Openvas - Page 47 of Openvas Most Viewed Vulnerabilities List

OpenVAS•added 2017/04/03 12:0 a.m.•128 views

UBNT Discovery Protocol Detection (UDP)

UDP based detections of services supporting the UBNT Ubiquiti Networks discovery protocol. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if...

OpenVAS•added 2016/09/26 12:0 a.m.•128 views

Drupal 'User' Module Privilege Escalation Vulnerability - Windows

Drupal is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:drupal:drupal";...

8.8CVSS8.8AI score0.02531EPSS

OpenVAS•added 2015/12/11 12:0 a.m.•128 views

Operating System (OS) Detection (SMTP/POP3/IMAP)

SMTP/POP3/IMAP banner based Operating System OS detection. SPDX-FileCopyrightText: 2015 SCHUTZWERK GmbH SPDX-FileCopyrightText: Reworked, improved and extended detection code and pattern since 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright...

5.2AI score

OpenVAS•added 2015/11/11 12:0 a.m.•128 views

Microsoft .NET Framework Privilege Elevation Vulnerabilities (3104507)

This host is missing an important security update according to Microsoft Bulletin MS15-118. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.3CVSS4.7AI score0.61024EPSS

OpenVAS•added 2015/09/23 12:0 a.m.•128 views

AMI MegaRAC SP Firmware Detection (HTTP)

HTTP based detection of AMI MegaRAC SP Firmware. This VT has been deprecated and replaced by the VT SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

OpenVAS•added 2011/06/21 12:0 a.m.•128 views

Microsoft XML Editor Information Disclosure Vulnerability (2543893)

This host is missing an important security update according to Microsoft Bulletin MS11-049. OpenVAS Vulnerability Test $Id: secpodms11-049.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft XML Editor Information Disclosure Vulnerability 2543893 Authors: Antu Sanadi Copyright: Copyright c 2011 SecPod...

4.3CVSS6.4AI score0.15254EPSS

OpenVAS•added 2010/10/01 12:0 a.m.•128 views

SmarterTools SmarterMail < 7.2.3925 Directory Traversal Vulnerability

SmarterTools SmarterMail is prone to a directory traversal vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5CVSS6.6AI score0.03134EPSS

Exploits13References4

OpenVAS•added 2005/11/03 12:0 a.m.•128 views

NIPrint LPD-LPR Print Server DoS Vulnerability

A vulnerability in the NIPrint could allow an attacker to remotely overflow an internal buffer which could allow code execution. SPDX-FileCopyrightText: 2003 Matt North Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.5CVSS7.4AI score0.68318EPSS

Exploits5References2

OpenVAS•added 2019/10/25 12:0 a.m.•127 views

PHP < 7.1.33, 7.2.x < 7.2.24, 7.3.x < 7.3.11 RCE Vulnerability - Version Check

PHP is prone to a remote code execution RCE vulnerability in certain nginx + php-fpm configurations. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

9.8CVSS8.3AI score0.9947EPSS

Exploits54References7

OpenVAS•added 2019/09/27 12:0 a.m.•127 views

openSUSE: Security Advisory for nmap (openSUSE-SU-2019:2198-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.06081EPSS

Exploits2References2

OpenVAS•added 2019/06/12 12:0 a.m.•127 views

Microsoft Windows Multiple Vulnerabilities (KB4503284)

This host is missing a critical security update according to Microsoft KB4503284 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.3CVSS7.3AI score0.48043EPSS

Exploits17References3

OpenVAS•added 2018/12/12 12:0 a.m.•127 views

Microsoft .NET Framework 3.5 Multiple Vulnerabilities (KB4470502)

This host is missing a critical security update according to Microsoft KB4470502 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.6AI score0.22131EPSS

Exploits0References3

OpenVAS•added 2018/01/04 12:0 a.m.•127 views

Microsoft Windows Multiple Vulnerabilities (KB4056890)

This host is missing a critical security update according to Microsoft KB4056890 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.93838EPSS

Exploits44References1

OpenVAS•added 2017/08/22 12:0 a.m.•127 views

Notepad++ Hex Editor Plugin BOF Vulnerability (Aug 2017)

Notepad++ is prone to a buffer overflow BOF vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS7.7AI score0.01643EPSS

OpenVAS•added 2017/02/16 12:0 a.m.•127 views

Moxa NPort Devices Multiple Vulnerabilities (MCSA-160401)

Moxa NPort devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPEPREFIX = "cpe:/o:moxa:nport"; if...

10CVSS6.4AI score0.20215EPSS

Exploits4References2

OpenVAS•added 2009/12/15 12:0 a.m.•127 views

Digital Scribe <= 1.4.1 Multiple SQLi Vulnerabilities - Active Check

Digital Scribe is prone to multiple SQL injection SQLi vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

8.4AI score

OpenVAS•added 2005/11/03 12:0 a.m.•127 views

Check Point FireWall-1 (FW-1) SecureRemote (SecuRemote) Detection

The remote host seems to be a Check Point FireWall-1 FW-1 running SecureRemote SecuRemote. SPDX-FileCopyrightText: 2005 SecuriTeam SPDX-FileCopyrightText: New / improved code since 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

OpenVAS•added 2005/11/03 12:0 a.m.•127 views

YaPiG Password Protected Directory Access Flaw

The remote version of YaPiG a flaw that can let a malicious user view images in password protected directories. SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.5AI score

Exploits0References4

OpenVAS•added 2005/11/03 12:0 a.m.•127 views

Default password 'forgot' for account 'super' (SSH/Telnet)

The account SPDX-FileCopyrightText: 2005 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.17292";...

9.7AI score

OpenVAS•added 2020/02/25 12:0 a.m.•126 views

Apache Tomcat HTTP Request Smuggling Vulnerability (Feb 2020) - Linux

Apache Tomcat is prone to a HTTP request smuggling vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:tomcat";...

5.8CVSS7.5AI score0.08872EPSS

OpenVAS•added 2019/11/11 12:0 a.m.•126 views

Debian: Security Advisory (DLA-1986-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.6AI score0.01452EPSS

OpenVAS•added 2019/07/02 12:0 a.m.•126 views

Reolink IP Cameras Detection

Detects the installation of Reolink IP Cameras. This script sends an HTTP GET request and tries to ensure the presence of a Reolink IP Camera. Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...

0.2AI score

OpenVAS•added 2019/05/10 12:0 a.m.•126 views

Fedora Update for ruby FEDORA-2019-feac6674b7

8.8CVSS8.5AI score0.04212EPSS

OpenVAS•added 2019/05/01 12:0 a.m.•126 views

CentOS Update for kernel CESA-2019:0818 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.3AI score0.16523EPSS

Exploits3References2

OpenVAS•added 2019/01/15 12:0 a.m.•126 views

i-doit CMDB Detection

Detection of i-doit CMDB. The script sends a connection request to the server and attempts to detect i-doit CMDB and to extract its version. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

7.2AI score

OpenVAS•added 2018/06/12 12:0 a.m.•126 views

Microsoft Windows: User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop

This security setting controls whether User Interface Accessibility UIAccess or UIA programs can automatically disable the secure desktop for elevation prompts that are used by a standard user. Note: This setting does not change the behavior of the UAC elevation prompt for administrators. C...

7.4AI score

OpenVAS•added 2018/04/11 12:0 a.m.•126 views

Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability (KB4093227)

This host is missing an important security update according to Microsoft KB4093227. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...

5.3CVSS6.9AI score0.04721EPSS

OpenVAS•added 2018/01/22 12:0 a.m.•126 views

Microsoft Windows Speculative Execution Side-Channel Vulnerabilities (KB4073291)

This host is missing an important security update according to Microsoft KB4073291. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...

7.2AI score

Exploits0References4

OpenVAS•added 2018/01/05 12:0 a.m.•126 views

RedHat Update for kernel RHSA-2018:0008-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.6CVSS7.4AI score0.93838EPSS

Exploits12References2

OpenVAS•added 2017/11/09 12:0 a.m.•126 views

PHP < 5.6.32, 7.x < 7.0.24, 7.1.x < 7.1.11 Heap Based Buffer Overflow Vulnerability - Windows

PHP is prone to a heap buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

7.5CVSS8.1AI score0.26373EPSS

Exploits2References4

OpenVAS•added 2017/09/07 12:0 a.m.•126 views

Apache Struts Security Update (S2-052) - Active Check

Apache Struts is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.1CVSS7.3AI score0.99461EPSS

Exploits23References5

OpenVAS•added 2015/12/17 12:0 a.m.•126 views

Joomla! 1.5.0 < 3.4.6 RCE Vulnerability - Version Check

Joomla! is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; if...

7.5CVSS9AI score0.98283EPSS

Exploits16References2

OpenVAS•added 2015/09/09 12:0 a.m.•126 views

Microsoft Windows Graphics Component Remote Code Execution Vulnerability (3089656)

This host is missing a critical security update according to Microsoft Bulletin MS15-097. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS8.3AI score0.35639EPSS

Exploits6References6

OpenVAS•added 2012/10/10 12:0 a.m.•126 views

Siemens SIMATIC S7-1200 PLC 'web server' Component XSS Vulnerability (SSA-279823)

Siemens SIMATIC S7-1200 devices are prone to a cross-site scripting XSS vulnerability because they fail to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...

4.3CVSS7.1AI score0.02567EPSS

OpenVAS•added 2012/02/12 12:0 a.m.•126 views

Gentoo Security Advisory GLSA 201110-22 (postgresql-server postgresql-base)

The remote host is missing updates announced in advisory GLSA 201110-22. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

8.5CVSS0.6AI score0.13361EPSS

Exploits14

OpenVAS•added 2011/12/28 12:0 a.m.•126 views

FreeBSD 'telnetd' Daemon Remote Buffer Overflow Vulnerability

FreeBSD is prone to a remote buffer-overflow vulnerability. Exploiting this issue allows remote attackers to execute arbitrary code with superuser privileges. Successfully exploiting this issue will completely compromise affected computers. OpenVAS Vulnerability Test $Id: gbfreebsdtelnetd51182.na...

10CVSS1.2AI score0.95104EPSS

Exploits19References3

OpenVAS•added 2005/11/03 12:0 a.m.•126 views

Nikto (NASL wrapper)

This VT is deprecated. Copyright C 2005 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under th...

OpenVAS•added 2019/09/27 12:0 a.m.•125 views

Fedora Update for dcmtk FEDORA-2019-12650a34d8

9.8CVSS9.6AI score0.07567EPSS

OpenVAS•added 2019/05/26 12:0 a.m.•125 views

Debian: Security Advisory (DLA-1803-1)

9.1CVSS7.7AI score0.06843EPSS

OpenVAS•added 2019/05/11 12:0 a.m.•125 views

Debian: Security Advisory (DSA-4441-1)

9.8CVSS7AI score0.58061EPSS

Exploits1References4

OpenVAS•added 2019/02/13 12:0 a.m.•125 views

Microsoft Office 2010 Service Pack 2 Security Feature Bypass Vulnerability (KB4462174)

This host is missing an important security update according to Microsoft KB4462174 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

5.5CVSS5.7AI score0.12783EPSS

OpenVAS•added 2018/11/19 12:0 a.m.•125 views

PHPMailer < 5.2.27, 6.x < 6.0.6 Object Injection Attack Vulnerability

PHPMailer is prone to an object injection vulnerability. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

8.8CVSS8.9AI score0.02211EPSS

OpenVAS•added 2018/08/06 12:0 a.m.•125 views

Portainer UI No Administrator Vulnerability

Portainer is prone to an information disclosure and authentication bypass vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.8CVSS9.4AI score0.01469EPSS