Openvas - Page 74 of Openvas Most Viewed Vulnerabilities List

OpenVAS•added 2019/05/08 12:0 a.m.•84 views

Debian: Security Advisory (DSA-4438-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.04288EPSS

Exploits2References4

Fedora Update for kernel-headers FEDORA-2019-7462acf8ba

6.9AI score

9.8CVSS8.7AI score0.03382EPSS

Fedora Update for mingw-python-qt5 FEDORA-2019-3c45bd2cc3

7.8CVSS7.3AI score0.00564EPSS

Fedora Update for kernel FEDORA-2018-2645eb8dab

10CVSS8.7AI score0.12679EPSS

Fedora Update for jackson-datatype-joda FEDORA-2019-df57551f6d

10CVSS8.7AI score0.12679EPSS

Fedora Update for bouncycastle FEDORA-2019-df57551f6d

9.8CVSS8.7AI score0.03382EPSS

Fedora Update for mingw-qt5-qtcharts FEDORA-2019-3c45bd2cc3

7.5CVSS7.5AI score0.10911EPSS

Fedora Update for python26 FEDORA-2018-71fd5db181

10CVSS8.7AI score0.12679EPSS

Fedora Update for jackson-dataformats-binary FEDORA-2019-df57551f6d

9.8CVSS8.4AI score0.04488EPSS

Fedora Update for python-urllib3 FEDORA-2019-a6c56f9756

8.8CVSS7.6AI score0.00454EPSS

Fedora Update for xen FEDORA-2019-3e89502cb1

OpenVAS•added 2019/05/05 12:0 a.m.•84 views

Debian: Security Advisory (DLA-1775-1)

7.5CVSS7.6AI score0.02297EPSS

Exploits1References3

OpenVAS•added 2019/04/10 12:0 a.m.•84 views

Microsoft Office Multiple Vulnerabilities (Apr 2019) - Mac OS X

This host is missing an important security update for Microsoft Office 2016/2019 on Mac OS X according to Microsoft security update April 2019 SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

9.3CVSS7.5AI score0.1371EPSS

OpenVAS•added 2018/12/05 12:0 a.m.•84 views

ASUSTOR ADM < 3.1.3.RHU2 Multiple Vulnerabilities - Active Check

ASUSTOR ADM is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:asustor:adm"; if description...

10CVSS6.6AI score0.04354EPSS

Exploits15References2

OpenVAS•added 2018/11/14 12:0 a.m.•84 views

Microsoft Office 2010 Service Pack 2 Remote Code Execution Vulnerability (KB3114565)

This host is missing an important security update according to Microsoft KB3114565 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

9.3CVSS7.7AI score0.19059EPSS

OpenVAS•added 2018/11/12 12:0 a.m.•84 views

nginx 1.1.3 - 1.15.5 Denial of Service and Memory Disclosure via mp4 module

A security issue was identified in the ngxhttpmp4module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. SPDX-FileCopyrightText: 2018 Greenbone AG Som...

8.2CVSS6.7AI score0.09801EPSS

OpenVAS•added 2018/10/10 12:0 a.m.•84 views

Microsoft Office 2010 Service Pack 2 Multiple RCE Vulnerabilities (KB4092483)

This host is missing an important security update according to Microsoft KB4092483 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

9.3CVSS8.6AI score0.18674EPSS

OpenVAS•added 2018/08/28 12:0 a.m.•84 views

Netwave IP Camera Detection

Detects whether the target is a Netwave IP camera and if so, tries to gather information about firmware and software version- SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

6.8AI score

OpenVAS•added 2017/11/24 12:0 a.m.•84 views

Do not scan fragile devices or ports

This script checks if the remote host is a SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.108298...

7AI score

OpenVAS•added 2017/11/09 12:0 a.m.•84 views

D-Link DGS-1500 Ax RCE Vulnerability

D-Link DGS-1500 Ax devices before 2.51B021 are vulnerable to remote code execution RCE. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if...

9.8CVSS10AI score0.01687EPSS

Exploits0References4

OpenVAS•added 2017/10/19 12:0 a.m.•84 views

Intel Active Management Technology WPA2 Key Reinstallation Vulnerabilities - KRACK (INTEL-SA-00101)

WPA2 as used in Intel Active Management Technology is prone to multiple security weaknesses aka Key Reinstallation Attacks KRACK SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

6.8CVSS7.5AI score0.02388EPSS

OpenVAS•added 2017/08/18 12:0 a.m.•84 views

RedHat Update for mercurial RHSA-2017:2489-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.9AI score0.05734EPSS

OpenVAS•added 2017/07/14 12:0 a.m.•84 views

openSUSE: Security Advisory for kernel (openSUSE-SU-2017:1825-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS8.2AI score0.00899EPSS

OpenVAS•added 2017/03/07 12:0 a.m.•84 views

F5 BIG-IP - PHP vulnerability CVE-2016-7124

ext/standard/varunserializer.c in PHP before 5.6.25 and 7.x before 7.0.10 mishandles certain invalid objects, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted serialized data that leads to a 1 destruct call or 2 magic method call...

9.8CVSS8.5AI score0.74EPSS

Exploits9References1

OpenVAS•added 2016/09/26 12:0 a.m.•84 views

OpenSSL 1.1.0a Use-After-Free Fix Vulnerability - Windows

OpenSSL is prone to a denial of service DoS or a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS8.5AI score0.69738EPSS

OpenVAS•added 2016/02/10 12:0 a.m.•84 views

Microsoft Windows Remote Desktop Elevation of Privilege Vulnerability (3134700)

This host is missing an important security update according to Microsoft Bulletin MS16-017. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

9.3CVSS7.7AI score0.11428EPSS

OpenVAS•added 2012/06/28 12:0 a.m.•84 views

openssh-server Forced Command Handling Information Disclosure Vulnerability

The authparseoptions function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorizedkeys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user accoun...

6.5CVSS5.1AI score0.03672EPSS

OpenVAS•added 2011/10/20 12:0 a.m.•84 views

Apple MAC OS X v10.6.8 Safari Multiple Vulnerabilities

This host is installed with Safari and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbsafarimultvulnmacosx.nasl 7024 2017-08-30 11:51:43Z teissa $ Apple MAC OS X v10.6.8 Safari Multiple Vulnerabilities Authors: Madhuri D Copyright: Copyright c 2011 Greenbone Networks GmbH...

9.3CVSS0.6AI score0.50213EPSS

Exploits14References2

OpenVAS•added 2011/09/09 12:0 a.m.•84 views

MyAuth3 Gateway 'pass' Parameter SQL Injection Vulnerability

This host is running MyAuth3 Gateway and is prone SQL injection vulnerability. OpenVAS Vulnerability Test $Id: gbmyauth3gatewayblindsqlinjvuln.nasl 5793 2017-03-30 13:40:15Z cfi $ MyAuth3 Gateway 'pass' Parameter SQL Injection Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2011 Greenbo...

0.3AI score

OpenVAS•added 2010/04/22 12:0 a.m.•84 views

Microsoft Windows SMTP Server MX Record Denial of Service Vulnerability

The Microsoft Windows Simple Mail Transfer Protocol SMTP Server is prone to a denial-of-service vulnerability and to to an information-disclosure vulnerability. Successful exploits of the denial-of-service vulnerability will cause the affected SMTP server to stop responding, denying service to...

5CVSS6.2AI score0.21491EPSS

Exploits1References5

OpenVAS•added 2006/03/26 12:0 a.m.•84 views

F5 BIG-IP Cookie Persistence

The remote load balancer suffers from an information disclosure vulnerability. Description : The remote host appears to be a F5 BigIP load balancer which encodes within a cookie the IP address of the actual web server it is acting on behalf of. Additionally, information after 'BIGipServer' is...

7AI score

10CVSS6.3AI score0.20978EPSS

X Server

This plugin detects X Window servers. X11 is a client - server protocol. Basically, the server is in charge of the screen, and the clients connect to it and send several requests like drawing a window or a menu, and the server sends events back to the clients, such as mouse clicks, key strokes, a...

Exploits3

Generic SMTP overflows

The remote SMTP server crashes when it is send a command with a too long argument. A cracker might use this flaw to kill this service or worse, execute arbitrary code on your server. OpenVAS Vulnerability Test $Id: smtpoverflows.nasl 6046 2017-04-28 09:02:54Z teissa $ Description: Generic SMTP...

1AI score

7.5CVSS6.3AI score0.08727EPSS

Agora CGI Cross Site Scripting

The remote web server contains a CGI which is vulnerable to a cross-site scripting issue. Description : Agora is a CGI based e-commerce package. Due to poor input validation, Agora allows an attacker to execute cross-site scripting attacks. SPDX-FileCopyrightText: 2002 Matt Moore Some text...

Exploits1References1

Format string on HTTP header name

The remote web server seems to be vulnerable to a format string attack on HTTP headers names. SPDX-FileCopyrightText: 2004 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.3AI score

10CVSS6.7AI score0.1187EPSS

SunSolve CD CGI user input validation

Sunsolve CD CGI scripts does not validate user input. SPDX-FileCopyrightText: 2002 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OpenVAS•added 2025/05/22 12:0 a.m.•83 views

openSUSE Security Advisory (SUSE-SU-2025:01614-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.4AI score0.13626EPSS

Exploits0References240

OpenVAS•added 2024/12/19 12:0 a.m.•83 views

Ubuntu: Security Advisory (USN-7166-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.5AI score0.01367EPSS

OpenVAS•added 2024/06/10 12:0 a.m.•83 views

Ubuntu: Security Advisory (USN-6817-1)

8.4CVSS8.2AI score0.01176EPSS

OpenVAS•added 2024/04/10 12:0 a.m.•83 views

Microsoft Windows Multiple Vulnerabilities (KB5036892)

This host is missing an important security update according to Microsoft KB5036892 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

8.8CVSS7.1AI score0.45151EPSS

Exploits6References3

OpenVAS•added 2020/07/15 12:0 a.m.•83 views

PHP < 7.2.32, 7.3 < 7.3.20, 7.4 < 7.4.8 libcurl Vulnerability (May 2020) - Windows

PHP is prone to an information disclosure vulnerability in libcurl. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if...

7.5CVSS6.2AI score0.03427EPSS

Exploits1References3

OpenVAS•added 2020/05/20 12:0 a.m.•83 views

Huawei Data Communication: IPv6 Neighbor Discovery Crafted Packet Denial of Service Vulnerability (huawei-sa-20160824-01-ipv6)

Multiple Huawei products are prone to a denial of service vulnerability in the IPv6 Neighbor Discovery packet process. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.5CVSS7.4AI score0.03823EPSS

OpenVAS•added 2020/05/19 12:0 a.m.•83 views

Dovecot 2.3.0 < 2.3.10 Multiple Vulnerabilities

Dovecot is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.5AI score0.08153EPSS

Exploits5References1

OpenVAS•added 2020/04/27 12:0 a.m.•83 views

Debian: Security Advisory (DLA-2188-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.04311EPSS

Exploits3References3

OpenVAS•added 2020/04/20 12:0 a.m.•83 views

Oracle MySQL Server 8.0 <= 8.0.19 Security Update (cpuapr2020) - Linux

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

6.5CVSS6.7AI score0.03191EPSS