Latest high severity vulnerabilities for "tenable tenable.sc"

Tenable NessusAs part of our Security Development Lifecycle, a potential privilege escalation issue was identified…

high

8.8

First published (updated )

CVE-2023-0524

composer/composer/composerMissing input validation can lead to command execution in composer

high

8.8

First published (updated )

CVE-2022-24828

redhat/rh-sso7-keycloakPath Traversal in Moment.js

high

7.5

First published (updated )

CVE-2022-24785

Tenable Tenable.scTenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution vulnerabilit…

high

8.1

First published (updated )

CVE-2022-0130

Apple Mac OS XPossible NULL dereference or SSRF in forward proxy configurations in Apache HTTP Server 2.4.51 and earlier

high

8.2

First published (updated )

CVE-2021-44224

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Oracle Primavera GatewayXSS in `*Text` options of the Datepicker widget

high

7.2

First published (updated )

CVE-2021-41183

Oracle Primavera UnifierXSS in the `of` option of the `.position()` util

high

7.2

First published (updated )

CVE-2021-41184

Oracle Primavera UnifierXSS in the `altField` option of the Datepicker widget

high

7.2

First published (updated )

CVE-2021-41182

Debian Debian LinuxNULL pointer dereference in httpd core

high

7.5

First published (updated )

CVE-2021-34798

McAfee ePolicy OrchestratorRead buffer overruns processing ASN.1 strings

high

7.4

First published (updated )

CVE-2021-3712

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

redhat/jbcs-httpd24-httpdRequest splitting via HTTP/2 method injection and mod_proxy

high

7.5

First published (updated )

CVE-2021-33193

Nodejs Node.jsNULL pointer deref in signature_algorithms processing

high

7.5

First published (updated )

CVE-2021-3449

Tenable Tenable.scTenable.sc and Tenable.sc Core versions 5.13.0 through 5.17.0 were found to contain a vulnerability …

high

8.8

First published (updated )

CVE-2021-20076

Tenable Nessus Network MonitorNull pointer deref in X509_issuer_and_serial_hash()

high

7.5

First published (updated )

CVE-2021-23841

Tenable Tenable.scIn certain scenarios in Tenable.sc prior to 5.17.0, a scanner could potentially be used outside the …

high

7.5

First published (updated )

CVE-2020-5808

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

PHP PHPOOB Read in urldecode()

high

7.5

First published (updated )

CVE-2020-7067

Canonical Ubuntu LinuxSQL Injection

high

7.5

First published (updated )

CVE-2020-11655

Canonical Ubuntu Linuxmb_strtolower (UTF-32LE): stack-buffer-overflow at php_unicode_tolower_full

high

8.8

First published (updated )

CVE-2020-7065

Canonical Ubuntu Linuxheap-buffer-overflow on exif_scan_thumbnail in EXIF extension

high

7.1

First published (updated )

CVE-2019-11041

Canonical Ubuntu Linuxheap-buffer-overflow on exif_process_user_comment in EXIF extension

high

7.1

First published (updated )

CVE-2019-11042

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Versions

Tenable NessusAs part of our Security Development Lifecycle, a potential privilege escalation issue was identified…

composer/composer/composerMissing input validation can lead to command execution in composer

redhat/rh-sso7-keycloakPath Traversal in Moment.js

Tenable Tenable.scTenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution vulnerabilit…

Apple Mac OS XPossible NULL dereference or SSRF in forward proxy configurations in Apache HTTP Server 2.4.51 and earlier

Never miss a vulnerability like this again

Oracle Primavera GatewayXSS in `*Text` options of the Datepicker widget

Oracle Primavera UnifierXSS in the `of` option of the `.position()` util

Oracle Primavera UnifierXSS in the `altField` option of the Datepicker widget

Debian Debian LinuxNULL pointer dereference in httpd core

McAfee ePolicy OrchestratorRead buffer overruns processing ASN.1 strings

Never miss a vulnerability like this again

redhat/jbcs-httpd24-httpdRequest splitting via HTTP/2 method injection and mod_proxy

Nodejs Node.jsNULL pointer deref in signature_algorithms processing

Tenable Tenable.scTenable.sc and Tenable.sc Core versions 5.13.0 through 5.17.0 were found to contain a vulnerability …

Tenable Nessus Network MonitorNull pointer deref in X509_issuer_and_serial_hash()

Tenable Tenable.scIn certain scenarios in Tenable.sc prior to 5.17.0, a scanner could potentially be used outside the …

Never miss a vulnerability like this again

PHP PHPOOB Read in urldecode()

Canonical Ubuntu LinuxSQL Injection

Canonical Ubuntu Linuxmb_strtolower (UTF-32LE): stack-buffer-overflow at php_unicode_tolower_full

Canonical Ubuntu Linuxheap-buffer-overflow on exif_scan_thumbnail in EXIF extension

Canonical Ubuntu Linuxheap-buffer-overflow on exif_process_user_comment in EXIF extension

Never miss a vulnerability like this again

Company

Resources

Contact