Mcafee Foundstone Fsl Update

2018-OCT-18 FSL version 7.6.61

MCAFEE FOUNDSTONE FSL UPDATE

To better protect your environment McAfee has created this FSL check update for the Foundstone Product Suite. The following is a detailed summary of the new and updated checks included with this release.

NEW CHECKS

24301 - Mozilla Firefox ESR Vulnerabilities Prior To ESR 60.2.2

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2018-12386, CVE-2018-12387

Description Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR.

Observation Mozilla Firefox ESR is a popular web browser.

Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary codes in the system.

24302 - Mozilla Firefox ESR Vulnerabilities Prior To ESR 60.2.2

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: High CVE: CVE-2018-12386, CVE-2018-12387

Description Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR.

Observation Mozilla Firefox ESR is a popular web browser.

139097 - Oracle Solaris 11.3.35.6.0 Update Is Not Installed (Third Party Components)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2017-3463, CVE-2017-3464, CVE-2017-3465, CVE-2017-3467, CVE-2017-3468, CVE-2017-3529, CVE-2017-3599, CVE-2017-3600, CVE-2017-3633, CVE-2017-3634, CVE-2017-3635, CVE-2017-3637, CVE-2017-3638, CVE-2017-3639, CVE- 2017-3640, CVE-2017-3642, CVE-2017-3643, CVE-2017-3644, CVE-2017-3645, CVE-2017-3647, CVE-2017-3648, CVE-2017- 3649, CVE-2017-3651, CVE-2017-3652, CVE-2017-3653, CVE-2017-3731, CVE-2017-3732, CVE-2017-3737, CVE-2017-3738, CVE-2017-5838, CVE-2017-5839, CVE-2017-5840, CVE-2017-5841, CVE-2017-5842, CVE-2017-5844, CVE-2017-5845, CVE- 2017-7544, CVE-2018-0495, CVE-2018-0739, CVE-2018-10392, CVE-2018-10393, CVE-2018-10963, CVE-2018-12359, CVE- 2018-12360, CVE-2018-12362, CVE-2018-12363, CVE-2018-12364, CVE-2018-12365, CVE-2018-12366, CVE-2018-12368, CVE- 2018-12372, CVE-2018-12373, CVE-2018-12374, CVE-2018-1336, CVE-2018-14339, CVE-2018-14340, CVE-2018-14341, CVE- 2018-14342, CVE-2018-14343, CVE-2018-14344, CVE-2018-14367, CVE-2018-14368, CVE-2018-14369, CVE-2018-2562, CVE- 2018-2565, CVE-2018-2573, CVE-2018-2576, CVE-2018-2583, CVE-2018-2586, CVE-2018-2590, CVE-2018-2591, CVE-2018- 2600, CVE-2018-2612, CVE-2018-2622, CVE-2018-2640, CVE-2018-2645, CVE-2018-2646, CVE-2018-2647, CVE-2018-2665, CVE-2018-2667, CVE-2018-2668, CVE-2018-2696, CVE-2018-2703, CVE-2018-2755, CVE-2018-2758, CVE-2018-2759, CVE- 2018-2761, CVE-2018-2762, CVE-2018-2766, CVE-2018-2767, CVE-2018-2769, CVE-2018-2771, CVE-2018-2773, CVE-2018- 2775, CVE-2018-2776, CVE-2018-2777, CVE-2018-2778, CVE-2018-2779, CVE-2018-2780, CVE-2018-2781, CVE-2018-2782, CVE-2018-2784, CVE-2018-2786, CVE-2018-2787, CVE-2018-2810, CVE-2018-2812, CVE-2018-2813, CVE-2018-2816, CVE- 2018-2817, CVE-2018-2818, CVE-2018-2819, CVE-2018-2839, CVE-2018-2846, CVE-2018-2922, CVE-2018-3054, CVE-2018- 3056, CVE-2018-3058, CVE-2018-3060, CVE-2018-3061, CVE-2018-3062, CVE-2018-3064, CVE-2018-3065, CVE-2018-3066, CVE-2018-3070, CVE-2018-3077, CVE-2018-3081, CVE-2018-5146

Description The scan detected that the host is missing the following update: SRU 11.3.35.6.0

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/rs?type=doc&id=2437228.1 https://support.oracle.com/epmos/faces/DocumentDisplay? _afrLoop=507462766511768&id=1448883.1&_afrWindowMode=0&_adf.ctrl-state=98kg3qcn0_33#aref_section26

139100 - Oracle Solaris 11.4 Update Is Not Installed (Third Party Components)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2016-6352, CVE-2016-7044, CVE-2016-7045, CVE-2016-7162, CVE-2016-7163, CVE-2016-7166, CVE-2016-7445, CVE-2016-7553, CVE-2016-7957, CVE-2016-7958, CVE-2016-7976, CVE-2016-7977, CVE-2016-7978, CVE-2016-7979, CVE- 2016-8864, CVE-2016-9013, CVE-2016-9014, CVE-2016-9179, CVE-2016-9185, CVE-2017-10788, CVE-2017-11109, CVE-2017- 11112, CVE-2017-11113, CVE-2017-12176, CVE-2017-12177, CVE-2017-12178, CVE-2017-12179, CVE-2017-12180, CVE-2017- 12181, CVE-2017-12182, CVE-2017-12183, CVE-2017-12184, CVE-2017-12185, CVE-2017-12186, CVE-2017-12187, CVE-2017- 12982, CVE-2017-14039, CVE-2017-14040, CVE-2017-14041, CVE-2017-14151, CVE-2017-14152, CVE-2017-14164, CVE-2017- 2292, CVE-2017-2592, CVE-2017-3135, CVE-2017-3136, CVE-2017-3137, CVE-2017-3138, CVE-2017-3140, CVE-2017-5334, CVE-2017-5335, CVE-2017-5336, CVE-2017-5337, CVE-2017-5429, CVE-2017-5430, CVE-2017-5432, CVE-2017-5433, CVE- 2017-5434, CVE-2017-5435, CVE-2017-5436, CVE-2017-5438, CVE-2017-5439, CVE-2017-5440, CVE-2017-5441, CVE-2017- 5442, CVE-2017-5443, CVE-2017-5444, CVE-2017-5445, CVE-2017-5446, CVE-2017-5447, CVE-2017-5448, CVE-2017-5449, CVE-2017-5451, CVE-2017-5454, CVE-2017-5455, CVE-2017-5456, CVE-2017-5459, CVE-2017-5460, CVE-2017-5461, CVE- 2017-5462, CVE-2017-5464, CVE-2017-5465, CVE-2017-5466, CVE-2017-5467, CVE-2017-5468, CVE-2017-5469, CVE-2017- 5715, CVE-2017-5754, CVE-2017-7407, CVE-2017-7511, CVE-2017-7555, CVE-2017-8291, CVE-2017-8786, CVE-2017-8932, CVE-2017-9083, CVE-2017-9110, CVE-2017-9111, CVE-2017-9112, CVE-2017-9113, CVE-2017-9114, CVE-2017-9115, CVE- 2017-9116, CVE-2017-9406, CVE-2017-9408, CVE-2018-1166, CVE-2018-3263, CVE-2018-3264, CVE-2018-3265, CVE-2018- 3266, CVE-2018-3267, CVE-2018-3268, CVE-2018-3269, CVE-2018-3270, CVE-2018-3271, CVE-2018-3272, CVE-2018-3273, CVE-2018-3274, CVE-2018-3275, CVE-2018-3665

Description The scan detected that the host is missing the following update: SRU 11.4

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/rs?type=doc&id=2433412.1 https://support.oracle.com/epmos/faces/DocumentDisplay? _afrLoop=507462766511768&id=1448883.1&_afrWindowMode=0&_adf.ctrl-state=98kg3qcn0_33#aref_section26 194308 - Fedora Linux 27 FEDORA-2018-1fc39f2d13 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2012-6706, CVE-2017-11423, CVE-2017-12374, CVE-2017-12375, CVE-2017-12376, CVE-2017-12377, CVE-2017- 12378, CVE-2017-12379, CVE-2017-12380, CVE-2017-6418, CVE-2017-6419, CVE-2017-6420, CVE-2018-0202, CVE-2018- 1000085, CVE-2018-14679, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682, CVE-2018-15378

Description The scan detected that the host is missing the following update: FEDORA-2018-1fc39f2d13

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1

Fedora Core 27 clamav-0.100.2-2.fc27

194309 - Fedora Linux 27 FEDORA-2018-94315e9a6b Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2017-1000405, CVE-2017-12193, CVE-2017-15115, CVE-2017-16532, CVE-2017-16538, CVE-2017-16644, CVE- 2017-16647, CVE-2017-16649, CVE-2017-16650, CVE-2017-17448, CVE-2017-17449, CVE-2017-17450, CVE-2017-17558, CVE- 2017-17712, CVE-2017-17741, CVE-2017-17852, CVE-2017-17853, CVE-2017-17854, CVE-2017-17855, CVE-2017-17856, CVE- 2017-17857, CVE-2017-17862, CVE-2017-17863, CVE-2017-17864, CVE-2017-18232, CVE-2017-8824, CVE-2018-1000004, CVE-2018-1000026, CVE-2018-10021, CVE-2018-10322, CVE-2018-10323, CVE-2018-1065, CVE-2018-10840, CVE-2018- 10853, CVE-2018-1108, CVE-2018-1120, CVE-2018-11506, CVE-2018-12232, CVE-2018-12633, CVE-2018-12714, CVE-2018- 12896, CVE-2018-13053, CVE-2018-13093, CVE-2018-13094, CVE-2018-13095, CVE-2018-13405, CVE-2018-14633, CVE-2018- 14678, CVE-2018-14734, CVE-2018-15471, CVE-2018-17182, CVE-2018-18021, CVE-2018-3620, CVE-2018-3639, CVE-2018- 3646, CVE-2018-5332, CVE-2018-5333, CVE-2018-5344, CVE-2018-5391, CVE-2018-5750, CVE-2018-5803, CVE-2018-7757, CVE-2018-7995, CVE-2018-8043

Description The scan detected that the host is missing the following update: FEDORA-2018-94315e9a6b

Fedora Core 27 kernel-4.18.12-100.fc27 kernel-headers-4.18.12-100.fc27

194313 - Fedora Linux 28 FEDORA-2018-9f4381d8c4 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2018-10322, CVE-2018-10323, CVE-2018-10840, CVE-2018-10853, CVE-2018-1108, CVE-2018-1120, CVE-2018- 11506, CVE-2018-12232, CVE-2018-12633, CVE-2018-12714, CVE-2018-12896, CVE-2018-13053, CVE-2018-13093, CVE-2018- 13094, CVE-2018-13095, CVE-2018-13405, CVE-2018-14633, CVE-2018-14678, CVE-2018-14734, CVE-2018-15471, CVE-2018- 17182, CVE-2018-17972, CVE-2018-3620, CVE-2018-3639, CVE-2018-3646, CVE-2018-5391

Description The scan detected that the host is missing the following update: FEDORA-2018-9f4381d8c4

Fedora Core 28 kernel-headers-4.18.13-200.fc28 kernel-4.18.13-200.fc28 kernel-tools-4.18.13-200.fc28

194315 - Fedora Linux 27 FEDORA-2018-2ee3411cb8 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2017-1000405, CVE-2017-12193, CVE-2017-15115, CVE-2017-16532, CVE-2017-16538, CVE-2017-16644, CVE- 2017-16647, CVE-2017-16649, CVE-2017-16650, CVE-2017-17448, CVE-2017-17449, CVE-2017-17450, CVE-2017-17558, CVE- 2017-17712, CVE-2017-17741, CVE-2017-17852, CVE-2017-17853, CVE-2017-17854, CVE-2017-17855, CVE-2017-17856, CVE- 2017-17857, CVE-2017-17862, CVE-2017-17863, CVE-2017-17864, CVE-2017-18232, CVE-2017-8824, CVE-2018-1000004, CVE-2018-1000026, CVE-2018-10021, CVE-2018-10322, CVE-2018-10323, CVE-2018-1065, CVE-2018-10840, CVE-2018- 10853, CVE-2018-1108, CVE-2018-1120, CVE-2018-11506, CVE-2018-12232, CVE-2018-12633, CVE-2018-12714, CVE-2018- 12896, CVE-2018-13053, CVE-2018-13093, CVE-2018-13094, CVE-2018-13095, CVE-2018-13405, CVE-2018-14633, CVE-2018- 14678, CVE-2018-14734, CVE-2018-15471, CVE-2018-17182, CVE-2018-17972, CVE-2018-3620, CVE-2018-3639, CVE-2018- 3646, CVE-2018-5332, CVE-2018-5333, CVE-2018-5344, CVE-2018-5391, CVE-2018-5750, CVE-2018-5803, CVE-2018-7757, CVE-2018-7995, CVE-2018-8043

Description The scan detected that the host is missing the following update: FEDORA-2018-2ee3411cb8

Fedora Core 27 kernel-headers-4.18.13-100.fc27 kernel-4.18.13-100.fc27 kernel-tools-4.18.13-100.fc27

24298 - Mozilla Firefox Multiple Vulnerabilities Prior To 62.0.3

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2018-12386, CVE-2018-12387

Description Multiple vulnerabilities are present in some versions of Mozilla Firefox.

Observation Mozilla Firefox is a popular web browser.

Multiple vulnerabilities are present in some versions of Mozilla Firefox. The flaws lie in multiple components. Successful exploitation could allow an attacker to cause a memory leak or potentially execute arbitrary remote code.

24299 - Mozilla Firefox Multiple Vulnerabilities Prior To 62.0.3

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: High CVE: CVE-2018-12386, CVE-2018-12387

Description Multiple vulnerabilities are present in some versions of Mozilla Firefox.

Observation Mozilla Firefox is a popular web browser.

24315 - Oracle Java SE Critical Patch Update October 2018

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2018-13785, CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3150, CVE-2018-3157, CVE-2018-3169, CVE-2018-3180, CVE-2018-3183, CVE-2018-3209, CVE-2018-3211, CVE-2018-3214

Description Multiple vulnerabilities are present in some versions of Oracle Java SE.

Observation Oracle Java SE is used to run Java applications.

Multiple vulnerabilities are present in some versions of Oracle Java SE. The flaws lie in multiple components. Successful exploitation could allow an attacker to disclose private information, cause a denial of service condition or affect integrity on the target system.

24282 - Cisco Adaptive Security Appliance Direct Memory Access Denial of Service Vulnerability (cisco-sa-20181003- asa-dma-dos)

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: High CVE: CVE-2018-15383 Description A vulnerability is present in some versions of Cisco ASA devices.

Observation Cisco Adaptive Security Appliance is a word-class line of network security devices.

A vulnerability is present in some versions of Cisco ASA devices. The flaw is due to improper handing of resources in low-memory conditions. Successful exploitation could allow an attacker to cause a denial of service condition in the target system.

24284 - Cisco Webex Network Recording Player Remote Code Execution Vulnerabilities (cisco-sa-20181003-webex-rce)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2018-15408, CVE-2018-15409, CVE-2018-15410, CVE-2018-15411, CVE-2018-15412, CVE-2018-15413, CVE-2018- 15415, CVE-2018-15416, CVE-2018-15417, CVE-2018-15418, CVE-2018-15419, CVE-2018-15420, CVE-2018-15431

Description Remote code execution vulnerabilities are present in some versions of Cisco WebEx Network Recording Players.

Observation Cisco WebEx Network Recording Players are used to play WebEx sessions in ARF or WRF formats.

Remote code execution vulnerabilities are present in some versions of Cisco WebEx Network Recording Players. The flaws lie in Cisco Webex Network Recording Player for ARF and Webex Recording Format. Successful exploitation could allow an attacker to execute remote code on the target system.

24290 - Cisco IOS Software Precision Time Protocol Denial of Service Vulnerability (cisco-sa-20180926-ptp)

Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: High CVE: CVE-2018-0473

Description A denial of service vulnerability is present in some versions of Cisco IOS.

Observation Cisco IOS is an operating system used in Cisco devices.

A denial of service vulnerability is present in some versions of Cisco IOS. The flaw lies in the Precision Time Protocol (PTP) subsystem. Successful exploitation could allow a remote attacker to cause a denial of service condition.

132483 - Oracle VM OVMSA-2018-0266 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle VM Patches and Hotfixes Risk Level: High CVE: CVE-2018-17182

Description The scan detected that the host is missing the following update: OVMSA-2018-0266

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/oraclevm-errata/2018-October/000900.html

OVM3.4 x86_64 kernel-uek-firmware-4.1.12-124.20.1.el6uek kernel-uek-4.1.12-124.20.1.el6uek

139098 - Oracle Solaris 11.4.2.3.0 Update Is Not Installed (Third Party Components)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2017-9224, CVE-2017-9225, CVE-2017-9226, CVE-2017-9227, CVE-2017-9228, CVE-2017-9229, CVE-2018- 1000168, CVE-2018-14851, CVE-2018-14883, CVE-2018-7409, CVE-2018-7485

Description The scan detected that the host is missing the following update: SRU 11.4.2.3.0

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/rs?type=doc&id=2458059.1 https://support.oracle.com/epmos/faces/DocumentDisplay? _afrLoop=507462766511768&id=1448883.1&_afrWindowMode=0&_adf.ctrl-state=98kg3qcn0_33#aref_section26

139099 - Oracle Solaris 11.4.1.4.0 Update Is Not Installed (Third Party Components)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2017-3642, CVE-2017-3643, CVE-2017-3644, CVE-2017-3645, CVE-2017-3647, CVE-2017-3648, CVE-2017-3649, CVE-2017-3650, CVE-2017-3651, CVE-2017-3652, CVE-2017-3653, CVE-2017-3731, CVE-2017-3732, CVE-2017-3737, CVE- 2017-3738, CVE-2017-5715, CVE-2017-5753, CVE-2017-7153, CVE-2017-7160, CVE-2017-7161, CVE-2017-7165, CVE-2018- 0500, CVE-2018-0732, CVE-2018-0737, CVE-2018-0739, CVE-2018-10858, CVE-2018-10918, CVE-2018-10919, CVE-2018- 1139, CVE-2018-1140, CVE-2018-12085, CVE-2018-12359, CVE-2018-12360, CVE-2018-12362, CVE-2018-12363, CVE-2018- 12364, CVE-2018-12365, CVE-2018-12366, CVE-2018-12368, CVE-2018-12372, CVE-2018-12373, CVE-2018-12374, CVE-2018- 1333, CVE-2018-1336, CVE-2018-14339, CVE-2018-14340, CVE-2018-14341, CVE-2018-14342, CVE-2018-14343, CVE-2018- 14344, CVE-2018-14367, CVE-2018-14368, CVE-2018-14369, CVE-2018-14424, CVE-2018-2562, CVE-2018-2565, CVE-2018- 2573, CVE-2018-2576, CVE-2018-2583, CVE-2018-2586, CVE-2018-2590, CVE-2018-2591, CVE-2018-2600, CVE-2018-2612, CVE-2018-2622, CVE-2018-2640, CVE-2018-2645, CVE-2018-2646, CVE-2018-2647, CVE-2018-2665, CVE-2018-2667, CVE- 2018-2668, CVE-2018-2696, CVE-2018-2703, CVE-2018-2755, CVE-2018-2758, CVE-2018-2759, CVE-2018-2761, CVE-2018- 2762, CVE-2018-2766, CVE-2018-2767, CVE-2018-2769, CVE-2018-2771, CVE-2018-2773, CVE-2018-2775, CVE-2018-2776, CVE-2018-2777, CVE-2018-2778, CVE-2018-2779, CVE-2018-2780, CVE-2018-2781, CVE-2018-2782, CVE-2018-2784, CVE- 2018-2786, CVE-2018-2787, CVE-2018-2810, CVE-2018-2812, CVE-2018-2813, CVE-2018-2816, CVE-2018-2817, CVE-2018- 2818, CVE-2018-2819, CVE-2018-2839, CVE-2018-2846, CVE-2018-3054, CVE-2018-3056, CVE-2018-3058, CVE-2018-3060, CVE-2018-3061, CVE-2018-3062, CVE-2018-3064, CVE-2018-3065, CVE-2018-3066, CVE-2018-3070, CVE-2018-3071, CVE- 2018-3077, CVE-2018-3081, CVE-2018-3172, CVE-2018-4088, CVE-2018-4089, CVE-2018-4096, CVE-2018-5188, CVE-2018- 5950, CVE-2018-8011, CVE-2018-8014, CVE-2018-8034, CVE-2018-8037, CVE-2018-8740

Description The scan detected that the host is missing the following update: SRU 11.4.1.4.0 Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/rs?type=doc&id=2449090.1 https://support.oracle.com/epmos/faces/DocumentDisplay? _afrLoop=507462766511768&id=1448883.1&_afrWindowMode=0&_adf.ctrl-state=98kg3qcn0_33#aref_section26

139101 - Oracle Solaris 11.3.36.3.0 Update Is Not Installed (Third Party Components)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2017-12176, CVE-2017-12177, CVE-2017-12178, CVE-2017-12179, CVE-2017-12180, CVE-2017-12181, CVE-2017- 12182, CVE-2017-12183, CVE-2017-12184, CVE-2017-12185, CVE-2017-12186, CVE-2017-12187, CVE-2018-0732, CVE-2018- 0737

Description The scan detected that the host is missing the following update: SRU 11.3.36.3.0

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/rs?type=doc&id=2457998.1 https://support.oracle.com/epmos/faces/DocumentDisplay? _afrLoop=507462766511768&id=1448883.1&_afrWindowMode=0&_adf.ctrl-state=98kg3qcn0_33#aref_section26

147198 - SuSE Linux 15.0, 42.3 openSUSE-SU-2018:3105-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2017-5934

Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3105-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00052.html

SuSE Linux 15.0 noarch moinmoin-wiki-1.9.10-lp150.2.4.1

SuSE Linux 42.3 noarch moinmoin-wiki-1.9.10-4.4.1

147199 - SuSE Linux 42.3 openSUSE-SU-2018:3104-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3104-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00051.html

SuSE Linux 42.3 i586 postgresql10-server-10.5-2.1 postgresql10-10.5-2.1 postgresql10-debugsource-10.5-2.1 postgresql10-pltcl-10.5-2.1 postgresql10-plperl-10.5-2.1 postgresql10-pltcl-debuginfo-10.5-2.1 postgresql10-contrib-10.5-2.1 postgresql10-plpython-debuginfo-10.5-2.1 libecpg6-debuginfo-10.5-2.1 postgresql10-devel-10.5-2.1 postgresql10-libs-debugsource-10.5-2.1 postgresql10-debuginfo-10.5-2.1 postgresql10-plpython-10.5-2.1 postgresql10-server-debuginfo-10.5-2.1 postgresql10-devel-debuginfo-10.5-2.1 libpq5-10.5-2.1 postgresql10-test-10.5-2.1 postgresql10-plperl-debuginfo-10.5-2.1 libpq5-debuginfo-10.5-2.1 postgresql10-contrib-debuginfo-10.5-2.1 libecpg6-10.5-2.1 noarch postgresql10-docs-10.5-2.1 postgresql-init-10-16.3.1 x86_64 postgresql10-server-10.5-2.1 postgresql10-10.5-2.1 postgresql10-debugsource-10.5-2.1 postgresql10-pltcl-10.5-2.1 postgresql10-plperl-10.5-2.1 postgresql10-pltcl-debuginfo-10.5-2.1 postgresql10-contrib-10.5-2.1 postgresql10-plpython-debuginfo-10.5-2.1 libpq5-debuginfo-32bit-10.5-2.1 libecpg6-debuginfo-10.5-2.1 postgresql10-devel-10.5-2.1 postgresql10-libs-debugsource-10.5-2.1 postgresql10-debuginfo-10.5-2.1 postgresql10-plpython-10.5-2.1 postgresql10-server-debuginfo-10.5-2.1 libecpg6-32bit-10.5-2.1 libecpg6-debuginfo-32bit-10.5-2.1 libpq5-32bit-10.5-2.1 postgresql10-devel-debuginfo-10.5-2.1 libpq5-10.5-2.1 postgresql10-test-10.5-2.1 postgresql10-plperl-debuginfo-10.5-2.1 libpq5-debuginfo-10.5-2.1 postgresql10-contrib-debuginfo-10.5-2.1 libecpg6-10.5-2.1

147200 - SuSE SLES 11 SP4 SUSE-SU-2018:3100-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-17182

Description The scan detected that the host is missing the following update: SUSE-SU-2018:3100-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2018-October/004663.html

SuSE SLES 11 SP4 i586 kernel-trace-3.0.101-108.77.1 kernel-ec2-devel-3.0.101-108.77.1 kernel-default-3.0.101-108.77.1 kernel-trace-devel-3.0.101-108.77.1 kernel-xen-3.0.101-108.77.1 kernel-default-devel-3.0.101-108.77.1 kernel-xen-base-3.0.101-108.77.1 kernel-source-3.0.101-108.77.1 kernel-pae-base-3.0.101-108.77.1 kernel-syms-3.0.101-108.77.1 kernel-trace-base-3.0.101-108.77.1 kernel-ec2-3.0.101-108.77.1 kernel-ec2-base-3.0.101-108.77.1 kernel-pae-3.0.101-108.77.1 kernel-default-base-3.0.101-108.77.1 kernel-xen-devel-3.0.101-108.77.1 kernel-pae-devel-3.0.101-108.77.1 x86_64 kernel-trace-3.0.101-108.77.1 kernel-ec2-devel-3.0.101-108.77.1 kernel-default-3.0.101-108.77.1 kernel-trace-devel-3.0.101-108.77.1 kernel-xen-3.0.101-108.77.1 kernel-default-devel-3.0.101-108.77.1 kernel-xen-base-3.0.101-108.77.1 kernel-source-3.0.101-108.77.1 kernel-syms-3.0.101-108.77.1 kernel-trace-base-3.0.101-108.77.1 kernel-ec2-3.0.101-108.77.1 kernel-ec2-base-3.0.101-108.77.1 kernel-default-base-3.0.101-108.77.1 kernel-xen-devel-3.0.101-108.77.1

147203 - SuSE Linux 42.3 openSUSE-SU-2018:3109-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-17456

Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3109-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00056.html

SuSE Linux 42.3 i586 git-svn-debuginfo-2.13.7-16.1 git-core-2.13.7-16.1 git-credential-gnome-keyring-2.13.7-16.1 git-arch-2.13.7-16.1 git-2.13.7-16.1 git-gui-2.13.7-16.1 git-daemon-2.13.7-16.1 git-debugsource-2.13.7-16.1 git-credential-gnome-keyring-debuginfo-2.13.7-16.1 git-core-debuginfo-2.13.7-16.1 git-daemon-debuginfo-2.13.7-16.1 git-web-2.13.7-16.1 git-cvs-2.13.7-16.1 git-email-2.13.7-16.1 gitk-2.13.7-16.1 git-svn-2.13.7-16.1 noarch git-doc-2.13.7-16.1 x86_64 git-svn-debuginfo-2.13.7-16.1 git-core-2.13.7-16.1 git-credential-gnome-keyring-2.13.7-16.1 git-arch-2.13.7-16.1 git-2.13.7-16.1 git-gui-2.13.7-16.1 git-daemon-2.13.7-16.1 git-debugsource-2.13.7-16.1 git-credential-gnome-keyring-debuginfo-2.13.7-16.1 git-core-debuginfo-2.13.7-16.1 git-daemon-debuginfo-2.13.7-16.1 git-web-2.13.7-16.1 git-cvs-2.13.7-16.1 git-email-2.13.7-16.1 gitk-2.13.7-16.1 git-svn-2.13.7-16.1 147204 - SuSE SLES 11 SP4 SUSE-SU-2018:3146-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-14621, CVE-2018-14622

Description The scan detected that the host is missing the following update: SUSE-SU-2018:3146-1

SuSE SLES 11 SP4 i586 libtirpc1-0.2.1-1.13.6.1 x86_64 libtirpc1-0.2.1-1.13.6.1

147205 - SuSE Linux 42.3 openSUSE-SU-2018:3108-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-16741, CVE-2018-16742, CVE-2018-16743, CVE-2018-16744, CVE-2018-16745

Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3108-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00055.html

SuSE Linux 42.3 x86_64 sendfax-1.1.36-65.3.1 sendfax-debuginfo-1.1.36-65.3.1 mgetty-debugsource-1.1.36-65.3.1 g3utils-1.1.36-65.3.1 mgetty-debuginfo-1.1.36-65.3.1 g3utils-debuginfo-1.1.36-65.3.1 mgetty-1.1.36-65.3.1 i586 sendfax-1.1.36-65.3.1 sendfax-debuginfo-1.1.36-65.3.1 mgetty-debugsource-1.1.36-65.3.1 g3utils-1.1.36-65.3.1 mgetty-debuginfo-1.1.36-65.3.1 g3utils-debuginfo-1.1.36-65.3.1 mgetty-1.1.36-65.3.1

147206 - SuSE Linux 15.0 openSUSE-SU-2018:3094-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3094-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00049.html

SuSE Linux 15.0 i586 perl-PerlMagick-7.0.7.34-lp150.2.18.1 libMagickWand-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.18.1 libMagickWand-7_Q16HDRI6-7.0.7.34-lp150.2.18.1 ImageMagick-extra-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-devel-7.0.7.34-lp150.2.18.1 perl-PerlMagick-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-7.0.7.34-lp150.2.18.1 libMagick++-7_Q16HDRI4-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-debugsource-7.0.7.34-lp150.2.18.1 libMagickCore-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-extra-7.0.7.34-lp150.2.18.1 ImageMagick-debuginfo-7.0.7.34-lp150.2.18.1 libMagickCore-7_Q16HDRI6-7.0.7.34-lp150.2.18.1 libMagick++-7_Q16HDRI4-7.0.7.34-lp150.2.18.1 libMagick++-devel-7.0.7.34-lp150.2.18.1 noarch ImageMagick-doc-7.0.7.34-lp150.2.18.1 x86_64 perl-PerlMagick-7.0.7.34-lp150.2.18.1 libMagickWand-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.18.1 libMagickWand-7_Q16HDRI6-7.0.7.34-lp150.2.18.1 ImageMagick-extra-debuginfo-7.0.7.34-lp150.2.18.1 libMagickCore-7_Q16HDRI6-32bit-debuginfo-7.0.7.34-lp150.2.18.1 libMagick++-devel-32bit-7.0.7.34-lp150.2.18.1 libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp150.2.18.1 ImageMagick-devel-7.0.7.34-lp150.2.18.1 perl-PerlMagick-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-7.0.7.34-lp150.2.18.1 libMagick++-7_Q16HDRI4-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-debugsource-7.0.7.34-lp150.2.18.1 libMagickCore-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-devel-32bit-7.0.7.34-lp150.2.18.1 ImageMagick-extra-7.0.7.34-lp150.2.18.1 ImageMagick-debuginfo-7.0.7.34-lp150.2.18.1 libMagickCore-7_Q16HDRI6-7.0.7.34-lp150.2.18.1 libMagick++-7_Q16HDRI4-7.0.7.34-lp150.2.18.1 libMagick++-devel-7.0.7.34-lp150.2.18.1 libMagickWand-7_Q16HDRI6-32bit-debuginfo-7.0.7.34-lp150.2.18.1 libMagick++-7_Q16HDRI4-32bit-debuginfo-7.0.7.34-lp150.2.18.1 libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp150.2.18.1 libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp150.2.18.1

147210 - SuSE SLED 15 SUSE-SU-2018:3159-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-14633, CVE-2018-17182

Description The scan detected that the host is missing the following update: SUSE-SU-2018:3159-1

SuSE SLED 15 x86_64 kernel-default-extra-debuginfo-4.12.14-25.22.1 kernel-default-extra-4.12.14-25.22.1 kernel-default-debuginfo-4.12.14-25.22.1 kernel-default-debugsource-4.12.14-25.22.1

147212 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:3161-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-10919

Description The scan detected that the host is missing the following update: SUSE-SU-2018:3161-1

SuSE SLED 12 SP3 x86_64 libsamba-errors0-4.6.16+git.124.aee309c5c18-3.32.1 libwbclient0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 samba-libs-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsmbclient0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbldap0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-winbind-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-4.6.16+git.124.aee309c5c18-3.32.1 libndr-nbt0-4.6.16+git.124.aee309c5c18-3.32.1 samba-client-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-krb5pac0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-passdb0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbconf0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbconf0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbclient0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libndr-nbt0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbconf0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libtevent-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libtevent-util0-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-passdb0-4.6.16+git.124.aee309c5c18-3.32.1 samba-debugsource-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-util0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbldap0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-client-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-winbind-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-winbind-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-4.6.16+git.124.aee309c5c18-3.32.1 samba-client-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc0-4.6.16+git.124.aee309c5c18-3.32.1 libsamdb0-4.6.16+git.124.aee309c5c18-3.32.1 samba-libs-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbclient0-4.6.16+git.124.aee309c5c18-3.32.1 libtevent-util0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-passdb0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-util0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbconf0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-errors0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-errors0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-winbind-4.6.16+git.124.aee309c5c18-3.32.1 libndr-standard0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-standard0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libwbclient0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbldap0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libndr-nbt0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-4.6.16+git.124.aee309c5c18-3.32.1 libsamdb0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-libs-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-krb5pac0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libndr0-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-standard0-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-passdb0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-nbt0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbclient0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamdb0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamdb0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbldap0-4.6.16+git.124.aee309c5c18-3.32.1 libndr-standard0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libndr0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-libs-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-util0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-krb5pac0-4.6.16+git.124.aee309c5c18-3.32.1 libndr-krb5pac0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libtevent-util0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libwbclient0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libwbclient0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-errors0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 samba-client-4.6.16+git.124.aee309c5c18-3.32.1 noarch samba-doc-4.6.16+git.124.aee309c5c18-3.32.1

SuSE SLES 12 SP3 noarch samba-doc-4.6.16+git.124.aee309c5c18-3.32.1 x86_64 samba-client-4.6.16+git.124.aee309c5c18-3.32.1 libwbclient0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 samba-libs-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsmbclient0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbldap0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-winbind-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-4.6.16+git.124.aee309c5c18-3.32.1 libndr-nbt0-4.6.16+git.124.aee309c5c18-3.32.1 samba-client-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-krb5pac0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-errors0-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-passdb0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbconf0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbclient0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libndr-nbt0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbconf0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libtevent-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libtevent-util0-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-passdb0-4.6.16+git.124.aee309c5c18-3.32.1

147213 - SuSE SLES 11 SP4 SUSE-SU-2018:3156-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-14647

Description The scan detected that the host is missing the following update: SUSE-SU-2018:3156-1

SuSE SLES 11 SP4 noarch python-doc-2.6-8.40.21.1 python-doc-pdf-2.6-8.40.21.1 i586 python-curses-2.6.9-40.21.2 python-xml-2.6.9-40.21.1 python-2.6.9-40.21.2 libpython2_6-1_0-2.6.9-40.21.1 python-idle-2.6.9-40.21.2 python-demo-2.6.9-40.21.2 python-tk-2.6.9-40.21.2 python-base-2.6.9-40.21.1 python-gdbm-2.6.9-40.21.2 x86_64 python-curses-2.6.9-40.21.2 python-xml-2.6.9-40.21.1 python-2.6.9-40.21.2 libpython2_6-1_0-32bit-2.6.9-40.21.1 libpython2_6-1_0-2.6.9-40.21.1 python-base-32bit-2.6.9-40.21.1 python-idle-2.6.9-40.21.2 python-demo-2.6.9-40.21.2 python-tk-2.6.9-40.21.2 python-base-2.6.9-40.21.1 python-gdbm-2.6.9-40.21.2 python-32bit-2.6.9-40.21.2

147214 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:3102-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-14598, CVE-2018-14599, CVE-2018-14600

Description The scan detected that the host is missing the following update: SUSE-SU-2018:3102-1

SuSE SLED 12 SP3 x86_64 libxcb-xf86dri0-debuginfo-1.10-4.3.1 libxcb-shm0-32bit-1.10-4.3.1 libxcb1-1.10-4.3.1 libxcb-dri2-0-32bit-1.10-4.3.1 libxcb-present0-debuginfo-1.10-4.3.1 libX11-6-32bit-1.6.2-12.5.1 libxcb-glx0-1.10-4.3.1 libxcb-randr0-debuginfo-1.10-4.3.1 libxcb-glx0-debuginfo-1.10-4.3.1 libxcb-shm0-1.10-4.3.1 libX11-6-debuginfo-1.6.2-12.5.1 libxcb-glx0-debuginfo-32bit-1.10-4.3.1 libxcb-dri2-0-1.10-4.3.1 libxcb-dri3-0-debuginfo-1.10-4.3.1 libxcb1-32bit-1.10-4.3.1 libxcb-render0-debuginfo-1.10-4.3.1 libxcb-xkb1-debuginfo-1.10-4.3.1 libxcb-xv0-debuginfo-1.10-4.3.1 libxcb-dri2-0-debuginfo-32bit-1.10-4.3.1 libxcb-render0-1.10-4.3.1 libX11-xcb1-32bit-1.6.2-12.5.1 libxcb-dri3-0-1.10-4.3.1 libxcb-present0-debuginfo-32bit-1.10-4.3.1 libxcb-xkb1-1.10-4.3.1 libxcb-xfixes0-1.10-4.3.1 libxcb-present0-1.10-4.3.1 libxcb-xinerama0-debuginfo-1.10-4.3.1 libX11-debugsource-1.6.2-12.5.1 libxcb-randr0-1.10-4.3.1 libxcb-shape0-debuginfo-1.10-4.3.1 libxcb-xf86dri0-1.10-4.3.1 libX11-6-1.6.2-12.5.1 libxcb-dri3-0-debuginfo-32bit-1.10-4.3.1 libxcb1-debuginfo-1.10-4.3.1 libxcb-sync1-32bit-1.10-4.3.1 libX11-6-debuginfo-32bit-1.6.2-12.5.1 libxcb-render0-32bit-1.10-4.3.1 libxcb-sync1-debuginfo-1.10-4.3.1 libxcb-xv0-1.10-4.3.1 libxcb-shm0-debuginfo-32bit-1.10-4.3.1 libxcb-shape0-1.10-4.3.1 libxcb-shm0-debuginfo-1.10-4.3.1 libX11-xcb1-1.6.2-12.5.1 libX11-xcb1-debuginfo-1.6.2-12.5.1 libxcb-sync1-debuginfo-32bit-1.10-4.3.1 libxcb-dri3-0-32bit-1.10-4.3.1 libxcb-xfixes0-debuginfo-32bit-1.10-4.3.1 libxcb-xkb1-32bit-1.10-4.3.1 libxcb-xinerama0-1.10-4.3.1 libxcb-xfixes0-debuginfo-1.10-4.3.1 libxcb-debugsource-1.10-4.3.1 libX11-xcb1-debuginfo-32bit-1.6.2-12.5.1 libxcb-xfixes0-32bit-1.10-4.3.1 libxcb-render0-debuginfo-32bit-1.10-4.3.1 libxcb-present0-32bit-1.10-4.3.1 libxcb-sync1-1.10-4.3.1 libxcb-xkb1-debuginfo-32bit-1.10-4.3.1 libxcb1-debuginfo-32bit-1.10-4.3.1 libxcb-glx0-32bit-1.10-4.3.1 libxcb-dri2-0-debuginfo-1.10-4.3.1 noarch libX11-data-1.6.2-12.5.1

SuSE SLES 12 SP3 noarch libX11-data-1.6.2-12.5.1 x86_64 libxcb-xf86dri0-debuginfo-1.10-4.3.1 libxcb-dri2-0-debuginfo-1.10-4.3.1 libxcb-shm0-32bit-1.10-4.3.1 libxcb-sync1-1.10-4.3.1 libxcb-present0-debuginfo-1.10-4.3.1 libxcb-render0-debuginfo-1.10-4.3.1 libxcb-glx0-1.10-4.3.1 libxcb-randr0-debuginfo-1.10-4.3.1 libxcb-glx0-debuginfo-1.10-4.3.1 libxcb-shm0-1.10-4.3.1 libxcb-glx0-debuginfo-32bit-1.10-4.3.1 libX11-6-debuginfo-1.6.2-12.5.1 libxcb-xinerama0-debuginfo-1.10-4.3.1 libxcb-present0-32bit-1.10-4.3.1 libxcb-dri2-0-1.10-4.3.1 libxcb-dri3-0-debuginfo-1.10-4.3.1 libxcb1-32bit-1.10-4.3.1 libxcb1-debuginfo-1.10-4.3.1 libxcb-xv0-debuginfo-1.10-4.3.1 libxcb-dri2-0-debuginfo-32bit-1.10-4.3.1 libxcb-render0-1.10-4.3.1 libxcb-xfixes0-debuginfo-32bit-1.10-4.3.1 libX11-xcb1-32bit-1.6.2-12.5.1 libxcb-dri3-0-1.10-4.3.1 libxcb-dri3-0-32bit-1.10-4.3.1 libxcb-xkb1-1.10-4.3.1 libxcb-xfixes0-1.10-4.3.1 libxcb-present0-1.10-4.3.1 libxcb-xkb1-32bit-1.10-4.3.1 libX11-debugsource-1.6.2-12.5.1 libxcb-shape0-debuginfo-1.10-4.3.1 libxcb-dri2-0-32bit-1.10-4.3.1 libX11-6-1.6.2-12.5.1 libxcb-dri3-0-debuginfo-32bit-1.10-4.3.1 libxcb-xfixes0-debuginfo-1.10-4.3.1 libX11-6-debuginfo-32bit-1.6.2-12.5.1 libxcb-render0-32bit-1.10-4.3.1 libxcb-sync1-debuginfo-1.10-4.3.1 libxcb-shm0-debuginfo-32bit-1.10-4.3.1 libxcb-shape0-1.10-4.3.1 libxcb-shm0-debuginfo-1.10-4.3.1 libxcb-present0-debuginfo-32bit-1.10-4.3.1 libX11-xcb1-1.6.2-12.5.1 libxcb-xkb1-debuginfo-32bit-1.10-4.3.1 libX11-xcb1-debuginfo-1.6.2-12.5.1 libxcb-sync1-debuginfo-32bit-1.10-4.3.1 libxcb-xv0-1.10-4.3.1 libxcb-xkb1-debuginfo-1.10-4.3.1 libxcb-sync1-32bit-1.10-4.3.1 libxcb-xinerama0-1.10-4.3.1 libxcb-debugsource-1.10-4.3.1 libX11-xcb1-debuginfo-32bit-1.6.2-12.5.1 libxcb-xfixes0-32bit-1.10-4.3.1 libX11-6-32bit-1.6.2-12.5.1 libxcb-render0-debuginfo-32bit-1.10-4.3.1 libxcb-randr0-1.10-4.3.1 libxcb1-1.10-4.3.1 libxcb1-debuginfo-32bit-1.10-4.3.1 libxcb-glx0-32bit-1.10-4.3.1 libxcb-xf86dri0-1.10-4.3.1

160473 - CentOS 7 CESA-2018-2916 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: High CVE: CVE-2017-15705, CVE-2018-11781

Description The scan detected that the host is missing the following update: CESA-2018-2916

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2018-October/023065.html

CentOS 7 x86_64 spamassassin-3.4.0-4.el7_5

163712 - Oracle Enterprise Linux ELSA-2018-2916 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2017-15705, CVE-2018-11781

Description The scan detected that the host is missing the following update: ELSA-2018-2916

163714 - Oracle Enterprise Linux ELSA-2018-4244 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-17182

Description The scan detected that the host is missing the following update: ELSA-2018-4244

OEL7 x86_64 kernel-uek-firmware-4.1.12-124.20.1.el7uek kernel-uek-debug-devel-4.1.12-124.20.1.el7uek kernel-uek-doc-4.1.12-124.20.1.el7uek kernel-uek-devel-4.1.12-124.20.1.el7uek kernel-uek-4.1.12-124.20.1.el7uek kernel-uek-debug-4.1.12-124.20.1.el7uek

OEL6 x86_64 kernel-uek-devel-4.1.12-124.20.1.el6uek kernel-uek-4.1.12-124.20.1.el6uek kernel-uek-debug-4.1.12-124.20.1.el6uek kernel-uek-doc-4.1.12-124.20.1.el6uek kernel-uek-debug-devel-4.1.12-124.20.1.el6uek kernel-uek-firmware-4.1.12-124.20.1.el6uek

163715 - Oracle Enterprise Linux ELSA-2018-4242 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2017-13695, CVE-2018-12896, CVE-2018-14678, CVE-2018-16658, CVE-2018-3620, CVE-2018-3646, CVE-2018- 7492

Description The scan detected that the host is missing the following update: ELSA-2018-4242

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008126.html OEL7 x86_64 kernel-uek-devel-4.14.35-1818.3.3.el7uek kernel-uek-debug-devel-4.14.35-1818.3.3.el7uek kernel-uek-4.14.35-1818.3.3.el7uek kernel-uek-debug-4.14.35-1818.3.3.el7uek kernel-uek-tools-4.14.35-1818.3.3.el7uek kernel-uek-doc-4.14.35-1818.3.3.el7uek

175455 - Scientific Linux Security ERRATA Important: spamassassin on SL7.x x86_64 (1810-7635)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2017-15705, CVE-2018-11781

Description The scan detected that the host is missing the following update: Security ERRATA Important: spamassassin on SL7.x x86_64 (1810-7635)

SL7 x86_64 spamassassin-3.4.0-4.el7_5 spamassassin-debuginfo-3.4.0-4.el7_5

175458 - Scientific Linux Security ERRATA Important: kernel on SL6.x i386/x86_64 (1810-6630)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2018-14634, CVE-2018-5391

Description The scan detected that the host is missing the following update: Security ERRATA Important: kernel on SL6.x i386/x86_64 (1810-6630)

SL6 i386 python-perf-debuginfo-2.6.32-754.6.3.el6 python-perf-2.6.32-754.6.3.el6 kernel-2.6.32-754.6.3.el6 kernel-debuginfo-common-i686-2.6.32-754.6.3.el6 kernel-debuginfo-2.6.32-754.6.3.el6 kernel-debug-2.6.32-754.6.3.el6 kernel-debug-debuginfo-2.6.32-754.6.3.el6 perf-2.6.32-754.6.3.el6 kernel-headers-2.6.32-754.6.3.el6 kernel-debug-devel-2.6.32-754.6.3.el6 kernel-devel-2.6.32-754.6.3.el6 perf-debuginfo-2.6.32-754.6.3.el6 noarch kernel-abi-whitelists-2.6.32-754.6.3.el6 kernel-firmware-2.6.32-754.6.3.el6 kernel-doc-2.6.32-754.6.3.el6 x86_64 kernel-debuginfo-2.6.32-754.6.3.el6 kernel-debug-2.6.32-754.6.3.el6 kernel-debuginfo-common-x86_64-2.6.32-754.6.3.el6 kernel-debug-devel-2.6.32-754.6.3.el6 python-perf-2.6.32-754.6.3.el6 perf-2.6.32-754.6.3.el6 kernel-debug-debuginfo-2.6.32-754.6.3.el6 python-perf-debuginfo-2.6.32-754.6.3.el6 kernel-2.6.32-754.6.3.el6 kernel-debuginfo-common-i686-2.6.32-754.6.3.el6 kernel-devel-2.6.32-754.6.3.el6 kernel-headers-2.6.32-754.6.3.el6 perf-debuginfo-2.6.32-754.6.3.el6

194312 - Fedora Linux 27 FEDORA-2018-aff51f5e62 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2018-1000805, CVE-2018-7750

Description The scan detected that the host is missing the following update: FEDORA-2018-aff51f5e62

Fedora Core 27 python-paramiko-2.3.3-1.fc27

196117 - Red Hat Enterprise Linux RHSA-2018-2925 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10675, CVE-2018-14634, CVE-2018-5391

Description The scan detected that the host is missing the following update: RHSA-2018-2925

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.redhat.com/archives/rhsa-announce/2018-October/msg00024.html

RHEL6_7S i386 python-perf-debuginfo-2.6.32-573.65.2.el6 kernel-2.6.32-573.65.2.el6 perf-debuginfo-2.6.32-573.65.2.el6 kernel-debuginfo-2.6.32-573.65.2.el6 kernel-devel-2.6.32-573.65.2.el6 python-perf-2.6.32-573.65.2.el6 kernel-headers-2.6.32-573.65.2.el6 kernel-debuginfo-common-i686-2.6.32-573.65.2.el6 kernel-debug-debuginfo-2.6.32-573.65.2.el6 kernel-debug-devel-2.6.32-573.65.2.el6 perf-2.6.32-573.65.2.el6 kernel-debug-2.6.32-573.65.2.el6 noarch kernel-doc-2.6.32-573.65.2.el6 kernel-abi-whitelists-2.6.32-573.65.2.el6 kernel-firmware-2.6.32-573.65.2.el6 x86_64 kernel-debug-debuginfo-2.6.32-573.65.2.el6 kernel-2.6.32-573.65.2.el6 perf-2.6.32-573.65.2.el6 perf-debuginfo-2.6.32-573.65.2.el6 kernel-headers-2.6.32-573.65.2.el6 python-perf-debuginfo-2.6.32-573.65.2.el6 kernel-devel-2.6.32-573.65.2.el6 kernel-debug-devel-2.6.32-573.65.2.el6 kernel-debuginfo-common-i686-2.6.32-573.65.2.el6 kernel-debuginfo-2.6.32-573.65.2.el6 kernel-debuginfo-common-x86_64-2.6.32-573.65.2.el6 kernel-debug-2.6.32-573.65.2.el6 python-perf-2.6.32-573.65.2.el6

196118 - Red Hat Enterprise Linux RHSA-2018-2933 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10675, CVE-2018-14634, CVE-2018-5390, CVE-2018-5391

Description The scan detected that the host is missing the following update: RHSA-2018-2933

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.redhat.com/archives/rhsa-announce/2018-October/msg00023.html

RHEL6_5S x86_64 perf-debuginfo-2.6.32-431.93.2.el6 kernel-debug-2.6.32-431.93.2.el6 kernel-debuginfo-common-x86_64-2.6.32-431.93.2.el6 perf-2.6.32-431.93.2.el6 kernel-debug-debuginfo-2.6.32-431.93.2.el6 python-perf-2.6.32-431.93.2.el6 kernel-headers-2.6.32-431.93.2.el6 kernel-2.6.32-431.93.2.el6 kernel-devel-2.6.32-431.93.2.el6 kernel-debuginfo-2.6.32-431.93.2.el6 python-perf-debuginfo-2.6.32-431.93.2.el6 kernel-debug-devel-2.6.32-431.93.2.el6 noarch kernel-doc-2.6.32-431.93.2.el6 kernel-firmware-2.6.32-431.93.2.el6 kernel-abi-whitelists-2.6.32-431.93.2.el6

196119 - Red Hat Enterprise Linux RHSA-2018-2916 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2017-15705, CVE-2018-11781

Description The scan detected that the host is missing the following update: RHSA-2018-2916

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.redhat.com/archives/rhsa-announce/2018-October/msg00017.html

RHEL7D x86_64 spamassassin-3.4.0-4.el7_5 spamassassin-debuginfo-3.4.0-4.el7_5

RHEL7S x86_64 spamassassin-3.4.0-4.el7_5 spamassassin-debuginfo-3.4.0-4.el7_5

RHEL7WS x86_64 spamassassin-3.4.0-4.el7_5 spamassassin-debuginfo-3.4.0-4.el7_5

196120 - Red Hat Enterprise Linux RHSA-2018-2924 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10675, CVE-2018-14634, CVE-2018-5390, CVE-2018-5391

Description The scan detected that the host is missing the following update: RHSA-2018-2924

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.redhat.com/archives/rhsa-announce/2018-October/msg00020.html

RHEL6_6S x86_64 kernel-headers-2.6.32-504.76.2.el6 python-perf-debuginfo-2.6.32-504.76.2.el6 kernel-debuginfo-common-x86_64-2.6.32-504.76.2.el6 kernel-debug-2.6.32-504.76.2.el6 kernel-debuginfo-2.6.32-504.76.2.el6 kernel-debug-devel-2.6.32-504.76.2.el6 kernel-devel-2.6.32-504.76.2.el6 kernel-2.6.32-504.76.2.el6 python-perf-2.6.32-504.76.2.el6 perf-2.6.32-504.76.2.el6 kernel-debug-debuginfo-2.6.32-504.76.2.el6 perf-debuginfo-2.6.32-504.76.2.el6 noarch kernel-abi-whitelists-2.6.32-504.76.2.el6 kernel-doc-2.6.32-504.76.2.el6 kernel-firmware-2.6.32-504.76.2.el6

24274 - Mozilla Firefox Vulnerability Prior To 62.0.2

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2018-12385

Description A vulnerability is present in some versions of Mozilla Firefox.

Observation Mozilla Firefox is a popular web browser.

A vulnerability is present in some versions of Mozilla Firefox. The flaw lies in the TransportSecurityInfo used for SSL. Successful exploitation could allow an attacker to write data into the local cache or from locally installed malware.

24275 - Mozilla Firefox Vulnerability Prior To 62.0.2

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2018-12385

Description A vulnerability is present in some versions of Mozilla Firefox.

Observation Mozilla Firefox is a popular web browser.

24291 - Cisco IOS Software Cisco Discovery Protocol Denial of Service Vulnerability (cisco-sa-20180926-cdp-dos)

Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15373

Description A vulnerability is present in some versions of Cisco IOS.

Observation Cisco IOS is an operating system used in Cisco devices.

A vulnerability is present in some versions of Cisco IOS. The flaw is due to improper handling by the CDP subsystem when processing high rates of Cisco Discovery Protocol packets. Successful exploitation could allow an attacker to cause a denial of service condition in the target system.

24294 - Cisco Adaptive Security Appliance IPsec VPN Denial of Service Vulnerability (cisco-sa-20181003-asa-ipsec-dos)

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2018-15397

Description A vulnerability is present in some versions of Cisco ASA devices.

Observation Cisco Adaptive Security Appliance is a word-class line of network security devices.

A vulnerability is present in some versions of Cisco ASA devices. The flaw lies in the Traffic Flow Confidentiality (TFC) over IPsec functionality. Successful exploitation could allow an attacker to cause a denial of service condition in the target system.

24295 - Cisco IOS Software Cluster Management Protocol Denial of Service Vulnerability (cisco-sa-20180926-cmp)

Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-0475

Description A vulnerability is present in some versions of Cisco IOS.

Observation Cisco IOS is an operating system used in Cisco devices.

A vulnerability is present in some versions of Cisco IOS. The flaw is due to improper input validation in Cluster Management Protocol (CMP). Successful exploitation could allow an attacker to cause a denial of service condition on the target system.

24304 - Apache HTTP Server Vulnerability Prior To 2.4.35 Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2018-11763

Description A vulnerability is present in some versions of Apache HTTP Server.

Observation Apache HTTP Server is an open source web server.

A vulnerability is present in some versions of Apache HTTP Server. The flaw lies in HTTP/2 connection. Successful exploitation could allow an attacker to cause a denial of service condition.

24310 - IBM WebSphere Portal Cross-Site Scripting Vulnerability (ibm10715923)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2018-1660

Description A cross-site-scripting vulnerability is present in some versions of IBM WebSphere Portal.

Observation IBM WebSphere Portal is a set of software tools that are used to build and manage web portals.

A cross-site-scripting vulnerability is present in some versions of IBM WebSphere Portal. The flaw lies in Web UI. Successful exploitation could allow an attacker to execute arbitrary code and or disclose sensitive information on the target.

131222 - Debian Linux 9.0 DSA-4317-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14593, CVE-2018-16586, CVE-2018-16587

Description The scan detected that the host is missing the following update: DSA-4317-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4317

Debian 9.0 all otrs2_5.0.16-1+deb9u6

131223 - Debian Linux 9.0 DSA-4319-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10873

Description The scan detected that the host is missing the following update: DSA-4319-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4319

Debian 9.0 all libspice-server1_0.12.8-2.1+deb9u2 libspice-server-dev_0.12.8-2.1+deb9u2

147197 - SuSE Linux 42.3 openSUSE-SU-2018:3103-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-2938, CVE-2018-2940, CVE-2018-2952, CVE-2018-2973, CVE-2018-3639

Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3103-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00050.html

SuSE Linux 42.3 i586 java-1_8_0-openjdk-demo-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-src-1.8.0.181-27.1 java-1_8_0-openjdk-accessibility-1.8.0.181-27.1 java-1_8_0-openjdk-demo-1.8.0.181-27.1 java-1_8_0-openjdk-devel-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-debugsource-1.8.0.181-27.1 java-1_8_0-openjdk-devel-1.8.0.181-27.1 java-1_8_0-openjdk-headless-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-1.8.0.181-27.1 java-1_8_0-openjdk-headless-1.8.0.181-27.1 noarch java-1_8_0-openjdk-javadoc-1.8.0.181-27.1 x86_64 java-1_8_0-openjdk-demo-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-src-1.8.0.181-27.1 java-1_8_0-openjdk-accessibility-1.8.0.181-27.1 java-1_8_0-openjdk-demo-1.8.0.181-27.1 java-1_8_0-openjdk-devel-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-debugsource-1.8.0.181-27.1 java-1_8_0-openjdk-devel-1.8.0.181-27.1 java-1_8_0-openjdk-headless-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-1.8.0.181-27.1 java-1_8_0-openjdk-headless-1.8.0.181-27.1

147202 - SuSE Linux 15.0 openSUSE-SU-2018:3106-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000223

Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3106-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00053.html

SuSE Linux 15.0 x86_64 libSoundTouch0-32bit-debuginfo-1.8.0-lp150.2.3.1 libSoundTouch0-debuginfo-1.8.0-lp150.2.3.1 soundtouch-devel-1.8.0-lp150.2.3.1 libSoundTouch0-32bit-1.8.0-lp150.2.3.1 soundtouch-debuginfo-1.8.0-lp150.2.3.1 libSoundTouch0-1.8.0-lp150.2.3.1 soundtouch-debugsource-1.8.0-lp150.2.3.1 soundtouch-1.8.0-lp150.2.3.1 i586 libSoundTouch0-debuginfo-1.8.0-lp150.2.3.1 soundtouch-devel-1.8.0-lp150.2.3.1 soundtouch-debuginfo-1.8.0-lp150.2.3.1 libSoundTouch0-1.8.0-lp150.2.3.1 soundtouch-debugsource-1.8.0-lp150.2.3.1 soundtouch-1.8.0-lp150.2.3.1

160475 - CentOS 7 CESA-2018-2918 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10194, CVE-2018-15910, CVE-2018-16509, CVE-2018-16542

Description The scan detected that the host is missing the following update: CESA-2018-2918

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2018-October/023066.html

CentOS 7 i686 ghostscript-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2 noarch ghostscript-doc-9.07-29.el7_5.2 x86_64 ghostscript-gtk-9.07-29.el7_5.2 ghostscript-9.07-29.el7_5.2 ghostscript-cups-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2

163717 - Oracle Enterprise Linux ELSA-2018-2918 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10194, CVE-2018-15910, CVE-2018-16509, CVE-2018-16542

Description The scan detected that the host is missing the following update: ELSA-2018-2918

OEL7 x86_64 ghostscript-gtk-9.07-29.el7_5.2 ghostscript-9.07-29.el7_5.2 ghostscript-cups-9.07-29.el7_5.2 ghostscript-doc-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2

175460 - Scientific Linux Security ERRATA Important: ghostscript on SL7.x x86_64 (1810-7986)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2018-10194, CVE-2018-15910, CVE-2018-16509, CVE-2018-16542

Description The scan detected that the host is missing the following update: Security ERRATA Important: ghostscript on SL7.x x86_64 (1810-7986)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1810&L=scientific-linux-errata&F=&S=&P=7986 SL7 x86_64 ghostscript-gtk-9.07-29.el7_5.2 ghostscript-9.07-29.el7_5.2 ghostscript-cups-9.07-29.el7_5.2 ghostscript-debuginfo-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2 noarch ghostscript-doc-9.07-29.el7_5.2

194299 - Fedora Linux 28 FEDORA-2018-c255f16bfe Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000156, CVE-2018-6951, CVE-2018-6952

Description The scan detected that the host is missing the following update: FEDORA-2018-c255f16bfe

Fedora Core 28 patch-2.7.6-5.fc28

194320 - Fedora Linux 28 FEDORA-2018-1c1a318a0b Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-11233, CVE-2018-11235, CVE-2018-17456

Description The scan detected that the host is missing the following update: FEDORA-2018-1c1a318a0b

Fedora Core 28 git-2.17.2-1.fc28

194321 - Fedora Linux 28 FEDORA-2018-42eab0f5b9 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10887, CVE-2018-10888, CVE-2018-11235, CVE-2018-17456

Description The scan detected that the host is missing the following update: FEDORA-2018-42eab0f5b9

Fedora Core 28 libgit2-0.26.7-1.fc28

194323 - Fedora Linux 27 FEDORA-2018-7d993184f6 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10887, CVE-2018-10888, CVE-2018-11235, CVE-2018-17456

Description The scan detected that the host is missing the following update: FEDORA-2018-7d993184f6

Fedora Core 27 libgit2-0.26.7-1.fc27

196121 - Red Hat Enterprise Linux RHSA-2018-2918 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10194, CVE-2018-15910, CVE-2018-16509, CVE-2018-16542

Description The scan detected that the host is missing the following update: RHSA-2018-2918

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.redhat.com/archives/rhsa-announce/2018-October/msg00018.html

RHEL7D x86_64 ghostscript-gtk-9.07-29.el7_5.2 ghostscript-9.07-29.el7_5.2 ghostscript-cups-9.07-29.el7_5.2 ghostscript-debuginfo-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2 noarch ghostscript-doc-9.07-29.el7_5.2

RHEL7S noarch ghostscript-doc-9.07-29.el7_5.2 x86_64 ghostscript-gtk-9.07-29.el7_5.2 ghostscript-9.07-29.el7_5.2 ghostscript-cups-9.07-29.el7_5.2 ghostscript-debuginfo-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2

RHEL7WS x86_64 ghostscript-gtk-9.07-29.el7_5.2 ghostscript-9.07-29.el7_5.2 ghostscript-cups-9.07-29.el7_5.2 ghostscript-debuginfo-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2 noarch ghostscript-doc-9.07-29.el7_5.2

24279 - Mozilla Firefox ESR Vulnerabilities Prior To ESR 60.2.1

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2018-12383, CVE-2018-12385

Description Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR.

Observation Mozilla Firefox ESR is a popular web browser.

Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR. The flaws lie in multiple components. Successful exploitation could allow an attacker to bypass security access restrictions, or cause a denial of service.

24280 - Mozilla Firefox ESR Vulnerabilities Prior To ESR 60.2.1

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2018-12383, CVE-2018-12385

Description Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR. Observation Mozilla Firefox ESR is a popular web browser.

24285 - Mozilla Thunderbird Multiple Vulnerabilities Prior To 60.2.1

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2017-16541, CVE-2018-12376, CVE-2018-12377, CVE-2018-12378, CVE-2018-12379, CVE-2018-12383, CVE-2018- 12385

Description Multiple vulnerabilities are present in some versions of Mozilla Thunderbird.

Observation Mozilla Thunderbird is an open-source email, newsgroup, news feed, and chat client.

Multiple vulnerabilities are present in some versions of Mozilla Thunderbird. The flaws lie in several components. Successful exploitation could allow an attacker to cause a denial of service condition, bypass security access restrictions or remotely execute arbitrary code on the target system.

24286 - Mozilla Thunderbird Multiple Vulnerabilities Prior To 60.2.1

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2017-16541, CVE-2018-12376, CVE-2018-12377, CVE-2018-12378, CVE-2018-12379, CVE-2018-12383, CVE-2018- 12385

Description Multiple vulnerabilities are present in some versions of Mozilla Thunderbird.

Observation Mozilla Thunderbird is an open-source email, newsgroup, news feed, and chat client.

24289 - Cisco IOS Software SM-1T3/E3 Service Module Denial of Service Vulnerability (cisco-sa-20180926-sm1t3e3)

Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-0485

Description A denial of service vulnerability is present in some versions of Cisco IOS.

Observation Cisco IOS is an operating system used in Cisco devices. A denial of service vulnerability is present in some versions of Cisco IOS. The flaw lies in the SM-1T3/E3 firmware. Successful exploitation could allow an attacker to cause a denial of service condition.

24292 - Cisco IOS Software Plug and Play Agent Memory Leak Vulnerability (cisco-sa-20180926-pnp-memleak)

Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15377

Description A vulnerability is present in some versions of Cisco IOS.

Observation Cisco IOS is an operating system used in Cisco devices.

A vulnerability is present in some versions of Cisco IOS. The flaw is due to insufficient input validation. Successful exploitation could allow an attacker to cause a memory leak on the target system which leads to a denial of service condition.

24293 - Cisco Adaptive Security Appliance TCP Syslog Denial of Service Vulnerability (cisco-sa-20181003-asa-syslog- dos)

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2018-15399

Description A vulnerability is present in some versions of Cisco ASA devices.

Observation Cisco Adaptive Security Appliance is a world-class line of network security devices.

A vulnerability is present in some versions of Cisco ASA devices. The flaw lies in the TCP Syslog module. Successful exploitation could allow an attacker to cause a denial of service condition in the target system.

24297 - Cisco Adaptive Security Appliance Access Control List Bypass Vulnerability (cisco-sa-20181003-asa-acl- bypass)

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2018-15398

Description A vulnerability is present in some versions of Cisco ASA devices.

Observation Cisco Adaptive Security Appliance is a word-class line of network security devices.

A vulnerability is present in some versions of Cisco ASA devices. The flaw lies in per-user-override feature. Successful exploitation could allow a remote attacker to bypass intended access restrictions.

24303 - Cisco Catalyst 6800 Series Switches ROM Monitor Software Secure Boot Bypass Vulnerability (cisco-sa- 20180926-catalyst6800) Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15370

Description A vulnerability is present in some versions of Cisco IOS used in Cisco Catalyst Switches.

Observation Cisco IOS is an operating system used in the Cisco device.

A vulnerability is present in some versions of Cisco IOS used in Cisco Catalyst Switches. The vulnerability lies in Cisco IOS ROM Monitor (ROMMON) Software for the Cisco Catalyst 6800 Series. Successful exploitation could allow an unauthenticated, local attacker to bypass certain security restrictions and perform unauthorized actions.

24305 - Apache Tomcat Vulnerability Prior To 9.0.12

Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium CVE: CVE-2018-11784

Description A vulnerability is present in some versions of Apache Tomcat.

Observation Apache Tomcat is an open source software implementation of the Java Servlet and JavaServer Pages technologies.

A vulnerability is present in some versions of Apache Tomcat. The flaw is due to improper handling of user-supplied input. Successful exploitation could allow an attacker to conduct phishing attacks.

24306 - IBM WebSphere Portal Open Redirect Vulnerability (ibm10729683)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2018-1736

Description A vulnerability is present in some versions of IBM WebSphere Portal.

Observation IBM WebSphere Portal is a set of software tools that is used to build and manage web portals.

A vulnerability is present in some versions of IBM WebSphere Portal. The flaw is due to improper handling of user-supplied input. Successful exploitation could allow an attacker to conduct phishing attacks.

24307 - Apache ActiveMQ Web Console Cross-Site Scripting Vulnerability Prior To 5.15.6

Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium CVE: CVE-2018-8006

Description A vulnerability is present in some versions of Apache ActiveMQ.

Observation Apache ActiveMQ is an open source messaging server.

A vulnerability is present in some versions of Apache ActiveMQ. The flaw is due to insufficient sanitization of input data to the QueueFilter parameter. Successful exploitation could allow an attacker to execute arbitrary script code in the target machine.

24308 - (HT209162) Apple iOS Multiple Vulnerabilities Prior To 12.0.1

Category: Wireless Assessment -> NonIntrusive -> iOS Risk Level: Medium CVE: CVE-2018-4379, CVE-2018-4380

Description Multiple vulnerabilities are present in some versions of Apple iOS.

Observation Apple iOS is the operating system used by Apple iPhone, iPad, and iPod touch.

Multiple vulnerabilities are present in some versions of Apple iOS. The flaws lie in many components. Successful exploitation could allow a local attacker to obtain sensitive information.

131224 - Debian Linux 9.0 DSA-4320-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-12227, CVE-2018-17281, CVE-2018-7284, CVE-2018-7286

Description The scan detected that the host is missing the following update: DSA-4320-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4320

Debian 9.0 all asterisk_1:13.14.1~dfsg-2+deb9u4

132484 - Oracle VM OVMSA-2018-0263 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle VM Patches and Hotfixes Risk Level: Medium CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: OVMSA-2018-0263 Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/oraclevm-errata/2018-October/000896.html

OVM3.4 x86_64 glusterfs-api-3.12.2-18.el6 glusterfs-3.12.2-18.el6 glusterfs-libs-3.12.2-18.el6 glusterfs-client-xlators-3.12.2-18.el6

132485 - Oracle VM OVMSA-2018-0264 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle VM Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-12384

Description The scan detected that the host is missing the following update: OVMSA-2018-0264

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/oraclevm-errata/2018-October/000898.html http://oss.oracle.com/pipermail/oraclevm-errata/2018-October/000895.html

OVM3.3 x86_64 nss-sysinit-3.36.0-9.0.1.el6_10 nss-3.36.0-9.0.1.el6_10 nss-tools-3.36.0-9.0.1.el6_10

OVM3.4 x86_64 nss-sysinit-3.36.0-9.0.1.el6_10 nss-3.36.0-9.0.1.el6_10 nss-tools-3.36.0-9.0.1.el6_10

135214 - Oracle Solaris 11.4.1.4.0 Update Is Not Installed (CVE-2016-5244)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-5244

Description The scan detected that the host is missing the following update: SRU 11.4.1.4.0

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197

147201 - SuSE Linux 42.3 openSUSE-SU-2018:3107-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2017-18258, CVE-2018-14404, CVE-2018-14567, CVE-2018-9251

Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3107-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00054.html

SuSE Linux 42.3 i586 python-libxml2-debuginfo-2.9.4-18.1 libxml2-2-2.9.4-18.1 python-libxml2-debugsource-2.9.4-18.1 libxml2-tools-debuginfo-2.9.4-18.1 libxml2-devel-2.9.4-18.1 libxml2-debugsource-2.9.4-18.1 libxml2-2-debuginfo-2.9.4-18.1 python-libxml2-2.9.4-18.1 libxml2-tools-2.9.4-18.1 noarch libxml2-doc-2.9.4-18.1 x86_64 python-libxml2-debuginfo-2.9.4-18.1 libxml2-2-32bit-2.9.4-18.1 libxml2-2-2.9.4-18.1 python-libxml2-debugsource-2.9.4-18.1 libxml2-tools-debuginfo-2.9.4-18.1 libxml2-devel-2.9.4-18.1 libxml2-debugsource-2.9.4-18.1 libxml2-devel-32bit-2.9.4-18.1 libxml2-2-debuginfo-2.9.4-18.1 python-libxml2-2.9.4-18.1 libxml2-2-debuginfo-32bit-2.9.4-18.1 libxml2-tools-2.9.4-18.1

147209 - SuSE Linux 15.0 openSUSE-SU-2018:3110-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14404, CVE-2018-14567, CVE-2018-9251

Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3110-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00057.html

SuSE Linux 15.0 i586 libxml2-2-2.9.7-lp150.2.3.1 python3-libxml2-python-debuginfo-2.9.7-lp150.2.3.1 libxml2-debugsource-2.9.7-lp150.2.3.1 python2-libxml2-python-debuginfo-2.9.7-lp150.2.3.1 libxml2-devel-2.9.7-lp150.2.3.1 python3-libxml2-python-2.9.7-lp150.2.3.1 libxml2-2-debuginfo-2.9.7-lp150.2.3.1 python-libxml2-python-debugsource-2.9.7-lp150.2.3.1 python2-libxml2-python-2.9.7-lp150.2.3.1 libxml2-tools-2.9.7-lp150.2.3.1 libxml2-tools-debuginfo-2.9.7-lp150.2.3.1 noarch libxml2-doc-2.9.7-lp150.2.3.1 x86_64 libxml2-2-32bit-debuginfo-2.9.7-lp150.2.3.1 libxml2-tools-2.9.7-lp150.2.3.1 python3-libxml2-python-debuginfo-2.9.7-lp150.2.3.1 libxml2-2-debuginfo-2.9.7-lp150.2.3.1 python-libxml2-python-debugsource-2.9.7-lp150.2.3.1 python2-libxml2-python-2.9.7-lp150.2.3.1 libxml2-tools-debuginfo-2.9.7-lp150.2.3.1 libxml2-devel-32bit-2.9.7-lp150.2.3.1 python3-libxml2-python-2.9.7-lp150.2.3.1 libxml2-devel-2.9.7-lp150.2.3.1 python2-libxml2-python-debuginfo-2.9.7-lp150.2.3.1 libxml2-debugsource-2.9.7-lp150.2.3.1 libxml2-2-32bit-2.9.7-lp150.2.3.1 libxml2-2-2.9.7-lp150.2.3.1

160474 - CentOS 7 CESA-2018-2921 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1336

Description The scan detected that the host is missing the following update: CESA-2018-2921

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2018-October/023067.html CentOS 7 noarch tomcat-jsvc-7.0.76-8.el7_5 tomcat-7.0.76-8.el7_5 tomcat-docs-webapp-7.0.76-8.el7_5 tomcat-javadoc-7.0.76-8.el7_5 tomcat-lib-7.0.76-8.el7_5 tomcat-webapps-7.0.76-8.el7_5 tomcat-jsp-2.2-api-7.0.76-8.el7_5 tomcat-el-2.2-api-7.0.76-8.el7_5 tomcat-servlet-3.0-api-7.0.76-8.el7_5 tomcat-admin-webapps-7.0.76-8.el7_5

163713 - Oracle Enterprise Linux ELSA-2018-4248 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-0732, CVE-2018-0737

Description The scan detected that the host is missing the following update: ELSA-2018-4248

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008139.html

OEL6 x86_64 openssl-devel-1.0.1e-57.0.6.el6 openssl-1.0.1e-57.0.6.el6 openssl-static-1.0.1e-57.0.6.el6 openssl-perl-1.0.1e-57.0.6.el6 i386 openssl-devel-1.0.1e-57.0.6.el6 openssl-1.0.1e-57.0.6.el6 openssl-static-1.0.1e-57.0.6.el6 openssl-perl-1.0.1e-57.0.6.el6

163716 - Oracle Enterprise Linux ELSA-2018-2921 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1336

Description The scan detected that the host is missing the following update: ELSA-2018-2921

OEL7 x86_64 tomcat-jsvc-7.0.76-8.el7_5 tomcat-7.0.76-8.el7_5 tomcat-docs-webapp-7.0.76-8.el7_5 tomcat-javadoc-7.0.76-8.el7_5 tomcat-lib-7.0.76-8.el7_5 tomcat-webapps-7.0.76-8.el7_5 tomcat-jsp-2.2-api-7.0.76-8.el7_5 tomcat-el-2.2-api-7.0.76-8.el7_5 tomcat-servlet-3.0-api-7.0.76-8.el7_5 tomcat-admin-webapps-7.0.76-8.el7_5

163720 - Oracle Enterprise Linux ELSA-2018-4249 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-0732, CVE-2018-0737

Description The scan detected that the host is missing the following update: ELSA-2018-4249

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008138.html

OEL7 x86_64 openssl-static-1.0.2k-12.0.3.el7 openssl-devel-1.0.2k-12.0.3.el7 openssl-libs-1.0.2k-12.0.3.el7 openssl-perl-1.0.2k-12.0.3.el7 openssl-1.0.2k-12.0.3.el7

175456 - Scientific Linux Security ERRATA Moderate: nss on SL6.x i386/x86_64 (1810-6985)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2018-12384

Description The scan detected that the host is missing the following update: Security ERRATA Moderate: nss on SL6.x i386/x86_64 (1810-6985)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1810&L=scientific-linux-errata&F=&S=&P=6985 SL6 x86_64 nss-tools-3.36.0-9.el6_10 nss-pkcs11-devel-3.36.0-9.el6_10 nss-3.36.0-9.el6_10 nss-debuginfo-3.36.0-9.el6_10 nss-sysinit-3.36.0-9.el6_10 nss-devel-3.36.0-9.el6_10 i386 nss-tools-3.36.0-9.el6_10 nss-pkcs11-devel-3.36.0-9.el6_10 nss-3.36.0-9.el6_10 nss-debuginfo-3.36.0-9.el6_10 nss-sysinit-3.36.0-9.el6_10 nss-devel-3.36.0-9.el6_10

175457 - Scientific Linux Security ERRATA Moderate: glusterfs on SL6.x x86_64 (1810-7303)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2018-10911

Description The scan detected that the host is missing the following update: Security ERRATA Moderate: glusterfs on SL6.x x86_64 (1810-7303)

SL6 x86_64 glusterfs-api-3.12.2-18.el6 glusterfs-devel-3.12.2-18.el6 glusterfs-rdma-3.12.2-18.el6 glusterfs-client-xlators-3.12.2-18.el6 glusterfs-fuse-3.12.2-18.el6 glusterfs-cli-3.12.2-18.el6 glusterfs-libs-3.12.2-18.el6 glusterfs-debuginfo-3.12.2-18.el6 glusterfs-3.12.2-18.el6 glusterfs-api-devel-3.12.2-18.el6

175459 - Scientific Linux Security ERRATA Important: tomcat on SL7.x (noarch) (1810-8372)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2018-1336

Description The scan detected that the host is missing the following update: Security ERRATA Important: tomcat on SL7.x (noarch) (1810-8372) Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1810&L=scientific-linux-errata&F=&S=&P=8372

SL7 noarch tomcat-servlet-3.0-api-7.0.76-8.el7_5 tomcat-7.0.76-8.el7_5 tomcat-docs-webapp-7.0.76-8.el7_5 tomcat-javadoc-7.0.76-8.el7_5 tomcat-jsvc-7.0.76-8.el7_5 tomcat-webapps-7.0.76-8.el7_5 tomcat-jsp-2.2-api-7.0.76-8.el7_5 tomcat-lib-7.0.76-8.el7_5 tomcat-el-2.2-api-7.0.76-8.el7_5 tomcat-admin-webapps-7.0.76-8.el7_5

196122 - Red Hat Enterprise Linux RHSA-2018-2921 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1336

Description The scan detected that the host is missing the following update: RHSA-2018-2921

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.redhat.com/archives/rhsa-announce/2018-October/msg00019.html

RHEL7D noarch tomcat-servlet-3.0-api-7.0.76-8.el7_5 tomcat-7.0.76-8.el7_5 tomcat-docs-webapp-7.0.76-8.el7_5 tomcat-javadoc-7.0.76-8.el7_5 tomcat-jsvc-7.0.76-8.el7_5 tomcat-webapps-7.0.76-8.el7_5 tomcat-jsp-2.2-api-7.0.76-8.el7_5 tomcat-lib-7.0.76-8.el7_5 tomcat-el-2.2-api-7.0.76-8.el7_5 tomcat-admin-webapps-7.0.76-8.el7_5

RHEL7S noarch tomcat-servlet-3.0-api-7.0.76-8.el7_5 tomcat-7.0.76-8.el7_5 tomcat-docs-webapp-7.0.76-8.el7_5 tomcat-javadoc-7.0.76-8.el7_5 tomcat-lib-7.0.76-8.el7_5 tomcat-webapps-7.0.76-8.el7_5 tomcat-jsp-2.2-api-7.0.76-8.el7_5 tomcat-jsvc-7.0.76-8.el7_5 tomcat-el-2.2-api-7.0.76-8.el7_5 tomcat-admin-webapps-7.0.76-8.el7_5

RHEL7WS noarch tomcat-servlet-3.0-api-7.0.76-8.el7_5 tomcat-7.0.76-8.el7_5 tomcat-docs-webapp-7.0.76-8.el7_5 tomcat-javadoc-7.0.76-8.el7_5 tomcat-lib-7.0.76-8.el7_5 tomcat-webapps-7.0.76-8.el7_5 tomcat-jsp-2.2-api-7.0.76-8.el7_5 tomcat-jsvc-7.0.76-8.el7_5 tomcat-el-2.2-api-7.0.76-8.el7_5 tomcat-admin-webapps-7.0.76-8.el7_5

24287 - (K61974123) F5 BIG-IP Imagemagick Vulnerability

Category: SSH Module -> NonIntrusive -> F5 Risk Level: Medium CVE: CVE-2016-3718

Description A vulnerability is present in some versions of F5's BIG-IP products.

Observation F5's BIG-IP products are network appliance that run F5's Traffic Management Operating System.

A vulnerability is present in some versions of F5's BIG-IP products. The flaw lies in the ImageMagick's HTTP and FTP coders. Successful exploitation could allow a remote attacker to conduct server-side request forgery (SSRF) attacks.

135219 - Oracle Solaris 11.4.1.4.0 Update Is Not Installed (CVE-2015-6937)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-6937

Description The scan detected that the host is missing the following update: SRU 11.4.1.4.0

147207 - SuSE SLES 12 SP3 SUSE-SU-2018:3118-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-8032

Description The scan detected that the host is missing the following update: SUSE-SU-2018:3118-1

SuSE SLES 12 SP3 noarch axis-1.4-290.3.1

147208 - SuSE SLES 11 SP4 SUSE-SU-2018:3119-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-8032

Description The scan detected that the host is missing the following update: SUSE-SU-2018:3119-1

SuSE SLES 11 SP4 noarch axis-1.4-236.236.44.9.1

147211 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:3095-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2017-11532, CVE-2018-16413, CVE-2018-16640, CVE-2018-16642, CVE-2018-16643, CVE-2018-16644, CVE-2018- 16645, CVE-2018-16749, CVE-2018-16750

Description The scan detected that the host is missing the following update: SUSE-SU-2018:3095-1

SuSE SLED 12 SP3 x86_64 libMagickCore-6_Q16-1-6.8.8.1-71.79.1 libMagickCore-6_Q16-1-32bit-6.8.8.1-71.79.1 libMagick++-6_Q16-3-debuginfo-6.8.8.1-71.79.1 libMagick++-6_Q16-3-6.8.8.1-71.79.1 libMagickCore-6_Q16-1-debuginfo-32bit-6.8.8.1-71.79.1 libMagickWand-6_Q16-1-debuginfo-6.8.8.1-71.79.1 ImageMagick-debugsource-6.8.8.1-71.79.1 libMagickWand-6_Q16-1-6.8.8.1-71.79.1 libMagickCore-6_Q16-1-debuginfo-6.8.8.1-71.79.1 ImageMagick-6.8.8.1-71.79.1 ImageMagick-debuginfo-6.8.8.1-71.79.1

SuSE SLES 12 SP3 x86_64 libMagickCore-6_Q16-1-6.8.8.1-71.79.1 ImageMagick-debugsource-6.8.8.1-71.79.1 libMagickWand-6_Q16-1-6.8.8.1-71.79.1 libMagickCore-6_Q16-1-debuginfo-6.8.8.1-71.79.1 libMagickWand-6_Q16-1-debuginfo-6.8.8.1-71.79.1 ImageMagick-debuginfo-6.8.8.1-71.79.1

163718 - Oracle Enterprise Linux ELSA-2018-4245 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2017-13695, CVE-2018-14634, CVE-2018-16658, CVE-2018-3620, CVE-2018-7492

Description The scan detected that the host is missing the following update: ELSA-2018-4245

OEL7 x86_64 kernel-uek-debug-devel-3.8.13-118.25.1.el7uek dtrace-modules-3.8.13-118.25.1.el7uek-0.4.5-3.el7 kernel-uek-3.8.13-118.25.1.el7uek kernel-uek-firmware-3.8.13-118.25.1.el7uek kernel-uek-debug-3.8.13-118.25.1.el7uek kernel-uek-doc-3.8.13-118.25.1.el7uek kernel-uek-devel-3.8.13-118.25.1.el7uek

OEL6 x86_64 kernel-uek-debug-devel-3.8.13-118.25.1.el6uek kernel-uek-debug-3.8.13-118.25.1.el6uek kernel-uek-doc-3.8.13-118.25.1.el6uek kernel-uek-devel-3.8.13-118.25.1.el6uek dtrace-modules-3.8.13-118.25.1.el6uek-0.4.5-3.el6 kernel-uek-firmware-3.8.13-118.25.1.el6uek kernel-uek-3.8.13-118.25.1.el6uek

163719 - Oracle Enterprise Linux ELSA-2018-4250 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2017-13695, CVE-2018-13405, CVE-2018-14634, CVE-2018-16658, CVE-2018-7492, CVE-2018-7566

Description The scan detected that the host is missing the following update: ELSA-2018-4250

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008140.html

OEL6 x86_64 kernel-uek-debug-2.6.39-400.302.2.el6uek kernel-uek-firmware-2.6.39-400.302.2.el6uek kernel-uek-2.6.39-400.302.2.el6uek kernel-uek-debug-devel-2.6.39-400.302.2.el6uek kernel-uek-doc-2.6.39-400.302.2.el6uek kernel-uek-devel-2.6.39-400.302.2.el6uek i386 kernel-uek-debug-2.6.39-400.302.2.el6uek kernel-uek-2.6.39-400.302.2.el6uek kernel-uek-firmware-2.6.39-400.302.2.el6uek kernel-uek-debug-devel-2.6.39-400.302.2.el6uek kernel-uek-doc-2.6.39-400.302.2.el6uek kernel-uek-devel-2.6.39-400.302.2.el6uek

194298 - Fedora Linux 28 FEDORA-2018-5d6e80ab82 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-0497

Description The scan detected that the host is missing the following update: FEDORA-2018-5d6e80ab82

Fedora Core 28 dislocker-0.7.1-10.fc28 mbedtls-2.13.0-1.fc28 nekovm-2.2.0-8.fc28 dolphin-emu-5.0-25.fc28

194300 - Fedora Linux 27 FEDORA-2018-22776e8ca9 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2017-5950

Description The scan detected that the host is missing the following update: FEDORA-2018-22776e8ca9

Fedora Core 27 fawkes-1.0.1-9.fc27.1 mongodb-3.4.11-4.fc27 calamares-3.1.8-2.fc27.1 librime-1.2-18.fc27.1 pdns-4.1.4-1.fc27.1

194303 - Fedora Linux 27 FEDORA-2018-9caa6528d2 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-16151, CVE-2018-16152, CVE-2018-5388

Description The scan detected that the host is missing the following update: FEDORA-2018-9caa6528d2

Fedora Core 27 strongswan-5.7.1-1.fc27

194304 - Fedora Linux 28 FEDORA-2018-dd98177cad Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-5773

Description The scan detected that the host is missing the following update: FEDORA-2018-dd98177cad

Fedora Core 28 python-markdown2-2.3.6-1.fc28

194310 - Fedora Linux 27 FEDORA-2018-e52160d0bc Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-5773

Description The scan detected that the host is missing the following update: FEDORA-2018-e52160d0bc

Fedora Core 27 python-markdown2-2.3.6-1.fc27

194314 - Fedora Linux 28 FEDORA-2018-a71b957c50 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-5785

Description The scan detected that the host is missing the following update: FEDORA-2018-a71b957c50

Fedora Core 28 openjpeg2-2.3.0-9.fc28 mingw-openjpeg2-2.3.0-4.fc28

194318 - Fedora Linux 27 FEDORA-2018-64d64bd05e Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-5785 Description The scan detected that the host is missing the following update: FEDORA-2018-64d64bd05e

Fedora Core 27 mingw-openjpeg2-2.3.0-4.fc27 openjpeg2-2.3.0-9.fc27

194322 - Fedora Linux 28 FEDORA-2018-61df554bb1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-16151, CVE-2018-16152, CVE-2018-5388

Description The scan detected that the host is missing the following update: FEDORA-2018-61df554bb1

Fedora Core 28 strongswan-5.7.1-1.fc28

24309 - IBM WebSphere Portal CKEditor Vulnerability (swg22015586)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Low CVE: CVE-MAP-NOMATCH

Description A vulnerability is present in some versions of IBM WebSphere Portal.

Observation IBM WebSphere Portal is a set of software tools that is used to build and manage web portals.

A vulnerability is present in some versions of IBM WebSphere Portal. The flaw lies in CKEditor component. Successful exploitation could allow an attacker to gain unauthorized access to target system.

33393 - Oracle Solaris 152925-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: 152925-01

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://getupdates.oracle.com/readme/152925-01

JavaSE 7(x86): update 201 patch (equivalent to JDK 7u201)

SOLARIS_10_x86

SUNWj7dmo:1.7.0,REV=2011.06.27.03.37 SUNWj7dev:1.7.0,REV=2011.06.27.03.37 SUNWj7jmp:1.7.0,REV=2011.06.27.03.37 SUNWj7rt:1.7.0,REV=2011.06.27.03.37 SUNWj7man:1.7.0,REV=2011.06.27.03.37 SUNWj7cfg:1.7.0,REV=2011.06.27.03.37

33394 - Oracle Solaris 152923-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: 152923-01

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://getupdates.oracle.com/readme/152923-01

JavaSE 7: update 201 patch (equivalent to JDK 7u201)

SOLARIS_10

SUNWj7cfg:1.7.0,REV=2011.06.27.06.20 SUNWj7dmo:1.7.0,REV=2011.06.27.06.20 SUNWj7rt:1.7.0,REV=2011.06.27.06.20 SUNWj7dev:1.7.0,REV=2011.06.27.06.20 SUNWj7man:1.7.0,REV=2011.06.27.06.20 SUNWj7jmp:1.7.0,REV=2011.06.27.06.20

33395 - Oracle Solaris 152926-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: 152926-01

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://getupdates.oracle.com/readme/152926-01

JavaSE 7(x86): update 201 patch (equivalent to JDK 7u201), 64bit

SOLARIS_10_x86

SUNWj7rtx:1.7.0,REV=2011.06.27.02.48 SUNWj7dmx:1.7.0,REV=2011.06.27.02.48 SUNWj7dvx:1.7.0,REV=2011.06.27.02.48

33396 - Oracle Solaris 152924-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: 152924-01

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://getupdates.oracle.com/readme/152924-01

JavaSE 7: update 201 patch (equivalent to JDK 7u201), 64bit

SOLARIS_10

SUNWj7dvx:1.7.0,REV=2011.06.27.06.23 SUNWj7dmx:1.7.0,REV=2011.06.27.06.23 SUNWj7rtx:1.7.0,REV=2011.06.27.06.23

88981 - Slackware Linux 14.0, 14.1, 14.2 SSA:2018-283-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes Risk Level: Low CVE: CVE-2018-17456

Description The scan detected that the host is missing the following update: SSA:2018-283-01

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.slackware.com/security/viewer.php?l=slackware-security&y=2018&m=slackware-security.442862

Slackware 14.0 x86_64 git-2.14.5-x86_64-1

Slackware 14.2 x86_64 git-2.14.5-x86_64-1 i586 git-2.14.5-i586-1

Slackware 14.1 x86_64 git-2.14.5-x86_64-1

131221 - Debian Linux 9.0 DSA-4318-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2017-5934

Description The scan detected that the host is missing the following update: DSA-4318-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4318

Debian 9.0 all python-moinmoin_1.9.9-1+deb9u1

131225 - Debian Linux 9.0 DSA-4316-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2018-16412, CVE-2018-16413, CVE-2018-16642, CVE-2018-16644, CVE-2018-16645

Description The scan detected that the host is missing the following update: DSA-4316-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4316 Debian 9.0 all imagemagick_8:6.9.7.4+dfsg-11+deb9u6

131226 - Debian Linux 9.0 DSA-4315-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2018-16056, CVE-2018-16057, CVE-2018-16058

Description The scan detected that the host is missing the following update: DSA-4315-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4315

Debian 9.0 all wireshark_2.6.3-1~deb9u1

131227 - Debian Linux 9.0 DSA-4314-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2018-18065

Description The scan detected that the host is missing the following update: DSA-4314-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4314

Debian 9.0 all libsnmp-base_5.7.3+dfsg-1.7+deb9u1 libsnmp30_5.7.3+dfsg-1.7+deb9u1 python-netsnmp_5.7.3+dfsg-1.7+deb9u1 tkmib_5.7.3+dfsg-1.7+deb9u1 snmp_5.7.3+dfsg-1.7+deb9u1 snmpd_5.7.3+dfsg-1.7+deb9u1 snmptrapd_5.7.3+dfsg-1.7+deb9u1 libsnmp-dev_5.7.3+dfsg-1.7+deb9u1 libsnmp30-dbg_5.7.3+dfsg-1.7+deb9u1 libsnmp-perl_5.7.3+dfsg-1.7+deb9u1

182815 - FreeBSD gitea Multiple Vulnerabilities (cb539d4e-cd68-11e8-8819-00e04c1ea73d) Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: gitea -- multiple vulnerabilities (cb539d4e-cd68-11e8-8819-00e04c1ea73d)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/cb539d4e-cd68-11e8-8819-00e04c1ea73d.html

Affected packages: gitea < 1.5.2

182816 - FreeBSD jenkins Multiple Vulnerabilities (3350275d-cd5a-11e8-a7be-3497f683cb16)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: jenkins -- multiple vulnerabilities (3350275d-cd5a-11e8-a7be-3497f683cb16)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/3350275d-cd5a-11e8-a7be-3497f683cb16.html

Affected packages: jenkins < 2.146 jenkins-lts < 2.138.2

182817 - FreeBSD Memory Leak Bug In Toxcore (4c11b51e-cd8d-11e8-b0cb-a0f3c100ae18)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: Memory leak bug in Toxcore (4c11b51e-cd8d-11e8-b0cb-a0f3c100ae18)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/4c11b51e-cd8d-11e8-b0cb-a0f3c100ae18.html

Affected packages: toxcore < 0.2.8,1

182818 - FreeBSD Libgit2 Multiple Vulnerabilities (8c08ab4c-d06c-11e8-b35c-001b217b3468)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-2018-17456

Description The scan detected that the host is missing the following update: Libgit2 -- multiple vulnerabilities (8c08ab4c-d06c-11e8-b35c-001b217b3468)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/8c08ab4c-d06c-11e8-b35c-001b217b3468.html

Affected packages: libgit2 < 0.27.5

186425 - Ubuntu Linux 14.04, 16.04, 18.04 USN-3791-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2018-17456

Description The scan detected that the host is missing the following update: USN-3791-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.ubuntu.com/archives/ubuntu-security-announce/2018-October/004616.html

Ubuntu 16.04 git_2.7.4-0ubuntu1.5

Ubuntu 14.04 git_1.9.1-1ubuntu0.9

Ubuntu 18.04 git_2.17.1-1ubuntu0.3

186426 - Ubuntu Linux 18.04 USN-3781-2 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH Description The scan detected that the host is missing the following update: USN-3781-2

Ubuntu 18.04 libjavascriptcoregtk-4.0-18_2.22.2-0ubuntu0.18.04.2 libwebkit2gtk-4.0-37_2.22.2-0ubuntu0.18.04.2

186427 - Ubuntu Linux 14.04, 16.04, 18.04 USN-3789-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2018-15378

Description The scan detected that the host is missing the following update: USN-3789-1

Ubuntu 16.04 clamav_0.100.2+dfsg-1ubuntu0.16.04.1

Ubuntu 14.04 clamav_0.100.2+dfsg-1ubuntu0.14.04.1

Ubuntu 18.04 clamav_0.100.2+dfsg-1ubuntu0.18.04.1

186429 - Ubuntu Linux 14.04, 16.04, 18.04 USN-3792-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2018-18065

Description The scan detected that the host is missing the following update: USN-3792-1

Ubuntu 16.04 libsnmp30_5.7.3+dfsg-1ubuntu4.2

Ubuntu 14.04 libsnmp30_5.7.2~dfsg-8.1ubuntu3.3

Ubuntu 18.04 libsnmp30_5.7.3+dfsg-1.8ubuntu3.1

186430 - Ubuntu Linux 14.04, 16.04 USN-3787-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2018-11784

Description The scan detected that the host is missing the following update: USN-3787-1

Ubuntu 14.04 libtomcat7-java_7.0.52-1ubuntu0.16 tomcat7_7.0.52-1ubuntu0.16

Ubuntu 16.04 libtomcat8-java_8.0.32-1ubuntu1.8 tomcat8_8.0.32-1ubuntu1.8

186431 - Ubuntu Linux 14.04, 16.04, 18.04 USN-3793-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2018-12376, CVE-2018-12377, CVE-2018-12378, CVE-2018-12383, CVE-2018-12385

Description The scan detected that the host is missing the following update: USN-3793-1

Ubuntu 16.04 thunderbird_60.2.1+build1-0ubuntu0.16.04.4

Ubuntu 14.04 thunderbird_60.2.1+build1-0ubuntu0.14.04.2

Ubuntu 18.04 thunderbird_60.2.1+build1-0ubuntu0.18.04.2

194301 - Fedora Linux 28 FEDORA-2018-f76e6d17f1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2018-16428, CVE-2018-16429, CVE-2018-6055, CVE-2018-6119

Description The scan detected that the host is missing the following update: FEDORA-2018-f76e6d17f1

Fedora Core 28 chromium-69.0.3497.100-1.fc28

194302 - Fedora Linux 28 FEDORA-2018-cc9adc4808 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2018-17175

Description The scan detected that the host is missing the following update: FEDORA-2018-cc9adc4808

Fedora Core 28 python-marshmallow-2.11.1-8.fc28 194305 - Fedora Linux 28 FEDORA-2018-a78cf5fcfc Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2018-a78cf5fcfc

Fedora Core 28 thunderbird-60.2.1-2.fc28

194306 - Fedora Linux 27 FEDORA-2018-11b3ae4e31 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2018-11b3ae4e31

Fedora Core 27 ca-certificates-2018.2.26-1.0.fc27

194307 - Fedora Linux 28 FEDORA-2018-8dfeb06ce9 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2018-8dfeb06ce9

Fedora Core 28 php-horde-nag-4.2.19-1.fc28

194311 - Fedora Linux 27 FEDORA-2018-113c354377 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2018-113c354377

Fedora Core 27 php-horde-nag-4.2.19-1.fc27

194316 - Fedora Linux 27 FEDORA-2018-54d84b0b0c Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2017-3145, CVE-2018-5738, CVE-2018-5741

Description The scan detected that the host is missing the following update: FEDORA-2018-54d84b0b0c

Fedora Core 27 bind-9.11.4-3.P2.fc27

194317 - Fedora Linux 28 FEDORA-2018-6ffb18592f Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2018-11763

Description The scan detected that the host is missing the following update: FEDORA-2018-6ffb18592f

Fedora Core 28 mod_http2-1.11.1-1.fc28

194319 - Fedora Linux 27 FEDORA-2018-8b109a6de0 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2018-17175

Description The scan detected that the host is missing the following update: FEDORA-2018-8b109a6de0

Fedora Core 27 python-marshmallow-2.11.1-8.fc27

135213 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3273)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3273

Description The scan detected that the host is missing the following update: SRU 11.4

135215 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3275)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3275 Description The scan detected that the host is missing the following update: SRU 11.4

135216 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3272)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3272

Description The scan detected that the host is missing the following update: SRU 11.4

135217 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3274)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3274

Description The scan detected that the host is missing the following update: SRU 11.4

135218 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3263)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3263

Description The scan detected that the host is missing the following update: SRU 11.4

135220 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3267)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3267

Description The scan detected that the host is missing the following update: SRU 11.4

135221 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3271)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3271

Description The scan detected that the host is missing the following update: SRU 11.4

135222 - Oracle Solaris 11.4.1.4.0 Update Is Not Installed (CVE-2018-3172)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3172

Description The scan detected that the host is missing the following update: SRU 11.4.1.4.0

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3268

Description The scan detected that the host is missing the following update: SRU 11.4

135224 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3265)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3265

Description The scan detected that the host is missing the following update: SRU 11.4

135225 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3264)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3264

Description The scan detected that the host is missing the following update: SRU 11.4

135226 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3269)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3269 Description The scan detected that the host is missing the following update: SRU 11.4

135227 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3266)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3266

Description The scan detected that the host is missing the following update: SRU 11.4

135228 - Oracle Solaris 11.3.35.6.0 Update Is Not Installed (CVE-2018-2922)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-2922

Description The scan detected that the host is missing the following update: SRU 11.3.35.6.0

135229 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3270)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3270

Description The scan detected that the host is missing the following update: SRU 11.4 Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197

24300 - Microsoft Office 365 ProPlus and Office 2019 Oct 2018 Updates

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Informational CVE: CVE-2018-8432, CVE-2018-8501, CVE-2018-8502, CVE-2018-8504

Description Multiple issues are present in some versions of Microsoft Office 365 ProPlus and Office 2019.

Observation Microsoft Office 365 ProPlus and Office 2019 are the industry standard productivity suite.

Multiple issues are present in some versions of Microsoft Office 365 ProPlus and Office 2019. The flaws are present in multiple components. Such defects could lead the product to software vulnerabilities, malfunction or unexpected behavior in some of its affected components.

ENHANCED CHECKS

The following checks have been updated. Enhancements may include optimizations, changes that reflect new information on a vulnerability and anything else that improves upon an existing FSL check. 139068 - Oracle Solaris 11.3.22.3.0 Update Is Not Installed (Third Party Components)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2012-6706, CVE-2013-6501, CVE-2014-0978, CVE-2014-1236, CVE-2014-9157, CVE-2015-4021, CVE-2015-4022, CVE-2015-4024, CVE-2015-4025, CVE-2015-4026, CVE-2016-10087, CVE-2016-5385, CVE-2016-6288, CVE-2016-6289, CVE- 2016-6290, CVE-2016-6291, CVE-2016-6292, CVE-2016-6293, CVE-2016-6294, CVE-2016-6295, CVE-2016-6296, CVE-2016- 6297, CVE-2016-9935, CVE-2017-3629, CVE-2017-3632, CVE-2017-5193, CVE-2017-5194, CVE-2017-5195, CVE-2017-5196, CVE-2017-5399, CVE-2017-5403, CVE-2017-5406, CVE-2017-5407, CVE-2017-5411, CVE-2017-5412, CVE-2017-5413, CVE- 2017-5414, CVE-2017-5416, CVE-2017-5418, CVE-2017-5419, CVE-2017-5421, CVE-2017-5422, CVE-2017-5425, CVE-2017- 5426, CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-2017-7755, CVE-2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7760, CVE-2017-7761, CVE-2017-7763, CVE- 2017-7764, CVE-2017-7765, CVE-2017-7766, CVE-2017-7767, CVE-2017-7768, CVE-2017-7778, CVE-2017-7811, CVE-2017- 9468, CVE-2017-9469

Update Details CVE is updated

139072 - Oracle Solaris 11.3.25.3.0 Update Is Not Installed (Third Party Components)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2015-7511, CVE-2016-3492, CVE-2016-5584, CVE-2016-5612, CVE-2016-5624, CVE-2016-5629, CVE-2016-6313, CVE-2016-6662, CVE-2016-6663, CVE-2016-6664, CVE-2016-7440, CVE-2016-8283, CVE-2016-8318, CVE-2017-1000383, CVE-2017-12150, CVE-2017-12151, CVE-2017-12163, CVE-2017-13765, CVE-2017-13766, CVE-2017-13767, CVE-2017-14482, CVE-2017-3238, CVE-2017-3244, CVE-2017-3257, CVE-2017-3258, CVE-2017-3265, CVE-2017-3273, CVE-2017-3291, CVE- 2017-3312, CVE-2017-3634, CVE-2017-3635, CVE-2017-3636, CVE-2017-3641, CVE-2017-3647, CVE-2017-3648, CVE-2017- 3649, CVE-2017-3651, CVE-2017-3652, CVE-2017-3653, CVE-2017-3732, CVE-2017-7526, CVE-2017-7674, CVE-2017-7675, CVE-2017-7783, CVE-2017-7793, CVE-2017-7797, CVE-2017-7805, CVE-2017-7806, CVE-2017-7810, CVE-2017-7814, CVE- 2017-7818, CVE-2017-7819, CVE-2017-7823, CVE-2017-7824, CVE-2017-7825

Update Details CVE is updated

24026 - Delta Electronics CNCSoft Multiple Vulnerabilities Prior To 1.01.09

Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2018-10598, CVE-2018-10636

Update Details Risk is updated

24030 - Microsoft Office 2016 Click-To-Run Aug 2018 Updates

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2018-8375, CVE-2018-8378, CVE-2018-8379, CVE-2018-8382

Update Details Risk is updated

33388 - Oracle Solaris 152922-11 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2008-2086, CVE-2009-3910

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33389 - Oracle Solaris 152921-11 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2008-2086, CVE-2009-3910

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33390 - Oracle Solaris 152919-11 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2008-2086, CVE-2009-3910

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33391 - Oracle Solaris 152920-11 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2008-2086, CVE-2009-3910

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

139092 - Oracle Solaris 11.3.29.5.0 Update Is Not Installed (Third Party Components)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2015-7554, CVE-2015-7557, CVE-2015-7558, CVE-2016-2334, CVE-2016-2335, CVE-2016-4348, CVE-2016-6163, CVE-2016-9296, CVE-2017-10965, CVE-2017-10966, CVE-2017-11464, CVE-2017-13726, CVE-2017-13727, CVE-2017-15227, CVE-2017-15228, CVE-2017-15721, CVE-2017-15722, CVE-2017-15723, CVE-2017-17880, CVE-2017-18271, CVE-2017-18272, CVE-2017-18273, CVE-2017-2753, CVE-2017-2885, CVE-2017-3142, CVE-2017-3143, CVE-2017-5753, CVE-2017-5884, CVE- 2017-5885, CVE-2017-7829, CVE-2017-7845, CVE-2017-7846, CVE-2017-7847, CVE-2017-7848, CVE-2017-9468, CVE-2017- 9765, CVE-2018-2753, CVE-2018-2754, CVE-2018-5089, CVE-2018-5091, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117, CVE-2018-5205, CVE- 2018-5206, CVE-2018-5207, CVE-2018-5208, CVE-2018-5334, CVE-2018-5335, CVE-2018-5336

Update Details CVE is updated

160445 - CentOS 6 CESA-2018-2284 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897

Update Details Risk is updated

160446 - CentOS 7 CESA-2018-2285 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897

Update Details Risk is updated

163670 - Oracle Enterprise Linux ELSA-2018-2284 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897

Update Details Risk is updated

163672 - Oracle Enterprise Linux ELSA-2018-2285 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897

Update Details Risk is updated

170996 - Amazon Linux AMI ALAS-2018-1057 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897

Update Details Risk is updated

175426 - Scientific Linux Security ERRATA Important: yum-utils on SL6.x (noarch) (1807-12557)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2018-10897

Update Details Risk is updated

175430 - Scientific Linux Security ERRATA Important: yum-utils on SL7.x (noarch) (1807-11881)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2018-10897

Update Details Risk is updated

191328 - Fedora Linux 24 FEDORA-2016-3113e71193 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2016-8614, CVE-2016-8628

Update Details Risk is updated

191375 - Fedora Linux 25 FEDORA-2016-3ccb098630 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2016-8614, CVE-2016-8628

Update Details Risk is updated

194215 - Fedora Linux 28 FEDORA-2018-4f0089c995 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897

Update Details Risk is updated

194241 - Fedora Linux 27 FEDORA-2018-3aafb854a9 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897

Update Details Risk is updated

194266 - Fedora Linux 29 FEDORA-2018-357e8e07ce Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897

Update Details Risk is updated

196056 - Red Hat Enterprise Linux RHSA-2018-2285 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897

Update Details Risk is updated

196064 - Red Hat Enterprise Linux RHSA-2018-2284 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897

Update Details Risk is updated

24045 - (HPESBHF03843) HPE Moonshot Provisioning Manager Multiple Vulnerabilities Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: High CVE: CVE-2018-7072, CVE-2018-7073

Update Details FASLScript is updated

88966 - Slackware Linux 14.0, 14.1, 14.2 SSA:2018-214-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes Risk Level: High CVE: CVE-2018-10916

Update Details Risk is updated

139044 - Oracle Solaris 11.3.24.4.0 Update Is Not Installed (Third Party Components)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2014-9913, CVE-2015-7696, CVE-2015-7697, CVE-2016-10328, CVE-2016-1238, CVE-2016-9844, CVE-2017- 1000115, CVE-2017-1000116, CVE-2017-1000117, CVE-2017-10971, CVE-2017-10972, CVE-2017-11114, CVE-2017-11406, CVE-2017-11407, CVE-2017-11408, CVE-2017-11410, CVE-2017-11411, CVE-2017-12562, CVE-2017-12836, CVE-2017-3167, CVE-2017-3169, CVE-2017-7659, CVE-2017-7668, CVE-2017-7679, CVE-2017-7702, CVE-2017-7753, CVE-2017-7762, CVE- 2017-7779, CVE-2017-7782, CVE-2017-7784, CVE-2017-7785, CVE-2017-7786, CVE-2017-7787, CVE-2017-7791, CVE-2017- 7792, CVE-2017-7798, CVE-2017-7800, CVE-2017-7801, CVE-2017-7802, CVE-2017-7803, CVE-2017-7804, CVE-2017-7807, CVE-2017-7809, CVE-2017-8105, CVE-2017-8287, CVE-2017-8779, CVE-2017-8804, CVE-2017-9233, CVE-2017-9350, CVE- 2017-9788, CVE-2017-9789, CVE-2017-9800

Update Details CVE is updated

139085 - Oracle Solaris 11.3.1.5.0 Update Is Not Installed (Third Party Components)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2014-0230, CVE-2014-7810, CVE-2014-8111, CVE-2014-9512, CVE-2015-0228, CVE-2015-0253, CVE-2015-3183, CVE-2015-3185, CVE-2015-4651, CVE-2015-4652, CVE-2015-4891, CVE-2015-5143, CVE-2015-5144, CVE-2015-5600, CVE- 2015-5722, CVE-2015-5963, CVE-2015-5964, CVE-2015-6241, CVE-2015-6242, CVE-2015-6243, CVE-2015-6244, CVE-2015- 6245, CVE-2015-6246, CVE-2015-6247, CVE-2015-6248, CVE-2015-6249, CVE-2016-0440

Update Details CVE is updated

139093 - Oracle Solaris 11.3.31.6.0 Update Is Not Installed (Third Party Components)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2015-1315, CVE-2015-9262, CVE-2016-10397, CVE-2016-1245, CVE-2016-1283, CVE-2017-1000083, CVE-2017- 1000158, CVE-2017-11142, CVE-2017-11143, CVE-2017-11144, CVE-2017-11145, CVE-2017-11147, CVE-2017-12932, CVE- 2017-15706, CVE-2017-16227, CVE-2017-16611, CVE-2017-16612, CVE-2017-16642, CVE-2017-17784, CVE-2017-17789, CVE- 2017-3735, CVE-2017-3736, CVE-2017-3737, CVE-2017-3738, CVE-2017-5581, CVE-2017-5753, CVE-2017-7392, CVE-2017- 7393, CVE-2017-7394, CVE-2017-7395, CVE-2017-7396, CVE-2017-7890, CVE-2018-1000007, CVE-2018-1000031, CVE-2018- 1000032, CVE-2018-1000033, CVE-2018-1000034, CVE-2018-1000035, CVE-2018-1304, CVE-2018-1305, CVE-2018-2562, CVE-2018-2573, CVE-2018-2583, CVE-2018-2590, CVE-2018-2591, CVE-2018-2612, CVE-2018-2622, CVE-2018-2640, CVE- 2018-2645, CVE-2018-2647, CVE-2018-2665, CVE-2018-2668, CVE-2018-2696, CVE-2018-2703, CVE-2018-2892, CVE-2018- 5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145, CVE-2018-5146, CVE-2018-5148, CVE-2018-5378, CVE-2018-5379, CVE-2018-5381, CVE-2018-5711, CVE-2018-5712, CVE-2018-5732, CVE- 2018-5733, CVE-2018-7050, CVE-2018-7051, CVE-2018-7052, CVE-2018-7053, CVE-2018-7054, CVE-2018-7170, CVE-2018- 7182, CVE-2018-7183, CVE-2018-7184, CVE-2018-7185, CVE-2018-7584

Update Details CVE is updated

147047 - SuSE Linux 42.3 openSUSE-SU-2018:2487-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2015-9262

Update Details Risk is updated

170993 - Amazon Linux AMI ALAS-2018-1049 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-5390

Update Details Risk is updated

186329 - Ubuntu Linux 18.04 USN-3732-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: High CVE: CVE-2018-5390

Update Details Risk is updated

186340 - Ubuntu Linux 16.04 USN-3732-2 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: High CVE: CVE-2018-5390

Update Details Risk is updated

186381 - Ubuntu Linux 12.04 USN-3763-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: High CVE: CVE-2018-5390

Update Details Risk is updated

196072 - Red Hat Enterprise Linux RHSA-2018-2372 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10931

Update Details Risk is updated

33145 - Oracle Solaris 150401-63 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2004-0230, CVE-2013-0399, CVE-2013-3799, CVE-2013-5862, CVE-2013-5876, CVE-2014-4215, CVE-2014-6575, CVE-2015-0375, CVE-2015-0471, CVE-2015-2580, CVE-2015-4869, CVE-2016-3419, CVE-2016-3441, CVE-2016-3453, CVE- 2016-5544, CVE-2016-5553, CVE-2017-10004, CVE-2017-10036, CVE-2017-10042, CVE-2017-10122, CVE-2018-1171, CVE- 2018-2710, CVE-2018-2717, CVE-2018-2764, CVE-2018-2903

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

131122 - Debian Linux 8.0, 9.0 DSA-4216-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10847

Update Details Risk is updated

146759 - SuSE Linux 15.0 openSUSE-SU-2018:1632-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10847

Update Details Risk is updated

146762 - SuSE Linux 42.3 openSUSE-SU-2018:1627-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10847

Update Details Risk is updated

147113 - SuSE Linux 42.3 openSUSE-SU-2018:2851-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000222

Update Details Risk is updated

147131 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:2837-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000222

Update Details Risk is updated

147133 - SuSE Linux 15.0 openSUSE-SU-2018:2941-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000222

Update Details Risk is updated

147138 - SuSE Linux 15.0 openSUSE-SU-2018:2790-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15120

Update Details Risk is updated

147153 - SuSE Linux 15.0 openSUSE-SU-2018:2849-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000222

Update Details Risk is updated

147184 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:3070-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000223

Update Details Risk is updated

182805 - FreeBSD pango Remote DoS Vulnerability (5a757a31-f98e-4bd4-8a85-f1c0f3409769)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15120

Update Details Risk is updated

193785 - Fedora Linux 27 FEDORA-2018-455803056d Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10847

Update Details Risk is updated

193788 - Fedora Linux 28 FEDORA-2018-18f8c6ce79 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10847

Update Details Risk is updated

194143 - Fedora Linux 28 FEDORA-2018-5bf744beee Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000222

Update Details Risk is updated

194156 - Fedora Linux 27 FEDORA-2018-83116f8692 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15120

Update Details Risk is updated

33332 - Oracle Solaris 152264-02 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7236, CVE-2018-3172

Update Details Name is updated Description is updated Observation is updated Recommendation is updated CVE is updated FASLScript is updated

33335 - Oracle Solaris 152265-02 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7236, CVE-2018-3172

Update Details Name is updated Description is updated Observation is updated Recommendation is updated CVE is updated FASLScript is updated

131187 - Debian Linux 9.0 DSA-4280-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15473

Update Details Risk is updated

145607 - SuSE Linux 42.2 openSUSE-SU-2017:0910-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-9579

Update Details Risk is updated

146889 - SuSE SLES 11 SP4 SUSE-SU-2018:2142-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14348

Update Details Risk is updated

146891 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:2143-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14348 Update Details Risk is updated

146942 - SuSE Linux 42.3 openSUSE-SU-2018:2241-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14348

Update Details Risk is updated

147003 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:2468-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14348

Update Details Risk is updated

171010 - Amazon Linux AMI ALAS-2018-1075 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15473

Update Details Risk is updated

182760 - FreeBSD FreeBSD Resource Exhaustion In TCP Reassembly (3c2eea8c-99bf-11e8-8bee-a4badb2f4699)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-6922

Update Details Risk is updated

182787 - FreeBSD Containous Traefik Exposes The Configuration And Secret (fe818607-b5ff-11e8-856b-485b3931c969)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15598

Update Details Risk is updated

194053 - Fedora Linux 28 FEDORA-2018-f6adf1cb62 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14348

Update Details Risk is updated

194109 - Fedora Linux 28 FEDORA-2018-065a7722ee Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15473

Update Details Risk is updated

194135 - Fedora Linux 28 FEDORA-2018-8fd21e2a72 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15560

Update Details Risk is updated

194152 - Fedora Linux 27 FEDORA-2018-a42eb4ac61 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15560

Update Details Risk is updated

194169 - Fedora Linux 27 FEDORA-2018-f56ded11c4 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15473

Update Details Risk is updated

194187 - Fedora Linux 29 FEDORA-2018-4f06058324 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15560

Update Details Risk is updated 33162 - Oracle Solaris 150400-63 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2004-0230, CVE-2013-5862, CVE-2013-5876, CVE-2014-0447, CVE-2014-6473, CVE-2014-6575, CVE-2015-0375, CVE-2015-0471, CVE-2015-2580, CVE-2015-2589, CVE-2015-4869, CVE-2016-3419, CVE-2016-3441, CVE-2016-3453, CVE- 2016-5553, CVE-2017-10004, CVE-2017-10036, CVE-2017-10042, CVE-2017-10122, CVE-2018-1171, CVE-2018-2710, CVE- 2018-2717, CVE-2018-2764, CVE-2018-2903

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

194022 - Fedora Linux 27 FEDORA-2018-dbb0d41078 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773, CVE-2018-14774

Update Details Risk is updated

194023 - Fedora Linux 28 FEDORA-2018-732f45d43e Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773, CVE-2018-14774

Update Details Risk is updated

194025 - Fedora Linux 28 FEDORA-2018-9b54497b6e Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773, CVE-2018-14774

Update Details Risk is updated

194044 - Fedora Linux 27 FEDORA-2018-7f43cbdb69 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773

Update Details Risk is updated

194054 - Fedora Linux 27 FEDORA-2018-4deae442f2 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773, CVE-2018-14774

Update Details Risk is updated

194060 - Fedora Linux 28 FEDORA-2018-9c38d1dc1d Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773, CVE-2018-14774

Update Details Risk is updated

194063 - Fedora Linux 28 FEDORA-2018-4a606489ae Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773, CVE-2018-14774

Update Details Risk is updated

194274 - Fedora Linux 29 FEDORA-2018-1b7b0ad759 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-11771

Update Details Risk is updated

33319 - Oracle Solaris 151913-13 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33323 - Oracle Solaris 151912-13 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated 33349 - Oracle Solaris 152101-91 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33350 - Oracle Solaris 152100-91 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

147018 - SuSE Linux 15.0 openSUSE-SU-2018:2400-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Low CVE: CVE-2018-10858, CVE-2018-10918, CVE-2018-10919, CVE-2018-1139, CVE-2018-1140

Update Details Risk is updated

182014 - FreeBSD tiff Buffer Overflow (0ab66088-4aa5-11e6-a7bd-14dae9d210b8)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-2016-5314, CVE-2016-5320, CVE-2016-5875

Update Details CVE is updated

146993 - SuSE Linux 15.0 openSUSE-SU-2018:2316-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Low CVE: CVE-2018-6556

Update Details Risk is updated

186333 - Ubuntu Linux 18.04 USN-3730-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2018-6556 Update Details Risk is updated

70131 - f5.fasl3.inc

Category: General Vulnerability Assessment -> NonIntrusive -> Invalid Category Risk Level: Informational CVE: CVE-MAP-NOMATCH

Update Details FASLScript is updated

DELETED CHECKS

33336 - Oracle Solaris 152099-91 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

33339 - Oracle Solaris 152097-91 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

33340 - Oracle Solaris 152098-91 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

33341 - Oracle Solaris 152096-91 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

ADDITIONAL NOTES

33336 - was flagged as obsolete by the vendor. 33339 - was flagged as obsolete by the vendor. 33340 - was flagged as obsolete by the vendor. 33341 - was flagged as obsolete by the vendor.

HOW TO UPDATE

FS1000 APPLIANCE customers should follow the instructions for Enterprise/Professional customers, below. In addition, we strongly urge all appliance customers to authorize and install any Windows Update critical patches. The appliance will auto-download any critical updates but will wait for your explicit authorization before installing. FOUNDSTONE ENTERPRISE and PROFESSIONAL customers may obtain these new scripts using the FSUpdate Utility by selecting "FoundScan Update" on the help menu. Make sure that you have a valid FSUpdate username and password. The new vulnerability scripts will be automatically included in your scans if you have selected that option by right-clicking the selected vulnerability category and checking the "Run New Checks" checkbox.

MANAGED SERVICE CUSTOMERS already have the newest update applied to their environment. The new vulnerability scripts will be automatically included when your scans are next scheduled, provided the Run New Scripts option has been turned on.

MCAFEE TECHNICAL SUPPORT

ServicePortal: https://mysupport.mcafee.com Multi-National Phone Support available here: http://www.mcafee.com/us/about/contact/index.html Non-US customers - Select your country from the list of Worldwide Offices.

This email may contain confidential and privileged material for the sole use of the intended recipient. Any review or distribution by others is strictly prohibited. If you are not the intended recipient please contact the sender and delete all copies.