0.2 RCE

The version of Redis installed on the remote host is affected by a remote code execution vulnerability. An attacker can exploit this issue via the eval command to execute arbitrary Lua bytecote. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

AIX Java Advisory : java_apr2017_advisory.asc (April 2017 CPU)

The version of Java SDK installed on the remote AIX host is affected by multiple vulnerabilities in the following subcomponents : - Multiple vulnerabilities exist in the zlib subcomponent that allow an unauthenticated, remote attacker to trigger denial of service conditions. CVE-2016-9840,...

openSUSE Security Update : the Linux Kernel (openSUSE-2017-930)

The openSUSE Leap 42.3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2017-1000111: Fixed a race condition in net-packet code that could be exploited to cause out-of-bounds memory access bsc1052365. - CVE-2017-1000112: Fixed a race...

macOS and Mac OS X Multiple Vulnerabilities (Security Update 2017-003)

The remote host is running Mac OS X 10.10.5, Mac OS X 10.11.6, or macOS 10.12.5 and is missing a security update. It is therefore, affected by multiple vulnerabilities : - An overflow condition exists in the curl component in the dprintfformatf function that is triggered when handling floating...

RHEL 6 / 7 : rhev-hypervisor (RHSA-2017:1209)

An update for rhev-hypervisor7 is now available for RHEV 3.X Hypervisor and Agents for RHEL-6 and RHEV 3.X Hypervisor and Agents for RHEL-7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives ...

Scientific Linux Security Update : java (jdk 1.6.0) on SL4.x, SL5.x i386/x86_64

CVE-2009-2409 deprecate MD2 in SSL cert validation Kaminsky CVE-2009-3873 OpenJDK JPEG Image Writer quantization problem 6862968 CVE-2009-3875 OpenJDK MessageDigest.isEqual introduces timing attack vulnerabilities 6863503 CVE-2009-3876 OpenJDK ASN.1/DER input stream parser denial of service 68649...

CentOS 5 : kernel (CESA-2011:1386)

Updated kernel packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores,...

PHP 5.3 < 5.3.7 Multiple Vulnerabilities

According to its banner, the version of PHP 5.3.x running on the remote host is prior to 5.3.7. It is, therefore, affected by the following vulnerabilities : - A use-after-free vulnerability in substrreplace. CVE-2011-1148 - A stack-based buffer overflow in socketconnect. CVE-2011-1938 - A code...

CentOS 3 / 4 : python (CESA-2007:1076)

Updated python packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Python is an interpreted, interactive, object-oriented programming language. An...

GLSA-200511-08 : PHP: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200511-08 PHP: Multiple vulnerabilities Multiple vulnerabilities have been found and fixed in PHP: a possible $GLOBALS variable overwrite problem through file upload handling, extract and importrequestvariables CVE-2005-3390 a loc...

Microsoft Windows SMB LsaQueryInformationPolicy Function SID Enumeration

By emulating the call to LsaQueryInformationPolicy, it was possible to obtain the host SID Security Identifier. The host SID can then be used to get the list of local users. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10859; scriptversion"1.47";...

Apache 2.4.x < 2.4.54 Multiple Vulnerabilities

The version of Apache httpd installed on the remote host is prior to 2.4.54. It is, therefore, affected by multiple vulnerabilities as referenced in the 2.4.54 advisory. - Denial of Service modsed: If Apache HTTP Server 2.4.53 is configured to do transformations with modsed in contexts where the...

KB5031407: Windows Server 2012 R2 Security Update (October 2023)

The remote Windows host is missing security update 5031407. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2023-36577 - Windows IIS Server Elevation of Privilege Vulnerability CVE-2023-36434 - Microsof...

SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2020:3548-1)

This update for MozillaFirefox fixes the following issues : Firefox Extended Support Release 78.5.0 ESR bsc1178824 - CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code - CVE-2020-16012: Variable time processing of cross-origin images during...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : MySQL vulnerabilities (USN-4604-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4604-1 advisory. Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL...

MariaDB 10.2.0 < 10.2.28 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.2.28. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.2.28 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Parser. Supported versions that are affected are...

ISC BIND 9.11.0 / 9.11.x < 9.11.13 / 9.11.x < 9.11.13-S1 / 9.12.x < 9.12.5-P2 / 9.14.x < 9.14.8 / 9.15 / 9.15.x < 9.15.6 Vulnerability

A denial of service DoS vulnerability exists in ISC BIND 9 due to TCP Client issues. An unauthenticated, remote attacker can exploit this issue, via DNS Request, to cause the device to stop responding. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid131735;...

openSUSE Security Update : the Linux Kernel (openSUSE-2018-656) (Spectre)

The openSUSE Leap 42.3 was updated to 4.4.138 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2018-3639: Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes...

CentOS 5 / 6 : httpd (CESA-2014:0920)

Updated httpd packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, a...