177629 matches found
Loxone Smart Home Default Admin Login (HTTP)
The remote Loxone installation has default credentials set. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
openSUSE: Security Advisory for libxml2 (openSUSE-SU-2016:1594-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-1615)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-1836-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
WordPress Multiple Vulnerabilities (Mar 2019) - Windows
WordPress is prone to a cross-site request forgery CSRF vulnerability in a comment form which leads to HTML injection and cross-site scripting XSS attacks. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Microsoft Windows: Network security: Minimum session security for NTLM SSP based clients
This test checks the setting for policy OpenVAS Vulnerability Test $Id: winnsecminsessionsecntlmserver.nasl 11337 2018-09-11 14:23:53Z emoss $ Check value for Network security: Minimum session security for NTLM SSP based including secure RPC servers Authors: Emanuel Moss Copyright: Copyright c 20...
Microsoft .NET Framework Security Feature Bypass And DoS Vulnerabilities (KB4096418)
This host is missing an important security update according to Microsoft KB4096418 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
RedHat Update for log4j RHSA-2017:2423-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ImageMagick 'IsPixelGray' Function Denial of Service Vulnerability - Windows
ImageMagick is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Nmap OS Identification (NASL wrapper)
This plugin runs nmap to identify the remote Operating System. NOTE: This routine is only started as a last fallback if other more reliable OS detection methods failed. This routine also has a few additional drawbacks: - Depending on the exposed services on the target it might take a considerable...
glFusion Multiple SQL Injection Vulnerabilities
glFusion is prone to multiple SQL injection vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows 10: Do not suggest third-party content in Windows spotlight
If you enable this policy, Windows spotlight features like lock screen spotlight, suggested apps in Start menu or Windows tips will no longer suggest apps and content from third-party software publishers. Users may still see suggestions and tips to make them more productive with Microsoft feature...
Drupal Core Critical RCE Vulnerability (SA-CORE-2018-004) - Linux
Drupal is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:drupal:drupal"; if...
Microsoft Windows Multiple Vulnerabilities (KB4056898)
This host is missing an important security update according to Microsoft KB4056898 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Microsoft XML Core Services Remote Code Execution Vulnerabilities (2756145)
This host is missing a critical security update according to Microsoft Bulletin MS13-002. OpenVAS Vulnerability Test $Id: secpodms13-002.nasl 4922 2017-01-02 16:28:42Z cfi $ Microsoft XML Core Services Remote Code Execution Vulnerabilities 2756145 Authors: Rachana Shetty Copyright: Copyright c 20...
Microsoft Windows Multiple Vulnerabilities (KB4516065)
This host is missing a critical security update according to Microsoft KB4516065 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...
Debian: Security Advisory (DLA-1787-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft .NET Framework Multiple Vulnerabilities (KB4483459)
This host is missing an important security update according to Microsoft KB4483459 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...
Nagios Core <= 4.4.2 XSS Vulnerability
Nagios Core 4.4.2 has XSS via the alert summary reports of plugin results, as demonstrated by a SCRIPT element delivered by a modified checkload plugin to NRPE. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by th...
Microsoft Windows Multiple Vulnerabilities (KB4074594)
This host is missing a critical security update according to Microsoft KB4074594 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fortinet FortiOS SSH Undocumented Interactive Login Vulnerability (FG-IR-16-001) (SSH) - Active Check
An undocumented account used for communication with authorized FortiManager devices exists on some versions of FortiOS. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Check Point VPN-1 PAT Information Disclosure Vulnerability - Active Check
Check Point VPN-1 PAT is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2008 Tim Brown and Portcullis Computer Security Ltd Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Mongoose Web Server < 6.15 Buffer Overflow Vulnerability
Mongoose Web Server is prone to a heap-based buffer overflow in parsemqtt. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...
Asterisk DoS Vulnerability (AST-2019-001)
Asterisk is prone to denial of service DoS vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:digium:asterisk"; if...
Moodle 3.x Authentication Bypass Vulnerability (Mar 2018) - Linux
Suspended users with OAuth 2 authentication method can still log in to the site. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
A2Billing Backup File Download / RCE Vulnerabilities
A2Billing is prone to backup file download and remote code execution RCE vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
www too long url
Remote web server is vulnerable to the too long URL vulnerability. It might be possible to gain remote access using buffer overflow. OpenVAS Network Vulnerability Test WWW Too Long URL LSS-NVT-2009-004 Developed by LSS Security Team Copyright C 2009 LSS This program is free software; you can...
VMware Spring Cloud Gateway < 3.0.7, 3.1.x < 3.1.1 RCE Vulnerability - Active Check
VMware Spring Cloud Gateway is prone to a remote code execution RCE vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...
Netgear Switch Discovery Protocol (NSDP) Detection
Detection of devices supporting the Netgear Switch Discovery Protocol NSDP. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...
Schneider Electric EcoStruxure Machine Expert - HVAC Detection (Windows SMB Login)
SMB login-based detection of Schneider Electric EcoStruxure Machine Expert - HVAC. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Microsoft Windows Multiple Vulnerabilities (KB4462917)
This host is missing a critical security update according to Microsoft KB4462917 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Multiple Vulnerabilities (KB4457144)
This host is missing a critical security update according to Microsoft KB4457144. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
QNAP QTS Multiple RCE Vulnerabilities
QNAP QTS is prone to multiple remote code execution RCE vulnerabilities. This VT was deprecated since it is a duplicate of QNAP QTS 4.2.6 build 20171208, 4.3.3.x 4.3.3.0396 build 20171205, 4.3.4.x 4.3.4.0411 build 20171208 Multiple Vulnerabilities OID: 1.3.6.1.4.1.25623.1.0.107274...
Dnsmasq < 2.81 DoS Vulnerability
Dnsmasq is prone to a Denial of Service DoS vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...
Microsoft Windows Multiple Vulnerabilities (KB4486563)
This host is missing a critical security update according to Microsoft KB4486563 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...
HP Pagewide and OfficeJet Printers RCE Vulnerability (Jan 2018)
A potential security vulnerability has been identified with HP PageWide Printers and HP OfficeJet Pro Printers. This vulnerability could potentially be exploited to execute arbitrary code. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources...
Piwigo Multiple Vulnerabilities (Jan 2017)
Piwigo is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:piwigo:piwigo"; if description...
Non-Existent Page Physical Path Disclosure Vulnerability (HTTP)
The remote web server is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2003 Michel Arboi SPDX-FileCopyrightText: Improved / extended code / detection routine since 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright ...
MikroTik RouterOS Intermediary Vulnerability (CVE-2019-3924)
MikroTik RouterOS is prone to an intermediary vulnerability. The software will execute user defined network requests to both WAN and LAN clients. A remote unauthenticated attacker can use this vulnerability to bypass the router SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions migh...
Microsoft Windows: MSS: Allow IRDP to detect and configure Default Gateway addresses
This test checks the setting for policy OpenVAS Vulnerability Test $Id: winmlperformrouterdiscovery.nasl 11337 2018-09-11 14:23:53Z emoss $ Check value for MSS: PerformRouterDiscovery Allow IRDP to detect and configure Default Gateway addresses could lead to DoS Authors: Emanuel Moss Copyright:...
PHP < 5.5.32, 5.6.x < 5.6.18, 7.x < 7.0.3 Privilege Escalation Vulnerability - Linux
PHP is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...
Apache HTTP Server 'mod_auth_digest' Multiple Vulnerabilities - Windows
Apache HTTP Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:httpserver";...
ZTE ZXV10 W300 Wireless Router Hardcoded Credentials Security Bypass Vulnerability (SNMP/Telnet)
ZTE ZXV10 W300 wireless router is prone to a security-bypass vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
DIRB (NASL wrapper)
This VT is deprecated. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.103079";...
Toshiba Printers Multiple Vulnerabilities (May 2024)
Multiple Toshiba printers are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
CentOS Update for kernel CESA-2019:1873 centos7
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-4464-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Elastic Kibana < 5.6.15, 6.x.x < 6.6.1 Multiple Vulnerabilities - Linux
Kibana is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
PowerDNS Recursor 4.1.x < 4.1.9 DNSSEC Signature Vulnerability
An issue has been found in PowerDNS Recursor where records in the answer section of responses received from authoritative servers with the AA flag not set were not properly validated, allowing an attacker to bypass DNSSEC validation. SPDX-FileCopyrightText: 2019 Greenbone AG Some text description...
EFI Fiery Detection (HTTP)
HTTP based detection of EFI Fiery. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it...