Category Archives: Advisories

GLSA 202208-09: HashiCorp Consul: Multiple Vulnerabilities

August 10, 2022

Read Time:1 Second

Post Content

GLSA 202208-08: Mozilla Firefox: Multiple Vulnerabilities

August 10, 2022

Read Time:1 Second

Post Content

GLSA 202208-07: LibRaw: Stack buffer overread

August 10, 2022

Read Time:1 Second

Post Content

GLSA 202208-06: lxml: Multiple Vulnerabilities

August 10, 2022

Read Time:1 Second

Post Content

GLSA 202208-19: aiohttp: Open redirect vulnerability

August 10, 2022

Read Time:1 Second

Post Content

GLSA 202208-18: Motion: Denial of service

August 10, 2022

Read Time:1 Second

Post Content

GLSA 202208-17: Nextcloud: Multiple Vulnerabilities

August 10, 2022

Read Time:1 Second

Post Content

GLSA 202208-16: faac: Denial of service

August 10, 2022

Read Time:1 Second

Post Content

GLSA 202208-15: isync: Multiple Vulnerabilities

August 10, 2022

Read Time:1 Second

Post Content

[R1] Nessus Version 8.15.6 Fixes Multiple Vulnerabilities

Read Time:30 Second

[R1] Nessus Version 8.15.6 Fixes Multiple Vulnerabilities
Arnie Cabral
Tue, 08/09/2022 – 19:14

Two separate vulnerabilities that utilize the Audit functionality in Nessus were discovered, reported and fixed.

1. CVE-2022-32973 – An authenticated attacker could create an audit file that bypasses PowerShell cmdlet checks and executes commands with administrator privileges.

2. CVE-2022-32974 – An authenticated attacker could read arbitrary files from the underlying operating system of the scanner using a custom crafted compliance audit file without providing any valid SSH credentials.

Nessus version 8.15.6 fixes the reported Audit function vulnerabilities.

News, Advisories and much more

Exit mobile version