2018-OCT-18 FSL version 7.6.61
MCAFEE FOUNDSTONE FSL UPDATE
To better protect your environment McAfee has created this FSL check update for the Foundstone Product Suite. The following is a detailed summary of the new and updated checks included with this release.
NEW CHECKS
24301 - Mozilla Firefox ESR Vulnerabilities Prior To ESR 60.2.2
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2018-12386, CVE-2018-12387
Description Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR.
Observation Mozilla Firefox ESR is a popular web browser.
Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary codes in the system.
24302 - Mozilla Firefox ESR Vulnerabilities Prior To ESR 60.2.2
Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: High CVE: CVE-2018-12386, CVE-2018-12387
Description Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR.
Observation Mozilla Firefox ESR is a popular web browser.
Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary codes in the system.
139097 - Oracle Solaris 11.3.35.6.0 Update Is Not Installed (Third Party Components)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2017-3463, CVE-2017-3464, CVE-2017-3465, CVE-2017-3467, CVE-2017-3468, CVE-2017-3529, CVE-2017-3599, CVE-2017-3600, CVE-2017-3633, CVE-2017-3634, CVE-2017-3635, CVE-2017-3637, CVE-2017-3638, CVE-2017-3639, CVE- 2017-3640, CVE-2017-3642, CVE-2017-3643, CVE-2017-3644, CVE-2017-3645, CVE-2017-3647, CVE-2017-3648, CVE-2017- 3649, CVE-2017-3651, CVE-2017-3652, CVE-2017-3653, CVE-2017-3731, CVE-2017-3732, CVE-2017-3737, CVE-2017-3738, CVE-2017-5838, CVE-2017-5839, CVE-2017-5840, CVE-2017-5841, CVE-2017-5842, CVE-2017-5844, CVE-2017-5845, CVE- 2017-7544, CVE-2018-0495, CVE-2018-0739, CVE-2018-10392, CVE-2018-10393, CVE-2018-10963, CVE-2018-12359, CVE- 2018-12360, CVE-2018-12362, CVE-2018-12363, CVE-2018-12364, CVE-2018-12365, CVE-2018-12366, CVE-2018-12368, CVE- 2018-12372, CVE-2018-12373, CVE-2018-12374, CVE-2018-1336, CVE-2018-14339, CVE-2018-14340, CVE-2018-14341, CVE- 2018-14342, CVE-2018-14343, CVE-2018-14344, CVE-2018-14367, CVE-2018-14368, CVE-2018-14369, CVE-2018-2562, CVE- 2018-2565, CVE-2018-2573, CVE-2018-2576, CVE-2018-2583, CVE-2018-2586, CVE-2018-2590, CVE-2018-2591, CVE-2018- 2600, CVE-2018-2612, CVE-2018-2622, CVE-2018-2640, CVE-2018-2645, CVE-2018-2646, CVE-2018-2647, CVE-2018-2665, CVE-2018-2667, CVE-2018-2668, CVE-2018-2696, CVE-2018-2703, CVE-2018-2755, CVE-2018-2758, CVE-2018-2759, CVE- 2018-2761, CVE-2018-2762, CVE-2018-2766, CVE-2018-2767, CVE-2018-2769, CVE-2018-2771, CVE-2018-2773, CVE-2018- 2775, CVE-2018-2776, CVE-2018-2777, CVE-2018-2778, CVE-2018-2779, CVE-2018-2780, CVE-2018-2781, CVE-2018-2782, CVE-2018-2784, CVE-2018-2786, CVE-2018-2787, CVE-2018-2810, CVE-2018-2812, CVE-2018-2813, CVE-2018-2816, CVE- 2018-2817, CVE-2018-2818, CVE-2018-2819, CVE-2018-2839, CVE-2018-2846, CVE-2018-2922, CVE-2018-3054, CVE-2018- 3056, CVE-2018-3058, CVE-2018-3060, CVE-2018-3061, CVE-2018-3062, CVE-2018-3064, CVE-2018-3065, CVE-2018-3066, CVE-2018-3070, CVE-2018-3077, CVE-2018-3081, CVE-2018-5146
Description The scan detected that the host is missing the following update: SRU 11.3.35.6.0
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/rs?type=doc&id=2437228.1 https://support.oracle.com/epmos/faces/DocumentDisplay? _afrLoop=507462766511768&id=1448883.1&_afrWindowMode=0&_adf.ctrl-state=98kg3qcn0_33#aref_section26
139100 - Oracle Solaris 11.4 Update Is Not Installed (Third Party Components)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2016-6352, CVE-2016-7044, CVE-2016-7045, CVE-2016-7162, CVE-2016-7163, CVE-2016-7166, CVE-2016-7445, CVE-2016-7553, CVE-2016-7957, CVE-2016-7958, CVE-2016-7976, CVE-2016-7977, CVE-2016-7978, CVE-2016-7979, CVE- 2016-8864, CVE-2016-9013, CVE-2016-9014, CVE-2016-9179, CVE-2016-9185, CVE-2017-10788, CVE-2017-11109, CVE-2017- 11112, CVE-2017-11113, CVE-2017-12176, CVE-2017-12177, CVE-2017-12178, CVE-2017-12179, CVE-2017-12180, CVE-2017- 12181, CVE-2017-12182, CVE-2017-12183, CVE-2017-12184, CVE-2017-12185, CVE-2017-12186, CVE-2017-12187, CVE-2017- 12982, CVE-2017-14039, CVE-2017-14040, CVE-2017-14041, CVE-2017-14151, CVE-2017-14152, CVE-2017-14164, CVE-2017- 2292, CVE-2017-2592, CVE-2017-3135, CVE-2017-3136, CVE-2017-3137, CVE-2017-3138, CVE-2017-3140, CVE-2017-5334, CVE-2017-5335, CVE-2017-5336, CVE-2017-5337, CVE-2017-5429, CVE-2017-5430, CVE-2017-5432, CVE-2017-5433, CVE- 2017-5434, CVE-2017-5435, CVE-2017-5436, CVE-2017-5438, CVE-2017-5439, CVE-2017-5440, CVE-2017-5441, CVE-2017- 5442, CVE-2017-5443, CVE-2017-5444, CVE-2017-5445, CVE-2017-5446, CVE-2017-5447, CVE-2017-5448, CVE-2017-5449, CVE-2017-5451, CVE-2017-5454, CVE-2017-5455, CVE-2017-5456, CVE-2017-5459, CVE-2017-5460, CVE-2017-5461, CVE- 2017-5462, CVE-2017-5464, CVE-2017-5465, CVE-2017-5466, CVE-2017-5467, CVE-2017-5468, CVE-2017-5469, CVE-2017- 5715, CVE-2017-5754, CVE-2017-7407, CVE-2017-7511, CVE-2017-7555, CVE-2017-8291, CVE-2017-8786, CVE-2017-8932, CVE-2017-9083, CVE-2017-9110, CVE-2017-9111, CVE-2017-9112, CVE-2017-9113, CVE-2017-9114, CVE-2017-9115, CVE- 2017-9116, CVE-2017-9406, CVE-2017-9408, CVE-2018-1166, CVE-2018-3263, CVE-2018-3264, CVE-2018-3265, CVE-2018- 3266, CVE-2018-3267, CVE-2018-3268, CVE-2018-3269, CVE-2018-3270, CVE-2018-3271, CVE-2018-3272, CVE-2018-3273, CVE-2018-3274, CVE-2018-3275, CVE-2018-3665
Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/rs?type=doc&id=2433412.1 https://support.oracle.com/epmos/faces/DocumentDisplay? _afrLoop=507462766511768&id=1448883.1&_afrWindowMode=0&_adf.ctrl-state=98kg3qcn0_33#aref_section26 194308 - Fedora Linux 27 FEDORA-2018-1fc39f2d13 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2012-6706, CVE-2017-11423, CVE-2017-12374, CVE-2017-12375, CVE-2017-12376, CVE-2017-12377, CVE-2017- 12378, CVE-2017-12379, CVE-2017-12380, CVE-2017-6418, CVE-2017-6419, CVE-2017-6420, CVE-2018-0202, CVE-2018- 1000085, CVE-2018-14679, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682, CVE-2018-15378
Description The scan detected that the host is missing the following update: FEDORA-2018-1fc39f2d13
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 27 clamav-0.100.2-2.fc27
194309 - Fedora Linux 27 FEDORA-2018-94315e9a6b Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2017-1000405, CVE-2017-12193, CVE-2017-15115, CVE-2017-16532, CVE-2017-16538, CVE-2017-16644, CVE- 2017-16647, CVE-2017-16649, CVE-2017-16650, CVE-2017-17448, CVE-2017-17449, CVE-2017-17450, CVE-2017-17558, CVE- 2017-17712, CVE-2017-17741, CVE-2017-17852, CVE-2017-17853, CVE-2017-17854, CVE-2017-17855, CVE-2017-17856, CVE- 2017-17857, CVE-2017-17862, CVE-2017-17863, CVE-2017-17864, CVE-2017-18232, CVE-2017-8824, CVE-2018-1000004, CVE-2018-1000026, CVE-2018-10021, CVE-2018-10322, CVE-2018-10323, CVE-2018-1065, CVE-2018-10840, CVE-2018- 10853, CVE-2018-1108, CVE-2018-1120, CVE-2018-11506, CVE-2018-12232, CVE-2018-12633, CVE-2018-12714, CVE-2018- 12896, CVE-2018-13053, CVE-2018-13093, CVE-2018-13094, CVE-2018-13095, CVE-2018-13405, CVE-2018-14633, CVE-2018- 14678, CVE-2018-14734, CVE-2018-15471, CVE-2018-17182, CVE-2018-18021, CVE-2018-3620, CVE-2018-3639, CVE-2018- 3646, CVE-2018-5332, CVE-2018-5333, CVE-2018-5344, CVE-2018-5391, CVE-2018-5750, CVE-2018-5803, CVE-2018-7757, CVE-2018-7995, CVE-2018-8043
Description The scan detected that the host is missing the following update: FEDORA-2018-94315e9a6b
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 27 kernel-4.18.12-100.fc27 kernel-headers-4.18.12-100.fc27
194313 - Fedora Linux 28 FEDORA-2018-9f4381d8c4 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2018-10322, CVE-2018-10323, CVE-2018-10840, CVE-2018-10853, CVE-2018-1108, CVE-2018-1120, CVE-2018- 11506, CVE-2018-12232, CVE-2018-12633, CVE-2018-12714, CVE-2018-12896, CVE-2018-13053, CVE-2018-13093, CVE-2018- 13094, CVE-2018-13095, CVE-2018-13405, CVE-2018-14633, CVE-2018-14678, CVE-2018-14734, CVE-2018-15471, CVE-2018- 17182, CVE-2018-17972, CVE-2018-3620, CVE-2018-3639, CVE-2018-3646, CVE-2018-5391
Description The scan detected that the host is missing the following update: FEDORA-2018-9f4381d8c4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 28 kernel-headers-4.18.13-200.fc28 kernel-4.18.13-200.fc28 kernel-tools-4.18.13-200.fc28
194315 - Fedora Linux 27 FEDORA-2018-2ee3411cb8 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2017-1000405, CVE-2017-12193, CVE-2017-15115, CVE-2017-16532, CVE-2017-16538, CVE-2017-16644, CVE- 2017-16647, CVE-2017-16649, CVE-2017-16650, CVE-2017-17448, CVE-2017-17449, CVE-2017-17450, CVE-2017-17558, CVE- 2017-17712, CVE-2017-17741, CVE-2017-17852, CVE-2017-17853, CVE-2017-17854, CVE-2017-17855, CVE-2017-17856, CVE- 2017-17857, CVE-2017-17862, CVE-2017-17863, CVE-2017-17864, CVE-2017-18232, CVE-2017-8824, CVE-2018-1000004, CVE-2018-1000026, CVE-2018-10021, CVE-2018-10322, CVE-2018-10323, CVE-2018-1065, CVE-2018-10840, CVE-2018- 10853, CVE-2018-1108, CVE-2018-1120, CVE-2018-11506, CVE-2018-12232, CVE-2018-12633, CVE-2018-12714, CVE-2018- 12896, CVE-2018-13053, CVE-2018-13093, CVE-2018-13094, CVE-2018-13095, CVE-2018-13405, CVE-2018-14633, CVE-2018- 14678, CVE-2018-14734, CVE-2018-15471, CVE-2018-17182, CVE-2018-17972, CVE-2018-3620, CVE-2018-3639, CVE-2018- 3646, CVE-2018-5332, CVE-2018-5333, CVE-2018-5344, CVE-2018-5391, CVE-2018-5750, CVE-2018-5803, CVE-2018-7757, CVE-2018-7995, CVE-2018-8043
Description The scan detected that the host is missing the following update: FEDORA-2018-2ee3411cb8
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 27 kernel-headers-4.18.13-100.fc27 kernel-4.18.13-100.fc27 kernel-tools-4.18.13-100.fc27
24298 - Mozilla Firefox Multiple Vulnerabilities Prior To 62.0.3
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2018-12386, CVE-2018-12387
Description Multiple vulnerabilities are present in some versions of Mozilla Firefox.
Observation Mozilla Firefox is a popular web browser.
Multiple vulnerabilities are present in some versions of Mozilla Firefox. The flaws lie in multiple components. Successful exploitation could allow an attacker to cause a memory leak or potentially execute arbitrary remote code.
24299 - Mozilla Firefox Multiple Vulnerabilities Prior To 62.0.3
Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: High CVE: CVE-2018-12386, CVE-2018-12387
Description Multiple vulnerabilities are present in some versions of Mozilla Firefox.
Observation Mozilla Firefox is a popular web browser.
Multiple vulnerabilities are present in some versions of Mozilla Firefox. The flaws lie in multiple components. Successful exploitation could allow an attacker to cause a memory leak or potentially execute arbitrary remote code.
24315 - Oracle Java SE Critical Patch Update October 2018
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2018-13785, CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3150, CVE-2018-3157, CVE-2018-3169, CVE-2018-3180, CVE-2018-3183, CVE-2018-3209, CVE-2018-3211, CVE-2018-3214
Description Multiple vulnerabilities are present in some versions of Oracle Java SE.
Observation Oracle Java SE is used to run Java applications.
Multiple vulnerabilities are present in some versions of Oracle Java SE. The flaws lie in multiple components. Successful exploitation could allow an attacker to disclose private information, cause a denial of service condition or affect integrity on the target system.
24282 - Cisco Adaptive Security Appliance Direct Memory Access Denial of Service Vulnerability (cisco-sa-20181003- asa-dma-dos)
Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: High CVE: CVE-2018-15383 Description A vulnerability is present in some versions of Cisco ASA devices.
Observation Cisco Adaptive Security Appliance is a word-class line of network security devices.
A vulnerability is present in some versions of Cisco ASA devices. The flaw is due to improper handing of resources in low-memory conditions. Successful exploitation could allow an attacker to cause a denial of service condition in the target system.
24284 - Cisco Webex Network Recording Player Remote Code Execution Vulnerabilities (cisco-sa-20181003-webex-rce)
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2018-15408, CVE-2018-15409, CVE-2018-15410, CVE-2018-15411, CVE-2018-15412, CVE-2018-15413, CVE-2018- 15415, CVE-2018-15416, CVE-2018-15417, CVE-2018-15418, CVE-2018-15419, CVE-2018-15420, CVE-2018-15431
Description Remote code execution vulnerabilities are present in some versions of Cisco WebEx Network Recording Players.
Observation Cisco WebEx Network Recording Players are used to play WebEx sessions in ARF or WRF formats.
Remote code execution vulnerabilities are present in some versions of Cisco WebEx Network Recording Players. The flaws lie in Cisco Webex Network Recording Player for ARF and Webex Recording Format. Successful exploitation could allow an attacker to execute remote code on the target system.
24290 - Cisco IOS Software Precision Time Protocol Denial of Service Vulnerability (cisco-sa-20180926-ptp)
Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: High CVE: CVE-2018-0473
Description A denial of service vulnerability is present in some versions of Cisco IOS.
Observation Cisco IOS is an operating system used in Cisco devices.
A denial of service vulnerability is present in some versions of Cisco IOS. The flaw lies in the Precision Time Protocol (PTP) subsystem. Successful exploitation could allow a remote attacker to cause a denial of service condition.
132483 - Oracle VM OVMSA-2018-0266 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle VM Patches and Hotfixes Risk Level: High CVE: CVE-2018-17182
Description The scan detected that the host is missing the following update: OVMSA-2018-0266
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/oraclevm-errata/2018-October/000900.html
OVM3.4 x86_64 kernel-uek-firmware-4.1.12-124.20.1.el6uek kernel-uek-4.1.12-124.20.1.el6uek
139098 - Oracle Solaris 11.4.2.3.0 Update Is Not Installed (Third Party Components)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2017-9224, CVE-2017-9225, CVE-2017-9226, CVE-2017-9227, CVE-2017-9228, CVE-2017-9229, CVE-2018- 1000168, CVE-2018-14851, CVE-2018-14883, CVE-2018-7409, CVE-2018-7485
Description The scan detected that the host is missing the following update: SRU 11.4.2.3.0
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/rs?type=doc&id=2458059.1 https://support.oracle.com/epmos/faces/DocumentDisplay? _afrLoop=507462766511768&id=1448883.1&_afrWindowMode=0&_adf.ctrl-state=98kg3qcn0_33#aref_section26
139099 - Oracle Solaris 11.4.1.4.0 Update Is Not Installed (Third Party Components)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2017-3642, CVE-2017-3643, CVE-2017-3644, CVE-2017-3645, CVE-2017-3647, CVE-2017-3648, CVE-2017-3649, CVE-2017-3650, CVE-2017-3651, CVE-2017-3652, CVE-2017-3653, CVE-2017-3731, CVE-2017-3732, CVE-2017-3737, CVE- 2017-3738, CVE-2017-5715, CVE-2017-5753, CVE-2017-7153, CVE-2017-7160, CVE-2017-7161, CVE-2017-7165, CVE-2018- 0500, CVE-2018-0732, CVE-2018-0737, CVE-2018-0739, CVE-2018-10858, CVE-2018-10918, CVE-2018-10919, CVE-2018- 1139, CVE-2018-1140, CVE-2018-12085, CVE-2018-12359, CVE-2018-12360, CVE-2018-12362, CVE-2018-12363, CVE-2018- 12364, CVE-2018-12365, CVE-2018-12366, CVE-2018-12368, CVE-2018-12372, CVE-2018-12373, CVE-2018-12374, CVE-2018- 1333, CVE-2018-1336, CVE-2018-14339, CVE-2018-14340, CVE-2018-14341, CVE-2018-14342, CVE-2018-14343, CVE-2018- 14344, CVE-2018-14367, CVE-2018-14368, CVE-2018-14369, CVE-2018-14424, CVE-2018-2562, CVE-2018-2565, CVE-2018- 2573, CVE-2018-2576, CVE-2018-2583, CVE-2018-2586, CVE-2018-2590, CVE-2018-2591, CVE-2018-2600, CVE-2018-2612, CVE-2018-2622, CVE-2018-2640, CVE-2018-2645, CVE-2018-2646, CVE-2018-2647, CVE-2018-2665, CVE-2018-2667, CVE- 2018-2668, CVE-2018-2696, CVE-2018-2703, CVE-2018-2755, CVE-2018-2758, CVE-2018-2759, CVE-2018-2761, CVE-2018- 2762, CVE-2018-2766, CVE-2018-2767, CVE-2018-2769, CVE-2018-2771, CVE-2018-2773, CVE-2018-2775, CVE-2018-2776, CVE-2018-2777, CVE-2018-2778, CVE-2018-2779, CVE-2018-2780, CVE-2018-2781, CVE-2018-2782, CVE-2018-2784, CVE- 2018-2786, CVE-2018-2787, CVE-2018-2810, CVE-2018-2812, CVE-2018-2813, CVE-2018-2816, CVE-2018-2817, CVE-2018- 2818, CVE-2018-2819, CVE-2018-2839, CVE-2018-2846, CVE-2018-3054, CVE-2018-3056, CVE-2018-3058, CVE-2018-3060, CVE-2018-3061, CVE-2018-3062, CVE-2018-3064, CVE-2018-3065, CVE-2018-3066, CVE-2018-3070, CVE-2018-3071, CVE- 2018-3077, CVE-2018-3081, CVE-2018-3172, CVE-2018-4088, CVE-2018-4089, CVE-2018-4096, CVE-2018-5188, CVE-2018- 5950, CVE-2018-8011, CVE-2018-8014, CVE-2018-8034, CVE-2018-8037, CVE-2018-8740
Description The scan detected that the host is missing the following update: SRU 11.4.1.4.0 Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/rs?type=doc&id=2449090.1 https://support.oracle.com/epmos/faces/DocumentDisplay? _afrLoop=507462766511768&id=1448883.1&_afrWindowMode=0&_adf.ctrl-state=98kg3qcn0_33#aref_section26
139101 - Oracle Solaris 11.3.36.3.0 Update Is Not Installed (Third Party Components)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2017-12176, CVE-2017-12177, CVE-2017-12178, CVE-2017-12179, CVE-2017-12180, CVE-2017-12181, CVE-2017- 12182, CVE-2017-12183, CVE-2017-12184, CVE-2017-12185, CVE-2017-12186, CVE-2017-12187, CVE-2018-0732, CVE-2018- 0737
Description The scan detected that the host is missing the following update: SRU 11.3.36.3.0
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/rs?type=doc&id=2457998.1 https://support.oracle.com/epmos/faces/DocumentDisplay? _afrLoop=507462766511768&id=1448883.1&_afrWindowMode=0&_adf.ctrl-state=98kg3qcn0_33#aref_section26
147198 - SuSE Linux 15.0, 42.3 openSUSE-SU-2018:3105-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2017-5934
Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3105-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00052.html
SuSE Linux 15.0 noarch moinmoin-wiki-1.9.10-lp150.2.4.1
SuSE Linux 42.3 noarch moinmoin-wiki-1.9.10-4.4.1
147199 - SuSE Linux 42.3 openSUSE-SU-2018:3104-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3104-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00051.html
SuSE Linux 42.3 i586 postgresql10-server-10.5-2.1 postgresql10-10.5-2.1 postgresql10-debugsource-10.5-2.1 postgresql10-pltcl-10.5-2.1 postgresql10-plperl-10.5-2.1 postgresql10-pltcl-debuginfo-10.5-2.1 postgresql10-contrib-10.5-2.1 postgresql10-plpython-debuginfo-10.5-2.1 libecpg6-debuginfo-10.5-2.1 postgresql10-devel-10.5-2.1 postgresql10-libs-debugsource-10.5-2.1 postgresql10-debuginfo-10.5-2.1 postgresql10-plpython-10.5-2.1 postgresql10-server-debuginfo-10.5-2.1 postgresql10-devel-debuginfo-10.5-2.1 libpq5-10.5-2.1 postgresql10-test-10.5-2.1 postgresql10-plperl-debuginfo-10.5-2.1 libpq5-debuginfo-10.5-2.1 postgresql10-contrib-debuginfo-10.5-2.1 libecpg6-10.5-2.1 noarch postgresql10-docs-10.5-2.1 postgresql-init-10-16.3.1 x86_64 postgresql10-server-10.5-2.1 postgresql10-10.5-2.1 postgresql10-debugsource-10.5-2.1 postgresql10-pltcl-10.5-2.1 postgresql10-plperl-10.5-2.1 postgresql10-pltcl-debuginfo-10.5-2.1 postgresql10-contrib-10.5-2.1 postgresql10-plpython-debuginfo-10.5-2.1 libpq5-debuginfo-32bit-10.5-2.1 libecpg6-debuginfo-10.5-2.1 postgresql10-devel-10.5-2.1 postgresql10-libs-debugsource-10.5-2.1 postgresql10-debuginfo-10.5-2.1 postgresql10-plpython-10.5-2.1 postgresql10-server-debuginfo-10.5-2.1 libecpg6-32bit-10.5-2.1 libecpg6-debuginfo-32bit-10.5-2.1 libpq5-32bit-10.5-2.1 postgresql10-devel-debuginfo-10.5-2.1 libpq5-10.5-2.1 postgresql10-test-10.5-2.1 postgresql10-plperl-debuginfo-10.5-2.1 libpq5-debuginfo-10.5-2.1 postgresql10-contrib-debuginfo-10.5-2.1 libecpg6-10.5-2.1
147200 - SuSE SLES 11 SP4 SUSE-SU-2018:3100-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-17182
Description The scan detected that the host is missing the following update: SUSE-SU-2018:3100-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2018-October/004663.html
SuSE SLES 11 SP4 i586 kernel-trace-3.0.101-108.77.1 kernel-ec2-devel-3.0.101-108.77.1 kernel-default-3.0.101-108.77.1 kernel-trace-devel-3.0.101-108.77.1 kernel-xen-3.0.101-108.77.1 kernel-default-devel-3.0.101-108.77.1 kernel-xen-base-3.0.101-108.77.1 kernel-source-3.0.101-108.77.1 kernel-pae-base-3.0.101-108.77.1 kernel-syms-3.0.101-108.77.1 kernel-trace-base-3.0.101-108.77.1 kernel-ec2-3.0.101-108.77.1 kernel-ec2-base-3.0.101-108.77.1 kernel-pae-3.0.101-108.77.1 kernel-default-base-3.0.101-108.77.1 kernel-xen-devel-3.0.101-108.77.1 kernel-pae-devel-3.0.101-108.77.1 x86_64 kernel-trace-3.0.101-108.77.1 kernel-ec2-devel-3.0.101-108.77.1 kernel-default-3.0.101-108.77.1 kernel-trace-devel-3.0.101-108.77.1 kernel-xen-3.0.101-108.77.1 kernel-default-devel-3.0.101-108.77.1 kernel-xen-base-3.0.101-108.77.1 kernel-source-3.0.101-108.77.1 kernel-syms-3.0.101-108.77.1 kernel-trace-base-3.0.101-108.77.1 kernel-ec2-3.0.101-108.77.1 kernel-ec2-base-3.0.101-108.77.1 kernel-default-base-3.0.101-108.77.1 kernel-xen-devel-3.0.101-108.77.1
147203 - SuSE Linux 42.3 openSUSE-SU-2018:3109-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-17456
Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3109-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00056.html
SuSE Linux 42.3 i586 git-svn-debuginfo-2.13.7-16.1 git-core-2.13.7-16.1 git-credential-gnome-keyring-2.13.7-16.1 git-arch-2.13.7-16.1 git-2.13.7-16.1 git-gui-2.13.7-16.1 git-daemon-2.13.7-16.1 git-debugsource-2.13.7-16.1 git-credential-gnome-keyring-debuginfo-2.13.7-16.1 git-core-debuginfo-2.13.7-16.1 git-daemon-debuginfo-2.13.7-16.1 git-web-2.13.7-16.1 git-cvs-2.13.7-16.1 git-email-2.13.7-16.1 gitk-2.13.7-16.1 git-svn-2.13.7-16.1 noarch git-doc-2.13.7-16.1 x86_64 git-svn-debuginfo-2.13.7-16.1 git-core-2.13.7-16.1 git-credential-gnome-keyring-2.13.7-16.1 git-arch-2.13.7-16.1 git-2.13.7-16.1 git-gui-2.13.7-16.1 git-daemon-2.13.7-16.1 git-debugsource-2.13.7-16.1 git-credential-gnome-keyring-debuginfo-2.13.7-16.1 git-core-debuginfo-2.13.7-16.1 git-daemon-debuginfo-2.13.7-16.1 git-web-2.13.7-16.1 git-cvs-2.13.7-16.1 git-email-2.13.7-16.1 gitk-2.13.7-16.1 git-svn-2.13.7-16.1 147204 - SuSE SLES 11 SP4 SUSE-SU-2018:3146-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-14621, CVE-2018-14622
Description The scan detected that the host is missing the following update: SUSE-SU-2018:3146-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2018-October/004670.html
SuSE SLES 11 SP4 i586 libtirpc1-0.2.1-1.13.6.1 x86_64 libtirpc1-0.2.1-1.13.6.1
147205 - SuSE Linux 42.3 openSUSE-SU-2018:3108-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-16741, CVE-2018-16742, CVE-2018-16743, CVE-2018-16744, CVE-2018-16745
Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3108-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00055.html
SuSE Linux 42.3 x86_64 sendfax-1.1.36-65.3.1 sendfax-debuginfo-1.1.36-65.3.1 mgetty-debugsource-1.1.36-65.3.1 g3utils-1.1.36-65.3.1 mgetty-debuginfo-1.1.36-65.3.1 g3utils-debuginfo-1.1.36-65.3.1 mgetty-1.1.36-65.3.1 i586 sendfax-1.1.36-65.3.1 sendfax-debuginfo-1.1.36-65.3.1 mgetty-debugsource-1.1.36-65.3.1 g3utils-1.1.36-65.3.1 mgetty-debuginfo-1.1.36-65.3.1 g3utils-debuginfo-1.1.36-65.3.1 mgetty-1.1.36-65.3.1
147206 - SuSE Linux 15.0 openSUSE-SU-2018:3094-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3094-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00049.html
SuSE Linux 15.0 i586 perl-PerlMagick-7.0.7.34-lp150.2.18.1 libMagickWand-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.18.1 libMagickWand-7_Q16HDRI6-7.0.7.34-lp150.2.18.1 ImageMagick-extra-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-devel-7.0.7.34-lp150.2.18.1 perl-PerlMagick-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-7.0.7.34-lp150.2.18.1 libMagick++-7_Q16HDRI4-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-debugsource-7.0.7.34-lp150.2.18.1 libMagickCore-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-extra-7.0.7.34-lp150.2.18.1 ImageMagick-debuginfo-7.0.7.34-lp150.2.18.1 libMagickCore-7_Q16HDRI6-7.0.7.34-lp150.2.18.1 libMagick++-7_Q16HDRI4-7.0.7.34-lp150.2.18.1 libMagick++-devel-7.0.7.34-lp150.2.18.1 noarch ImageMagick-doc-7.0.7.34-lp150.2.18.1 x86_64 perl-PerlMagick-7.0.7.34-lp150.2.18.1 libMagickWand-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.18.1 libMagickWand-7_Q16HDRI6-7.0.7.34-lp150.2.18.1 ImageMagick-extra-debuginfo-7.0.7.34-lp150.2.18.1 libMagickCore-7_Q16HDRI6-32bit-debuginfo-7.0.7.34-lp150.2.18.1 libMagick++-devel-32bit-7.0.7.34-lp150.2.18.1 libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp150.2.18.1 ImageMagick-devel-7.0.7.34-lp150.2.18.1 perl-PerlMagick-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-7.0.7.34-lp150.2.18.1 libMagick++-7_Q16HDRI4-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-debugsource-7.0.7.34-lp150.2.18.1 libMagickCore-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.18.1 ImageMagick-devel-32bit-7.0.7.34-lp150.2.18.1 ImageMagick-extra-7.0.7.34-lp150.2.18.1 ImageMagick-debuginfo-7.0.7.34-lp150.2.18.1 libMagickCore-7_Q16HDRI6-7.0.7.34-lp150.2.18.1 libMagick++-7_Q16HDRI4-7.0.7.34-lp150.2.18.1 libMagick++-devel-7.0.7.34-lp150.2.18.1 libMagickWand-7_Q16HDRI6-32bit-debuginfo-7.0.7.34-lp150.2.18.1 libMagick++-7_Q16HDRI4-32bit-debuginfo-7.0.7.34-lp150.2.18.1 libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp150.2.18.1 libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp150.2.18.1
147210 - SuSE SLED 15 SUSE-SU-2018:3159-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-14633, CVE-2018-17182
Description The scan detected that the host is missing the following update: SUSE-SU-2018:3159-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2018-October/004674.html
SuSE SLED 15 x86_64 kernel-default-extra-debuginfo-4.12.14-25.22.1 kernel-default-extra-4.12.14-25.22.1 kernel-default-debuginfo-4.12.14-25.22.1 kernel-default-debugsource-4.12.14-25.22.1
147212 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:3161-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-10919
Description The scan detected that the host is missing the following update: SUSE-SU-2018:3161-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2018-October/004675.html
SuSE SLED 12 SP3 x86_64 libsamba-errors0-4.6.16+git.124.aee309c5c18-3.32.1 libwbclient0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 samba-libs-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsmbclient0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbldap0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-winbind-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-4.6.16+git.124.aee309c5c18-3.32.1 libndr-nbt0-4.6.16+git.124.aee309c5c18-3.32.1 samba-client-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-krb5pac0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-passdb0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbconf0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbconf0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbclient0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libndr-nbt0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbconf0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libtevent-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libtevent-util0-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-passdb0-4.6.16+git.124.aee309c5c18-3.32.1 samba-debugsource-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-util0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbldap0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-client-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-winbind-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-winbind-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-4.6.16+git.124.aee309c5c18-3.32.1 samba-client-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc0-4.6.16+git.124.aee309c5c18-3.32.1 libsamdb0-4.6.16+git.124.aee309c5c18-3.32.1 samba-libs-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbclient0-4.6.16+git.124.aee309c5c18-3.32.1 libtevent-util0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-passdb0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-util0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbconf0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-errors0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-errors0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-winbind-4.6.16+git.124.aee309c5c18-3.32.1 libndr-standard0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-standard0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libwbclient0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbldap0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libndr-nbt0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-4.6.16+git.124.aee309c5c18-3.32.1 libsamdb0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-libs-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-krb5pac0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libndr0-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-standard0-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-passdb0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-nbt0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbclient0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamdb0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamdb0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbldap0-4.6.16+git.124.aee309c5c18-3.32.1 libndr-standard0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libndr0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-libs-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-util0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-krb5pac0-4.6.16+git.124.aee309c5c18-3.32.1 libndr-krb5pac0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libtevent-util0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libwbclient0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libwbclient0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-errors0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 samba-client-4.6.16+git.124.aee309c5c18-3.32.1 noarch samba-doc-4.6.16+git.124.aee309c5c18-3.32.1
SuSE SLES 12 SP3 noarch samba-doc-4.6.16+git.124.aee309c5c18-3.32.1 x86_64 samba-client-4.6.16+git.124.aee309c5c18-3.32.1 libwbclient0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 samba-libs-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsmbclient0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbldap0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 samba-winbind-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-4.6.16+git.124.aee309c5c18-3.32.1 libndr-nbt0-4.6.16+git.124.aee309c5c18-3.32.1 samba-client-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libdcerpc-binding0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr-krb5pac0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-errors0-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-passdb0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-credentials0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbconf0-4.6.16+git.124.aee309c5c18-3.32.1 libsmbclient0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-hostconfig0-debuginfo-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libndr0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libndr-nbt0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsmbconf0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libtevent-util0-32bit-4.6.16+git.124.aee309c5c18-3.32.1 libnetapi0-debuginfo-4.6.16+git.124.aee309c5c18-3.32.1 libtevent-util0-4.6.16+git.124.aee309c5c18-3.32.1 libsamba-passdb0-4.6.16+git.124.aee309c5c18-3.32.1
147213 - SuSE SLES 11 SP4 SUSE-SU-2018:3156-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-14647
Description The scan detected that the host is missing the following update: SUSE-SU-2018:3156-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2018-October/004672.html
SuSE SLES 11 SP4 noarch python-doc-2.6-8.40.21.1 python-doc-pdf-2.6-8.40.21.1 i586 python-curses-2.6.9-40.21.2 python-xml-2.6.9-40.21.1 python-2.6.9-40.21.2 libpython2_6-1_0-2.6.9-40.21.1 python-idle-2.6.9-40.21.2 python-demo-2.6.9-40.21.2 python-tk-2.6.9-40.21.2 python-base-2.6.9-40.21.1 python-gdbm-2.6.9-40.21.2 x86_64 python-curses-2.6.9-40.21.2 python-xml-2.6.9-40.21.1 python-2.6.9-40.21.2 libpython2_6-1_0-32bit-2.6.9-40.21.1 libpython2_6-1_0-2.6.9-40.21.1 python-base-32bit-2.6.9-40.21.1 python-idle-2.6.9-40.21.2 python-demo-2.6.9-40.21.2 python-tk-2.6.9-40.21.2 python-base-2.6.9-40.21.1 python-gdbm-2.6.9-40.21.2 python-32bit-2.6.9-40.21.2
147214 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:3102-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2018-14598, CVE-2018-14599, CVE-2018-14600
Description The scan detected that the host is missing the following update: SUSE-SU-2018:3102-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2018-October/004665.html
SuSE SLED 12 SP3 x86_64 libxcb-xf86dri0-debuginfo-1.10-4.3.1 libxcb-shm0-32bit-1.10-4.3.1 libxcb1-1.10-4.3.1 libxcb-dri2-0-32bit-1.10-4.3.1 libxcb-present0-debuginfo-1.10-4.3.1 libX11-6-32bit-1.6.2-12.5.1 libxcb-glx0-1.10-4.3.1 libxcb-randr0-debuginfo-1.10-4.3.1 libxcb-glx0-debuginfo-1.10-4.3.1 libxcb-shm0-1.10-4.3.1 libX11-6-debuginfo-1.6.2-12.5.1 libxcb-glx0-debuginfo-32bit-1.10-4.3.1 libxcb-dri2-0-1.10-4.3.1 libxcb-dri3-0-debuginfo-1.10-4.3.1 libxcb1-32bit-1.10-4.3.1 libxcb-render0-debuginfo-1.10-4.3.1 libxcb-xkb1-debuginfo-1.10-4.3.1 libxcb-xv0-debuginfo-1.10-4.3.1 libxcb-dri2-0-debuginfo-32bit-1.10-4.3.1 libxcb-render0-1.10-4.3.1 libX11-xcb1-32bit-1.6.2-12.5.1 libxcb-dri3-0-1.10-4.3.1 libxcb-present0-debuginfo-32bit-1.10-4.3.1 libxcb-xkb1-1.10-4.3.1 libxcb-xfixes0-1.10-4.3.1 libxcb-present0-1.10-4.3.1 libxcb-xinerama0-debuginfo-1.10-4.3.1 libX11-debugsource-1.6.2-12.5.1 libxcb-randr0-1.10-4.3.1 libxcb-shape0-debuginfo-1.10-4.3.1 libxcb-xf86dri0-1.10-4.3.1 libX11-6-1.6.2-12.5.1 libxcb-dri3-0-debuginfo-32bit-1.10-4.3.1 libxcb1-debuginfo-1.10-4.3.1 libxcb-sync1-32bit-1.10-4.3.1 libX11-6-debuginfo-32bit-1.6.2-12.5.1 libxcb-render0-32bit-1.10-4.3.1 libxcb-sync1-debuginfo-1.10-4.3.1 libxcb-xv0-1.10-4.3.1 libxcb-shm0-debuginfo-32bit-1.10-4.3.1 libxcb-shape0-1.10-4.3.1 libxcb-shm0-debuginfo-1.10-4.3.1 libX11-xcb1-1.6.2-12.5.1 libX11-xcb1-debuginfo-1.6.2-12.5.1 libxcb-sync1-debuginfo-32bit-1.10-4.3.1 libxcb-dri3-0-32bit-1.10-4.3.1 libxcb-xfixes0-debuginfo-32bit-1.10-4.3.1 libxcb-xkb1-32bit-1.10-4.3.1 libxcb-xinerama0-1.10-4.3.1 libxcb-xfixes0-debuginfo-1.10-4.3.1 libxcb-debugsource-1.10-4.3.1 libX11-xcb1-debuginfo-32bit-1.6.2-12.5.1 libxcb-xfixes0-32bit-1.10-4.3.1 libxcb-render0-debuginfo-32bit-1.10-4.3.1 libxcb-present0-32bit-1.10-4.3.1 libxcb-sync1-1.10-4.3.1 libxcb-xkb1-debuginfo-32bit-1.10-4.3.1 libxcb1-debuginfo-32bit-1.10-4.3.1 libxcb-glx0-32bit-1.10-4.3.1 libxcb-dri2-0-debuginfo-1.10-4.3.1 noarch libX11-data-1.6.2-12.5.1
SuSE SLES 12 SP3 noarch libX11-data-1.6.2-12.5.1 x86_64 libxcb-xf86dri0-debuginfo-1.10-4.3.1 libxcb-dri2-0-debuginfo-1.10-4.3.1 libxcb-shm0-32bit-1.10-4.3.1 libxcb-sync1-1.10-4.3.1 libxcb-present0-debuginfo-1.10-4.3.1 libxcb-render0-debuginfo-1.10-4.3.1 libxcb-glx0-1.10-4.3.1 libxcb-randr0-debuginfo-1.10-4.3.1 libxcb-glx0-debuginfo-1.10-4.3.1 libxcb-shm0-1.10-4.3.1 libxcb-glx0-debuginfo-32bit-1.10-4.3.1 libX11-6-debuginfo-1.6.2-12.5.1 libxcb-xinerama0-debuginfo-1.10-4.3.1 libxcb-present0-32bit-1.10-4.3.1 libxcb-dri2-0-1.10-4.3.1 libxcb-dri3-0-debuginfo-1.10-4.3.1 libxcb1-32bit-1.10-4.3.1 libxcb1-debuginfo-1.10-4.3.1 libxcb-xv0-debuginfo-1.10-4.3.1 libxcb-dri2-0-debuginfo-32bit-1.10-4.3.1 libxcb-render0-1.10-4.3.1 libxcb-xfixes0-debuginfo-32bit-1.10-4.3.1 libX11-xcb1-32bit-1.6.2-12.5.1 libxcb-dri3-0-1.10-4.3.1 libxcb-dri3-0-32bit-1.10-4.3.1 libxcb-xkb1-1.10-4.3.1 libxcb-xfixes0-1.10-4.3.1 libxcb-present0-1.10-4.3.1 libxcb-xkb1-32bit-1.10-4.3.1 libX11-debugsource-1.6.2-12.5.1 libxcb-shape0-debuginfo-1.10-4.3.1 libxcb-dri2-0-32bit-1.10-4.3.1 libX11-6-1.6.2-12.5.1 libxcb-dri3-0-debuginfo-32bit-1.10-4.3.1 libxcb-xfixes0-debuginfo-1.10-4.3.1 libX11-6-debuginfo-32bit-1.6.2-12.5.1 libxcb-render0-32bit-1.10-4.3.1 libxcb-sync1-debuginfo-1.10-4.3.1 libxcb-shm0-debuginfo-32bit-1.10-4.3.1 libxcb-shape0-1.10-4.3.1 libxcb-shm0-debuginfo-1.10-4.3.1 libxcb-present0-debuginfo-32bit-1.10-4.3.1 libX11-xcb1-1.6.2-12.5.1 libxcb-xkb1-debuginfo-32bit-1.10-4.3.1 libX11-xcb1-debuginfo-1.6.2-12.5.1 libxcb-sync1-debuginfo-32bit-1.10-4.3.1 libxcb-xv0-1.10-4.3.1 libxcb-xkb1-debuginfo-1.10-4.3.1 libxcb-sync1-32bit-1.10-4.3.1 libxcb-xinerama0-1.10-4.3.1 libxcb-debugsource-1.10-4.3.1 libX11-xcb1-debuginfo-32bit-1.6.2-12.5.1 libxcb-xfixes0-32bit-1.10-4.3.1 libX11-6-32bit-1.6.2-12.5.1 libxcb-render0-debuginfo-32bit-1.10-4.3.1 libxcb-randr0-1.10-4.3.1 libxcb1-1.10-4.3.1 libxcb1-debuginfo-32bit-1.10-4.3.1 libxcb-glx0-32bit-1.10-4.3.1 libxcb-xf86dri0-1.10-4.3.1
160473 - CentOS 7 CESA-2018-2916 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: High CVE: CVE-2017-15705, CVE-2018-11781
Description The scan detected that the host is missing the following update: CESA-2018-2916
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2018-October/023065.html
CentOS 7 x86_64 spamassassin-3.4.0-4.el7_5
163712 - Oracle Enterprise Linux ELSA-2018-2916 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2017-15705, CVE-2018-11781
Description The scan detected that the host is missing the following update: ELSA-2018-2916
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008134.html OEL7 x86_64 spamassassin-3.4.0-4.el7_5
163714 - Oracle Enterprise Linux ELSA-2018-4244 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-17182
Description The scan detected that the host is missing the following update: ELSA-2018-4244
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008128.html http://oss.oracle.com/pipermail/el-errata/2018-October/008129.html
OEL7 x86_64 kernel-uek-firmware-4.1.12-124.20.1.el7uek kernel-uek-debug-devel-4.1.12-124.20.1.el7uek kernel-uek-doc-4.1.12-124.20.1.el7uek kernel-uek-devel-4.1.12-124.20.1.el7uek kernel-uek-4.1.12-124.20.1.el7uek kernel-uek-debug-4.1.12-124.20.1.el7uek
OEL6 x86_64 kernel-uek-devel-4.1.12-124.20.1.el6uek kernel-uek-4.1.12-124.20.1.el6uek kernel-uek-debug-4.1.12-124.20.1.el6uek kernel-uek-doc-4.1.12-124.20.1.el6uek kernel-uek-debug-devel-4.1.12-124.20.1.el6uek kernel-uek-firmware-4.1.12-124.20.1.el6uek
163715 - Oracle Enterprise Linux ELSA-2018-4242 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2017-13695, CVE-2018-12896, CVE-2018-14678, CVE-2018-16658, CVE-2018-3620, CVE-2018-3646, CVE-2018- 7492
Description The scan detected that the host is missing the following update: ELSA-2018-4242
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008126.html OEL7 x86_64 kernel-uek-devel-4.14.35-1818.3.3.el7uek kernel-uek-debug-devel-4.14.35-1818.3.3.el7uek kernel-uek-4.14.35-1818.3.3.el7uek kernel-uek-debug-4.14.35-1818.3.3.el7uek kernel-uek-tools-4.14.35-1818.3.3.el7uek kernel-uek-doc-4.14.35-1818.3.3.el7uek
175455 - Scientific Linux Security ERRATA Important: spamassassin on SL7.x x86_64 (1810-7635)
Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2017-15705, CVE-2018-11781
Description The scan detected that the host is missing the following update: Security ERRATA Important: spamassassin on SL7.x x86_64 (1810-7635)
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1810&L=scientific-linux-errata&F=&S=&P=7635
SL7 x86_64 spamassassin-3.4.0-4.el7_5 spamassassin-debuginfo-3.4.0-4.el7_5
175458 - Scientific Linux Security ERRATA Important: kernel on SL6.x i386/x86_64 (1810-6630)
Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2018-14634, CVE-2018-5391
Description The scan detected that the host is missing the following update: Security ERRATA Important: kernel on SL6.x i386/x86_64 (1810-6630)
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1810&L=scientific-linux-errata&F=&S=&P=6630
SL6 i386 python-perf-debuginfo-2.6.32-754.6.3.el6 python-perf-2.6.32-754.6.3.el6 kernel-2.6.32-754.6.3.el6 kernel-debuginfo-common-i686-2.6.32-754.6.3.el6 kernel-debuginfo-2.6.32-754.6.3.el6 kernel-debug-2.6.32-754.6.3.el6 kernel-debug-debuginfo-2.6.32-754.6.3.el6 perf-2.6.32-754.6.3.el6 kernel-headers-2.6.32-754.6.3.el6 kernel-debug-devel-2.6.32-754.6.3.el6 kernel-devel-2.6.32-754.6.3.el6 perf-debuginfo-2.6.32-754.6.3.el6 noarch kernel-abi-whitelists-2.6.32-754.6.3.el6 kernel-firmware-2.6.32-754.6.3.el6 kernel-doc-2.6.32-754.6.3.el6 x86_64 kernel-debuginfo-2.6.32-754.6.3.el6 kernel-debug-2.6.32-754.6.3.el6 kernel-debuginfo-common-x86_64-2.6.32-754.6.3.el6 kernel-debug-devel-2.6.32-754.6.3.el6 python-perf-2.6.32-754.6.3.el6 perf-2.6.32-754.6.3.el6 kernel-debug-debuginfo-2.6.32-754.6.3.el6 python-perf-debuginfo-2.6.32-754.6.3.el6 kernel-2.6.32-754.6.3.el6 kernel-debuginfo-common-i686-2.6.32-754.6.3.el6 kernel-devel-2.6.32-754.6.3.el6 kernel-headers-2.6.32-754.6.3.el6 perf-debuginfo-2.6.32-754.6.3.el6
194312 - Fedora Linux 27 FEDORA-2018-aff51f5e62 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2018-1000805, CVE-2018-7750
Description The scan detected that the host is missing the following update: FEDORA-2018-aff51f5e62
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 27 python-paramiko-2.3.3-1.fc27
196117 - Red Hat Enterprise Linux RHSA-2018-2925 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10675, CVE-2018-14634, CVE-2018-5391
Description The scan detected that the host is missing the following update: RHSA-2018-2925
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.redhat.com/archives/rhsa-announce/2018-October/msg00024.html
RHEL6_7S i386 python-perf-debuginfo-2.6.32-573.65.2.el6 kernel-2.6.32-573.65.2.el6 perf-debuginfo-2.6.32-573.65.2.el6 kernel-debuginfo-2.6.32-573.65.2.el6 kernel-devel-2.6.32-573.65.2.el6 python-perf-2.6.32-573.65.2.el6 kernel-headers-2.6.32-573.65.2.el6 kernel-debuginfo-common-i686-2.6.32-573.65.2.el6 kernel-debug-debuginfo-2.6.32-573.65.2.el6 kernel-debug-devel-2.6.32-573.65.2.el6 perf-2.6.32-573.65.2.el6 kernel-debug-2.6.32-573.65.2.el6 noarch kernel-doc-2.6.32-573.65.2.el6 kernel-abi-whitelists-2.6.32-573.65.2.el6 kernel-firmware-2.6.32-573.65.2.el6 x86_64 kernel-debug-debuginfo-2.6.32-573.65.2.el6 kernel-2.6.32-573.65.2.el6 perf-2.6.32-573.65.2.el6 perf-debuginfo-2.6.32-573.65.2.el6 kernel-headers-2.6.32-573.65.2.el6 python-perf-debuginfo-2.6.32-573.65.2.el6 kernel-devel-2.6.32-573.65.2.el6 kernel-debug-devel-2.6.32-573.65.2.el6 kernel-debuginfo-common-i686-2.6.32-573.65.2.el6 kernel-debuginfo-2.6.32-573.65.2.el6 kernel-debuginfo-common-x86_64-2.6.32-573.65.2.el6 kernel-debug-2.6.32-573.65.2.el6 python-perf-2.6.32-573.65.2.el6
196118 - Red Hat Enterprise Linux RHSA-2018-2933 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10675, CVE-2018-14634, CVE-2018-5390, CVE-2018-5391
Description The scan detected that the host is missing the following update: RHSA-2018-2933
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.redhat.com/archives/rhsa-announce/2018-October/msg00023.html
RHEL6_5S x86_64 perf-debuginfo-2.6.32-431.93.2.el6 kernel-debug-2.6.32-431.93.2.el6 kernel-debuginfo-common-x86_64-2.6.32-431.93.2.el6 perf-2.6.32-431.93.2.el6 kernel-debug-debuginfo-2.6.32-431.93.2.el6 python-perf-2.6.32-431.93.2.el6 kernel-headers-2.6.32-431.93.2.el6 kernel-2.6.32-431.93.2.el6 kernel-devel-2.6.32-431.93.2.el6 kernel-debuginfo-2.6.32-431.93.2.el6 python-perf-debuginfo-2.6.32-431.93.2.el6 kernel-debug-devel-2.6.32-431.93.2.el6 noarch kernel-doc-2.6.32-431.93.2.el6 kernel-firmware-2.6.32-431.93.2.el6 kernel-abi-whitelists-2.6.32-431.93.2.el6
196119 - Red Hat Enterprise Linux RHSA-2018-2916 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2017-15705, CVE-2018-11781
Description The scan detected that the host is missing the following update: RHSA-2018-2916
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.redhat.com/archives/rhsa-announce/2018-October/msg00017.html
RHEL7D x86_64 spamassassin-3.4.0-4.el7_5 spamassassin-debuginfo-3.4.0-4.el7_5
RHEL7S x86_64 spamassassin-3.4.0-4.el7_5 spamassassin-debuginfo-3.4.0-4.el7_5
RHEL7WS x86_64 spamassassin-3.4.0-4.el7_5 spamassassin-debuginfo-3.4.0-4.el7_5
196120 - Red Hat Enterprise Linux RHSA-2018-2924 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10675, CVE-2018-14634, CVE-2018-5390, CVE-2018-5391
Description The scan detected that the host is missing the following update: RHSA-2018-2924
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.redhat.com/archives/rhsa-announce/2018-October/msg00020.html
RHEL6_6S x86_64 kernel-headers-2.6.32-504.76.2.el6 python-perf-debuginfo-2.6.32-504.76.2.el6 kernel-debuginfo-common-x86_64-2.6.32-504.76.2.el6 kernel-debug-2.6.32-504.76.2.el6 kernel-debuginfo-2.6.32-504.76.2.el6 kernel-debug-devel-2.6.32-504.76.2.el6 kernel-devel-2.6.32-504.76.2.el6 kernel-2.6.32-504.76.2.el6 python-perf-2.6.32-504.76.2.el6 perf-2.6.32-504.76.2.el6 kernel-debug-debuginfo-2.6.32-504.76.2.el6 perf-debuginfo-2.6.32-504.76.2.el6 noarch kernel-abi-whitelists-2.6.32-504.76.2.el6 kernel-doc-2.6.32-504.76.2.el6 kernel-firmware-2.6.32-504.76.2.el6
24274 - Mozilla Firefox Vulnerability Prior To 62.0.2
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2018-12385
Description A vulnerability is present in some versions of Mozilla Firefox.
Observation Mozilla Firefox is a popular web browser.
A vulnerability is present in some versions of Mozilla Firefox. The flaw lies in the TransportSecurityInfo used for SSL. Successful exploitation could allow an attacker to write data into the local cache or from locally installed malware.
24275 - Mozilla Firefox Vulnerability Prior To 62.0.2
Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2018-12385
Description A vulnerability is present in some versions of Mozilla Firefox.
Observation Mozilla Firefox is a popular web browser.
A vulnerability is present in some versions of Mozilla Firefox. The flaw lies in the TransportSecurityInfo used for SSL. Successful exploitation could allow an attacker to write data into the local cache or from locally installed malware.
24291 - Cisco IOS Software Cisco Discovery Protocol Denial of Service Vulnerability (cisco-sa-20180926-cdp-dos)
Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15373
Description A vulnerability is present in some versions of Cisco IOS.
Observation Cisco IOS is an operating system used in Cisco devices.
A vulnerability is present in some versions of Cisco IOS. The flaw is due to improper handling by the CDP subsystem when processing high rates of Cisco Discovery Protocol packets. Successful exploitation could allow an attacker to cause a denial of service condition in the target system.
24294 - Cisco Adaptive Security Appliance IPsec VPN Denial of Service Vulnerability (cisco-sa-20181003-asa-ipsec-dos)
Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2018-15397
Description A vulnerability is present in some versions of Cisco ASA devices.
Observation Cisco Adaptive Security Appliance is a word-class line of network security devices.
A vulnerability is present in some versions of Cisco ASA devices. The flaw lies in the Traffic Flow Confidentiality (TFC) over IPsec functionality. Successful exploitation could allow an attacker to cause a denial of service condition in the target system.
24295 - Cisco IOS Software Cluster Management Protocol Denial of Service Vulnerability (cisco-sa-20180926-cmp)
Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-0475
Description A vulnerability is present in some versions of Cisco IOS.
Observation Cisco IOS is an operating system used in Cisco devices.
A vulnerability is present in some versions of Cisco IOS. The flaw is due to improper input validation in Cluster Management Protocol (CMP). Successful exploitation could allow an attacker to cause a denial of service condition on the target system.
24304 - Apache HTTP Server Vulnerability Prior To 2.4.35 Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2018-11763
Description A vulnerability is present in some versions of Apache HTTP Server.
Observation Apache HTTP Server is an open source web server.
A vulnerability is present in some versions of Apache HTTP Server. The flaw lies in HTTP/2 connection. Successful exploitation could allow an attacker to cause a denial of service condition.
24310 - IBM WebSphere Portal Cross-Site Scripting Vulnerability (ibm10715923)
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2018-1660
Description A cross-site-scripting vulnerability is present in some versions of IBM WebSphere Portal.
Observation IBM WebSphere Portal is a set of software tools that are used to build and manage web portals.
A cross-site-scripting vulnerability is present in some versions of IBM WebSphere Portal. The flaw lies in Web UI. Successful exploitation could allow an attacker to execute arbitrary code and or disclose sensitive information on the target.
131222 - Debian Linux 9.0 DSA-4317-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14593, CVE-2018-16586, CVE-2018-16587
Description The scan detected that the host is missing the following update: DSA-4317-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4317
Debian 9.0 all otrs2_5.0.16-1+deb9u6
131223 - Debian Linux 9.0 DSA-4319-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10873
Description The scan detected that the host is missing the following update: DSA-4319-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4319
Debian 9.0 all libspice-server1_0.12.8-2.1+deb9u2 libspice-server-dev_0.12.8-2.1+deb9u2
147197 - SuSE Linux 42.3 openSUSE-SU-2018:3103-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-2938, CVE-2018-2940, CVE-2018-2952, CVE-2018-2973, CVE-2018-3639
Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3103-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00050.html
SuSE Linux 42.3 i586 java-1_8_0-openjdk-demo-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-src-1.8.0.181-27.1 java-1_8_0-openjdk-accessibility-1.8.0.181-27.1 java-1_8_0-openjdk-demo-1.8.0.181-27.1 java-1_8_0-openjdk-devel-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-debugsource-1.8.0.181-27.1 java-1_8_0-openjdk-devel-1.8.0.181-27.1 java-1_8_0-openjdk-headless-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-1.8.0.181-27.1 java-1_8_0-openjdk-headless-1.8.0.181-27.1 noarch java-1_8_0-openjdk-javadoc-1.8.0.181-27.1 x86_64 java-1_8_0-openjdk-demo-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-src-1.8.0.181-27.1 java-1_8_0-openjdk-accessibility-1.8.0.181-27.1 java-1_8_0-openjdk-demo-1.8.0.181-27.1 java-1_8_0-openjdk-devel-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-debugsource-1.8.0.181-27.1 java-1_8_0-openjdk-devel-1.8.0.181-27.1 java-1_8_0-openjdk-headless-debuginfo-1.8.0.181-27.1 java-1_8_0-openjdk-1.8.0.181-27.1 java-1_8_0-openjdk-headless-1.8.0.181-27.1
147202 - SuSE Linux 15.0 openSUSE-SU-2018:3106-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000223
Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3106-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00053.html
SuSE Linux 15.0 x86_64 libSoundTouch0-32bit-debuginfo-1.8.0-lp150.2.3.1 libSoundTouch0-debuginfo-1.8.0-lp150.2.3.1 soundtouch-devel-1.8.0-lp150.2.3.1 libSoundTouch0-32bit-1.8.0-lp150.2.3.1 soundtouch-debuginfo-1.8.0-lp150.2.3.1 libSoundTouch0-1.8.0-lp150.2.3.1 soundtouch-debugsource-1.8.0-lp150.2.3.1 soundtouch-1.8.0-lp150.2.3.1 i586 libSoundTouch0-debuginfo-1.8.0-lp150.2.3.1 soundtouch-devel-1.8.0-lp150.2.3.1 soundtouch-debuginfo-1.8.0-lp150.2.3.1 libSoundTouch0-1.8.0-lp150.2.3.1 soundtouch-debugsource-1.8.0-lp150.2.3.1 soundtouch-1.8.0-lp150.2.3.1
160475 - CentOS 7 CESA-2018-2918 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10194, CVE-2018-15910, CVE-2018-16509, CVE-2018-16542
Description The scan detected that the host is missing the following update: CESA-2018-2918
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2018-October/023066.html
CentOS 7 i686 ghostscript-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2 noarch ghostscript-doc-9.07-29.el7_5.2 x86_64 ghostscript-gtk-9.07-29.el7_5.2 ghostscript-9.07-29.el7_5.2 ghostscript-cups-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2
163717 - Oracle Enterprise Linux ELSA-2018-2918 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10194, CVE-2018-15910, CVE-2018-16509, CVE-2018-16542
Description The scan detected that the host is missing the following update: ELSA-2018-2918
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008145.html http://oss.oracle.com/pipermail/el-errata/2018-October/008144.html
OEL7 x86_64 ghostscript-gtk-9.07-29.el7_5.2 ghostscript-9.07-29.el7_5.2 ghostscript-cups-9.07-29.el7_5.2 ghostscript-doc-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2
175460 - Scientific Linux Security ERRATA Important: ghostscript on SL7.x x86_64 (1810-7986)
Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2018-10194, CVE-2018-15910, CVE-2018-16509, CVE-2018-16542
Description The scan detected that the host is missing the following update: Security ERRATA Important: ghostscript on SL7.x x86_64 (1810-7986)
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1810&L=scientific-linux-errata&F=&S=&P=7986 SL7 x86_64 ghostscript-gtk-9.07-29.el7_5.2 ghostscript-9.07-29.el7_5.2 ghostscript-cups-9.07-29.el7_5.2 ghostscript-debuginfo-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2 noarch ghostscript-doc-9.07-29.el7_5.2
194299 - Fedora Linux 28 FEDORA-2018-c255f16bfe Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000156, CVE-2018-6951, CVE-2018-6952
Description The scan detected that the host is missing the following update: FEDORA-2018-c255f16bfe
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 28 patch-2.7.6-5.fc28
194320 - Fedora Linux 28 FEDORA-2018-1c1a318a0b Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-11233, CVE-2018-11235, CVE-2018-17456
Description The scan detected that the host is missing the following update: FEDORA-2018-1c1a318a0b
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 28 git-2.17.2-1.fc28
194321 - Fedora Linux 28 FEDORA-2018-42eab0f5b9 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10887, CVE-2018-10888, CVE-2018-11235, CVE-2018-17456
Description The scan detected that the host is missing the following update: FEDORA-2018-42eab0f5b9
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 28 libgit2-0.26.7-1.fc28
194323 - Fedora Linux 27 FEDORA-2018-7d993184f6 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10887, CVE-2018-10888, CVE-2018-11235, CVE-2018-17456
Description The scan detected that the host is missing the following update: FEDORA-2018-7d993184f6
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 27 libgit2-0.26.7-1.fc27
196121 - Red Hat Enterprise Linux RHSA-2018-2918 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10194, CVE-2018-15910, CVE-2018-16509, CVE-2018-16542
Description The scan detected that the host is missing the following update: RHSA-2018-2918
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.redhat.com/archives/rhsa-announce/2018-October/msg00018.html
RHEL7D x86_64 ghostscript-gtk-9.07-29.el7_5.2 ghostscript-9.07-29.el7_5.2 ghostscript-cups-9.07-29.el7_5.2 ghostscript-debuginfo-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2 noarch ghostscript-doc-9.07-29.el7_5.2
RHEL7S noarch ghostscript-doc-9.07-29.el7_5.2 x86_64 ghostscript-gtk-9.07-29.el7_5.2 ghostscript-9.07-29.el7_5.2 ghostscript-cups-9.07-29.el7_5.2 ghostscript-debuginfo-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2
RHEL7WS x86_64 ghostscript-gtk-9.07-29.el7_5.2 ghostscript-9.07-29.el7_5.2 ghostscript-cups-9.07-29.el7_5.2 ghostscript-debuginfo-9.07-29.el7_5.2 ghostscript-devel-9.07-29.el7_5.2 noarch ghostscript-doc-9.07-29.el7_5.2
24279 - Mozilla Firefox ESR Vulnerabilities Prior To ESR 60.2.1
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2018-12383, CVE-2018-12385
Description Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR.
Observation Mozilla Firefox ESR is a popular web browser.
Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR. The flaws lie in multiple components. Successful exploitation could allow an attacker to bypass security access restrictions, or cause a denial of service.
24280 - Mozilla Firefox ESR Vulnerabilities Prior To ESR 60.2.1
Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2018-12383, CVE-2018-12385
Description Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR. Observation Mozilla Firefox ESR is a popular web browser.
Multiple Vulnerabilities are present in some versions of Mozilla Firefox ESR. The flaws lie in multiple components. Successful exploitation could allow an attacker to bypass security access restrictions, or cause a denial of service.
24285 - Mozilla Thunderbird Multiple Vulnerabilities Prior To 60.2.1
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2017-16541, CVE-2018-12376, CVE-2018-12377, CVE-2018-12378, CVE-2018-12379, CVE-2018-12383, CVE-2018- 12385
Description Multiple vulnerabilities are present in some versions of Mozilla Thunderbird.
Observation Mozilla Thunderbird is an open-source email, newsgroup, news feed, and chat client.
Multiple vulnerabilities are present in some versions of Mozilla Thunderbird. The flaws lie in several components. Successful exploitation could allow an attacker to cause a denial of service condition, bypass security access restrictions or remotely execute arbitrary code on the target system.
24286 - Mozilla Thunderbird Multiple Vulnerabilities Prior To 60.2.1
Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2017-16541, CVE-2018-12376, CVE-2018-12377, CVE-2018-12378, CVE-2018-12379, CVE-2018-12383, CVE-2018- 12385
Description Multiple vulnerabilities are present in some versions of Mozilla Thunderbird.
Observation Mozilla Thunderbird is an open-source email, newsgroup, news feed, and chat client.
Multiple vulnerabilities are present in some versions of Mozilla Thunderbird. The flaws lie in several components. Successful exploitation could allow an attacker to cause a denial of service condition, bypass security access restrictions or remotely execute arbitrary code on the target system.
24289 - Cisco IOS Software SM-1T3/E3 Service Module Denial of Service Vulnerability (cisco-sa-20180926-sm1t3e3)
Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-0485
Description A denial of service vulnerability is present in some versions of Cisco IOS.
Observation Cisco IOS is an operating system used in Cisco devices. A denial of service vulnerability is present in some versions of Cisco IOS. The flaw lies in the SM-1T3/E3 firmware. Successful exploitation could allow an attacker to cause a denial of service condition.
24292 - Cisco IOS Software Plug and Play Agent Memory Leak Vulnerability (cisco-sa-20180926-pnp-memleak)
Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15377
Description A vulnerability is present in some versions of Cisco IOS.
Observation Cisco IOS is an operating system used in Cisco devices.
A vulnerability is present in some versions of Cisco IOS. The flaw is due to insufficient input validation. Successful exploitation could allow an attacker to cause a memory leak on the target system which leads to a denial of service condition.
24293 - Cisco Adaptive Security Appliance TCP Syslog Denial of Service Vulnerability (cisco-sa-20181003-asa-syslog- dos)
Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2018-15399
Description A vulnerability is present in some versions of Cisco ASA devices.
Observation Cisco Adaptive Security Appliance is a world-class line of network security devices.
A vulnerability is present in some versions of Cisco ASA devices. The flaw lies in the TCP Syslog module. Successful exploitation could allow an attacker to cause a denial of service condition in the target system.
24297 - Cisco Adaptive Security Appliance Access Control List Bypass Vulnerability (cisco-sa-20181003-asa-acl- bypass)
Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2018-15398
Description A vulnerability is present in some versions of Cisco ASA devices.
Observation Cisco Adaptive Security Appliance is a word-class line of network security devices.
A vulnerability is present in some versions of Cisco ASA devices. The flaw lies in per-user-override feature. Successful exploitation could allow a remote attacker to bypass intended access restrictions.
24303 - Cisco Catalyst 6800 Series Switches ROM Monitor Software Secure Boot Bypass Vulnerability (cisco-sa- 20180926-catalyst6800) Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15370
Description A vulnerability is present in some versions of Cisco IOS used in Cisco Catalyst Switches.
Observation Cisco IOS is an operating system used in the Cisco device.
A vulnerability is present in some versions of Cisco IOS used in Cisco Catalyst Switches. The vulnerability lies in Cisco IOS ROM Monitor (ROMMON) Software for the Cisco Catalyst 6800 Series. Successful exploitation could allow an unauthenticated, local attacker to bypass certain security restrictions and perform unauthorized actions.
24305 - Apache Tomcat Vulnerability Prior To 9.0.12
Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium CVE: CVE-2018-11784
Description A vulnerability is present in some versions of Apache Tomcat.
Observation Apache Tomcat is an open source software implementation of the Java Servlet and JavaServer Pages technologies.
A vulnerability is present in some versions of Apache Tomcat. The flaw is due to improper handling of user-supplied input. Successful exploitation could allow an attacker to conduct phishing attacks.
24306 - IBM WebSphere Portal Open Redirect Vulnerability (ibm10729683)
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2018-1736
Description A vulnerability is present in some versions of IBM WebSphere Portal.
Observation IBM WebSphere Portal is a set of software tools that is used to build and manage web portals.
A vulnerability is present in some versions of IBM WebSphere Portal. The flaw is due to improper handling of user-supplied input. Successful exploitation could allow an attacker to conduct phishing attacks.
24307 - Apache ActiveMQ Web Console Cross-Site Scripting Vulnerability Prior To 5.15.6
Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium CVE: CVE-2018-8006
Description A vulnerability is present in some versions of Apache ActiveMQ.
Observation Apache ActiveMQ is an open source messaging server.
A vulnerability is present in some versions of Apache ActiveMQ. The flaw is due to insufficient sanitization of input data to the QueueFilter parameter. Successful exploitation could allow an attacker to execute arbitrary script code in the target machine.
24308 - (HT209162) Apple iOS Multiple Vulnerabilities Prior To 12.0.1
Category: Wireless Assessment -> NonIntrusive -> iOS Risk Level: Medium CVE: CVE-2018-4379, CVE-2018-4380
Description Multiple vulnerabilities are present in some versions of Apple iOS.
Observation Apple iOS is the operating system used by Apple iPhone, iPad, and iPod touch.
Multiple vulnerabilities are present in some versions of Apple iOS. The flaws lie in many components. Successful exploitation could allow a local attacker to obtain sensitive information.
131224 - Debian Linux 9.0 DSA-4320-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-12227, CVE-2018-17281, CVE-2018-7284, CVE-2018-7286
Description The scan detected that the host is missing the following update: DSA-4320-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4320
Debian 9.0 all asterisk_1:13.14.1~dfsg-2+deb9u4
132484 - Oracle VM OVMSA-2018-0263 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle VM Patches and Hotfixes Risk Level: Medium CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: OVMSA-2018-0263 Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/oraclevm-errata/2018-October/000896.html
OVM3.4 x86_64 glusterfs-api-3.12.2-18.el6 glusterfs-3.12.2-18.el6 glusterfs-libs-3.12.2-18.el6 glusterfs-client-xlators-3.12.2-18.el6
132485 - Oracle VM OVMSA-2018-0264 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle VM Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-12384
Description The scan detected that the host is missing the following update: OVMSA-2018-0264
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/oraclevm-errata/2018-October/000898.html http://oss.oracle.com/pipermail/oraclevm-errata/2018-October/000895.html
OVM3.3 x86_64 nss-sysinit-3.36.0-9.0.1.el6_10 nss-3.36.0-9.0.1.el6_10 nss-tools-3.36.0-9.0.1.el6_10
OVM3.4 x86_64 nss-sysinit-3.36.0-9.0.1.el6_10 nss-3.36.0-9.0.1.el6_10 nss-tools-3.36.0-9.0.1.el6_10
135214 - Oracle Solaris 11.4.1.4.0 Update Is Not Installed (CVE-2016-5244)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-5244
Description The scan detected that the host is missing the following update: SRU 11.4.1.4.0
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
147201 - SuSE Linux 42.3 openSUSE-SU-2018:3107-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2017-18258, CVE-2018-14404, CVE-2018-14567, CVE-2018-9251
Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3107-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00054.html
SuSE Linux 42.3 i586 python-libxml2-debuginfo-2.9.4-18.1 libxml2-2-2.9.4-18.1 python-libxml2-debugsource-2.9.4-18.1 libxml2-tools-debuginfo-2.9.4-18.1 libxml2-devel-2.9.4-18.1 libxml2-debugsource-2.9.4-18.1 libxml2-2-debuginfo-2.9.4-18.1 python-libxml2-2.9.4-18.1 libxml2-tools-2.9.4-18.1 noarch libxml2-doc-2.9.4-18.1 x86_64 python-libxml2-debuginfo-2.9.4-18.1 libxml2-2-32bit-2.9.4-18.1 libxml2-2-2.9.4-18.1 python-libxml2-debugsource-2.9.4-18.1 libxml2-tools-debuginfo-2.9.4-18.1 libxml2-devel-2.9.4-18.1 libxml2-debugsource-2.9.4-18.1 libxml2-devel-32bit-2.9.4-18.1 libxml2-2-debuginfo-2.9.4-18.1 python-libxml2-2.9.4-18.1 libxml2-2-debuginfo-32bit-2.9.4-18.1 libxml2-tools-2.9.4-18.1
147209 - SuSE Linux 15.0 openSUSE-SU-2018:3110-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14404, CVE-2018-14567, CVE-2018-9251
Description The scan detected that the host is missing the following update: openSUSE-SU-2018:3110-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.opensuse.org/opensuse-updates/2018-10/msg00057.html
SuSE Linux 15.0 i586 libxml2-2-2.9.7-lp150.2.3.1 python3-libxml2-python-debuginfo-2.9.7-lp150.2.3.1 libxml2-debugsource-2.9.7-lp150.2.3.1 python2-libxml2-python-debuginfo-2.9.7-lp150.2.3.1 libxml2-devel-2.9.7-lp150.2.3.1 python3-libxml2-python-2.9.7-lp150.2.3.1 libxml2-2-debuginfo-2.9.7-lp150.2.3.1 python-libxml2-python-debugsource-2.9.7-lp150.2.3.1 python2-libxml2-python-2.9.7-lp150.2.3.1 libxml2-tools-2.9.7-lp150.2.3.1 libxml2-tools-debuginfo-2.9.7-lp150.2.3.1 noarch libxml2-doc-2.9.7-lp150.2.3.1 x86_64 libxml2-2-32bit-debuginfo-2.9.7-lp150.2.3.1 libxml2-tools-2.9.7-lp150.2.3.1 python3-libxml2-python-debuginfo-2.9.7-lp150.2.3.1 libxml2-2-debuginfo-2.9.7-lp150.2.3.1 python-libxml2-python-debugsource-2.9.7-lp150.2.3.1 python2-libxml2-python-2.9.7-lp150.2.3.1 libxml2-tools-debuginfo-2.9.7-lp150.2.3.1 libxml2-devel-32bit-2.9.7-lp150.2.3.1 python3-libxml2-python-2.9.7-lp150.2.3.1 libxml2-devel-2.9.7-lp150.2.3.1 python2-libxml2-python-debuginfo-2.9.7-lp150.2.3.1 libxml2-debugsource-2.9.7-lp150.2.3.1 libxml2-2-32bit-2.9.7-lp150.2.3.1 libxml2-2-2.9.7-lp150.2.3.1
160474 - CentOS 7 CESA-2018-2921 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1336
Description The scan detected that the host is missing the following update: CESA-2018-2921
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2018-October/023067.html CentOS 7 noarch tomcat-jsvc-7.0.76-8.el7_5 tomcat-7.0.76-8.el7_5 tomcat-docs-webapp-7.0.76-8.el7_5 tomcat-javadoc-7.0.76-8.el7_5 tomcat-lib-7.0.76-8.el7_5 tomcat-webapps-7.0.76-8.el7_5 tomcat-jsp-2.2-api-7.0.76-8.el7_5 tomcat-el-2.2-api-7.0.76-8.el7_5 tomcat-servlet-3.0-api-7.0.76-8.el7_5 tomcat-admin-webapps-7.0.76-8.el7_5
163713 - Oracle Enterprise Linux ELSA-2018-4248 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-0732, CVE-2018-0737
Description The scan detected that the host is missing the following update: ELSA-2018-4248
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008139.html
OEL6 x86_64 openssl-devel-1.0.1e-57.0.6.el6 openssl-1.0.1e-57.0.6.el6 openssl-static-1.0.1e-57.0.6.el6 openssl-perl-1.0.1e-57.0.6.el6 i386 openssl-devel-1.0.1e-57.0.6.el6 openssl-1.0.1e-57.0.6.el6 openssl-static-1.0.1e-57.0.6.el6 openssl-perl-1.0.1e-57.0.6.el6
163716 - Oracle Enterprise Linux ELSA-2018-2921 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1336
Description The scan detected that the host is missing the following update: ELSA-2018-2921
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008148.html http://oss.oracle.com/pipermail/el-errata/2018-October/008150.html
OEL7 x86_64 tomcat-jsvc-7.0.76-8.el7_5 tomcat-7.0.76-8.el7_5 tomcat-docs-webapp-7.0.76-8.el7_5 tomcat-javadoc-7.0.76-8.el7_5 tomcat-lib-7.0.76-8.el7_5 tomcat-webapps-7.0.76-8.el7_5 tomcat-jsp-2.2-api-7.0.76-8.el7_5 tomcat-el-2.2-api-7.0.76-8.el7_5 tomcat-servlet-3.0-api-7.0.76-8.el7_5 tomcat-admin-webapps-7.0.76-8.el7_5
163720 - Oracle Enterprise Linux ELSA-2018-4249 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-0732, CVE-2018-0737
Description The scan detected that the host is missing the following update: ELSA-2018-4249
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008138.html
OEL7 x86_64 openssl-static-1.0.2k-12.0.3.el7 openssl-devel-1.0.2k-12.0.3.el7 openssl-libs-1.0.2k-12.0.3.el7 openssl-perl-1.0.2k-12.0.3.el7 openssl-1.0.2k-12.0.3.el7
175456 - Scientific Linux Security ERRATA Moderate: nss on SL6.x i386/x86_64 (1810-6985)
Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2018-12384
Description The scan detected that the host is missing the following update: Security ERRATA Moderate: nss on SL6.x i386/x86_64 (1810-6985)
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1810&L=scientific-linux-errata&F=&S=&P=6985 SL6 x86_64 nss-tools-3.36.0-9.el6_10 nss-pkcs11-devel-3.36.0-9.el6_10 nss-3.36.0-9.el6_10 nss-debuginfo-3.36.0-9.el6_10 nss-sysinit-3.36.0-9.el6_10 nss-devel-3.36.0-9.el6_10 i386 nss-tools-3.36.0-9.el6_10 nss-pkcs11-devel-3.36.0-9.el6_10 nss-3.36.0-9.el6_10 nss-debuginfo-3.36.0-9.el6_10 nss-sysinit-3.36.0-9.el6_10 nss-devel-3.36.0-9.el6_10
175457 - Scientific Linux Security ERRATA Moderate: glusterfs on SL6.x x86_64 (1810-7303)
Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2018-10911
Description The scan detected that the host is missing the following update: Security ERRATA Moderate: glusterfs on SL6.x x86_64 (1810-7303)
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1810&L=scientific-linux-errata&F=&S=&P=7303
SL6 x86_64 glusterfs-api-3.12.2-18.el6 glusterfs-devel-3.12.2-18.el6 glusterfs-rdma-3.12.2-18.el6 glusterfs-client-xlators-3.12.2-18.el6 glusterfs-fuse-3.12.2-18.el6 glusterfs-cli-3.12.2-18.el6 glusterfs-libs-3.12.2-18.el6 glusterfs-debuginfo-3.12.2-18.el6 glusterfs-3.12.2-18.el6 glusterfs-api-devel-3.12.2-18.el6
175459 - Scientific Linux Security ERRATA Important: tomcat on SL7.x (noarch) (1810-8372)
Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2018-1336
Description The scan detected that the host is missing the following update: Security ERRATA Important: tomcat on SL7.x (noarch) (1810-8372) Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1810&L=scientific-linux-errata&F=&S=&P=8372
SL7 noarch tomcat-servlet-3.0-api-7.0.76-8.el7_5 tomcat-7.0.76-8.el7_5 tomcat-docs-webapp-7.0.76-8.el7_5 tomcat-javadoc-7.0.76-8.el7_5 tomcat-jsvc-7.0.76-8.el7_5 tomcat-webapps-7.0.76-8.el7_5 tomcat-jsp-2.2-api-7.0.76-8.el7_5 tomcat-lib-7.0.76-8.el7_5 tomcat-el-2.2-api-7.0.76-8.el7_5 tomcat-admin-webapps-7.0.76-8.el7_5
196122 - Red Hat Enterprise Linux RHSA-2018-2921 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1336
Description The scan detected that the host is missing the following update: RHSA-2018-2921
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.redhat.com/archives/rhsa-announce/2018-October/msg00019.html
RHEL7D noarch tomcat-servlet-3.0-api-7.0.76-8.el7_5 tomcat-7.0.76-8.el7_5 tomcat-docs-webapp-7.0.76-8.el7_5 tomcat-javadoc-7.0.76-8.el7_5 tomcat-jsvc-7.0.76-8.el7_5 tomcat-webapps-7.0.76-8.el7_5 tomcat-jsp-2.2-api-7.0.76-8.el7_5 tomcat-lib-7.0.76-8.el7_5 tomcat-el-2.2-api-7.0.76-8.el7_5 tomcat-admin-webapps-7.0.76-8.el7_5
RHEL7S noarch tomcat-servlet-3.0-api-7.0.76-8.el7_5 tomcat-7.0.76-8.el7_5 tomcat-docs-webapp-7.0.76-8.el7_5 tomcat-javadoc-7.0.76-8.el7_5 tomcat-lib-7.0.76-8.el7_5 tomcat-webapps-7.0.76-8.el7_5 tomcat-jsp-2.2-api-7.0.76-8.el7_5 tomcat-jsvc-7.0.76-8.el7_5 tomcat-el-2.2-api-7.0.76-8.el7_5 tomcat-admin-webapps-7.0.76-8.el7_5
RHEL7WS noarch tomcat-servlet-3.0-api-7.0.76-8.el7_5 tomcat-7.0.76-8.el7_5 tomcat-docs-webapp-7.0.76-8.el7_5 tomcat-javadoc-7.0.76-8.el7_5 tomcat-lib-7.0.76-8.el7_5 tomcat-webapps-7.0.76-8.el7_5 tomcat-jsp-2.2-api-7.0.76-8.el7_5 tomcat-jsvc-7.0.76-8.el7_5 tomcat-el-2.2-api-7.0.76-8.el7_5 tomcat-admin-webapps-7.0.76-8.el7_5
24287 - (K61974123) F5 BIG-IP Imagemagick Vulnerability
Category: SSH Module -> NonIntrusive -> F5 Risk Level: Medium CVE: CVE-2016-3718
Description A vulnerability is present in some versions of F5's BIG-IP products.
Observation F5's BIG-IP products are network appliance that run F5's Traffic Management Operating System.
A vulnerability is present in some versions of F5's BIG-IP products. The flaw lies in the ImageMagick's HTTP and FTP coders. Successful exploitation could allow a remote attacker to conduct server-side request forgery (SSRF) attacks.
135219 - Oracle Solaris 11.4.1.4.0 Update Is Not Installed (CVE-2015-6937)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-6937
Description The scan detected that the host is missing the following update: SRU 11.4.1.4.0
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
147207 - SuSE SLES 12 SP3 SUSE-SU-2018:3118-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-8032
Description The scan detected that the host is missing the following update: SUSE-SU-2018:3118-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2018-October/004666.html
SuSE SLES 12 SP3 noarch axis-1.4-290.3.1
147208 - SuSE SLES 11 SP4 SUSE-SU-2018:3119-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-8032
Description The scan detected that the host is missing the following update: SUSE-SU-2018:3119-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2018-October/004667.html
SuSE SLES 11 SP4 noarch axis-1.4-236.236.44.9.1
147211 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:3095-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2017-11532, CVE-2018-16413, CVE-2018-16640, CVE-2018-16642, CVE-2018-16643, CVE-2018-16644, CVE-2018- 16645, CVE-2018-16749, CVE-2018-16750
Description The scan detected that the host is missing the following update: SUSE-SU-2018:3095-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2018-October/004662.html
SuSE SLED 12 SP3 x86_64 libMagickCore-6_Q16-1-6.8.8.1-71.79.1 libMagickCore-6_Q16-1-32bit-6.8.8.1-71.79.1 libMagick++-6_Q16-3-debuginfo-6.8.8.1-71.79.1 libMagick++-6_Q16-3-6.8.8.1-71.79.1 libMagickCore-6_Q16-1-debuginfo-32bit-6.8.8.1-71.79.1 libMagickWand-6_Q16-1-debuginfo-6.8.8.1-71.79.1 ImageMagick-debugsource-6.8.8.1-71.79.1 libMagickWand-6_Q16-1-6.8.8.1-71.79.1 libMagickCore-6_Q16-1-debuginfo-6.8.8.1-71.79.1 ImageMagick-6.8.8.1-71.79.1 ImageMagick-debuginfo-6.8.8.1-71.79.1
SuSE SLES 12 SP3 x86_64 libMagickCore-6_Q16-1-6.8.8.1-71.79.1 ImageMagick-debugsource-6.8.8.1-71.79.1 libMagickWand-6_Q16-1-6.8.8.1-71.79.1 libMagickCore-6_Q16-1-debuginfo-6.8.8.1-71.79.1 libMagickWand-6_Q16-1-debuginfo-6.8.8.1-71.79.1 ImageMagick-debuginfo-6.8.8.1-71.79.1
163718 - Oracle Enterprise Linux ELSA-2018-4245 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2017-13695, CVE-2018-14634, CVE-2018-16658, CVE-2018-3620, CVE-2018-7492
Description The scan detected that the host is missing the following update: ELSA-2018-4245
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008132.html http://oss.oracle.com/pipermail/el-errata/2018-October/008131.html
OEL7 x86_64 kernel-uek-debug-devel-3.8.13-118.25.1.el7uek dtrace-modules-3.8.13-118.25.1.el7uek-0.4.5-3.el7 kernel-uek-3.8.13-118.25.1.el7uek kernel-uek-firmware-3.8.13-118.25.1.el7uek kernel-uek-debug-3.8.13-118.25.1.el7uek kernel-uek-doc-3.8.13-118.25.1.el7uek kernel-uek-devel-3.8.13-118.25.1.el7uek
OEL6 x86_64 kernel-uek-debug-devel-3.8.13-118.25.1.el6uek kernel-uek-debug-3.8.13-118.25.1.el6uek kernel-uek-doc-3.8.13-118.25.1.el6uek kernel-uek-devel-3.8.13-118.25.1.el6uek dtrace-modules-3.8.13-118.25.1.el6uek-0.4.5-3.el6 kernel-uek-firmware-3.8.13-118.25.1.el6uek kernel-uek-3.8.13-118.25.1.el6uek
163719 - Oracle Enterprise Linux ELSA-2018-4250 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2017-13695, CVE-2018-13405, CVE-2018-14634, CVE-2018-16658, CVE-2018-7492, CVE-2018-7566
Description The scan detected that the host is missing the following update: ELSA-2018-4250
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2018-October/008140.html
OEL6 x86_64 kernel-uek-debug-2.6.39-400.302.2.el6uek kernel-uek-firmware-2.6.39-400.302.2.el6uek kernel-uek-2.6.39-400.302.2.el6uek kernel-uek-debug-devel-2.6.39-400.302.2.el6uek kernel-uek-doc-2.6.39-400.302.2.el6uek kernel-uek-devel-2.6.39-400.302.2.el6uek i386 kernel-uek-debug-2.6.39-400.302.2.el6uek kernel-uek-2.6.39-400.302.2.el6uek kernel-uek-firmware-2.6.39-400.302.2.el6uek kernel-uek-debug-devel-2.6.39-400.302.2.el6uek kernel-uek-doc-2.6.39-400.302.2.el6uek kernel-uek-devel-2.6.39-400.302.2.el6uek
194298 - Fedora Linux 28 FEDORA-2018-5d6e80ab82 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-0497
Description The scan detected that the host is missing the following update: FEDORA-2018-5d6e80ab82
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 28 dislocker-0.7.1-10.fc28 mbedtls-2.13.0-1.fc28 nekovm-2.2.0-8.fc28 dolphin-emu-5.0-25.fc28
194300 - Fedora Linux 27 FEDORA-2018-22776e8ca9 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2017-5950
Description The scan detected that the host is missing the following update: FEDORA-2018-22776e8ca9
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 27 fawkes-1.0.1-9.fc27.1 mongodb-3.4.11-4.fc27 calamares-3.1.8-2.fc27.1 librime-1.2-18.fc27.1 pdns-4.1.4-1.fc27.1
194303 - Fedora Linux 27 FEDORA-2018-9caa6528d2 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-16151, CVE-2018-16152, CVE-2018-5388
Description The scan detected that the host is missing the following update: FEDORA-2018-9caa6528d2
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 27 strongswan-5.7.1-1.fc27
194304 - Fedora Linux 28 FEDORA-2018-dd98177cad Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-5773
Description The scan detected that the host is missing the following update: FEDORA-2018-dd98177cad
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 28 python-markdown2-2.3.6-1.fc28
194310 - Fedora Linux 27 FEDORA-2018-e52160d0bc Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-5773
Description The scan detected that the host is missing the following update: FEDORA-2018-e52160d0bc
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 27 python-markdown2-2.3.6-1.fc27
194314 - Fedora Linux 28 FEDORA-2018-a71b957c50 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-5785
Description The scan detected that the host is missing the following update: FEDORA-2018-a71b957c50
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 28 openjpeg2-2.3.0-9.fc28 mingw-openjpeg2-2.3.0-4.fc28
194318 - Fedora Linux 27 FEDORA-2018-64d64bd05e Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-5785 Description The scan detected that the host is missing the following update: FEDORA-2018-64d64bd05e
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 27 mingw-openjpeg2-2.3.0-4.fc27 openjpeg2-2.3.0-9.fc27
194322 - Fedora Linux 28 FEDORA-2018-61df554bb1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-16151, CVE-2018-16152, CVE-2018-5388
Description The scan detected that the host is missing the following update: FEDORA-2018-61df554bb1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 28 strongswan-5.7.1-1.fc28
24309 - IBM WebSphere Portal CKEditor Vulnerability (swg22015586)
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Low CVE: CVE-MAP-NOMATCH
Description A vulnerability is present in some versions of IBM WebSphere Portal.
Observation IBM WebSphere Portal is a set of software tools that is used to build and manage web portals.
A vulnerability is present in some versions of IBM WebSphere Portal. The flaw lies in CKEditor component. Successful exploitation could allow an attacker to gain unauthorized access to target system.
33393 - Oracle Solaris 152925-01 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: 152925-01
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://getupdates.oracle.com/readme/152925-01
JavaSE 7(x86): update 201 patch (equivalent to JDK 7u201)
SOLARIS_10_x86
SUNWj7dmo:1.7.0,REV=2011.06.27.03.37 SUNWj7dev:1.7.0,REV=2011.06.27.03.37 SUNWj7jmp:1.7.0,REV=2011.06.27.03.37 SUNWj7rt:1.7.0,REV=2011.06.27.03.37 SUNWj7man:1.7.0,REV=2011.06.27.03.37 SUNWj7cfg:1.7.0,REV=2011.06.27.03.37
33394 - Oracle Solaris 152923-01 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: 152923-01
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://getupdates.oracle.com/readme/152923-01
JavaSE 7: update 201 patch (equivalent to JDK 7u201)
SOLARIS_10
SUNWj7cfg:1.7.0,REV=2011.06.27.06.20 SUNWj7dmo:1.7.0,REV=2011.06.27.06.20 SUNWj7rt:1.7.0,REV=2011.06.27.06.20 SUNWj7dev:1.7.0,REV=2011.06.27.06.20 SUNWj7man:1.7.0,REV=2011.06.27.06.20 SUNWj7jmp:1.7.0,REV=2011.06.27.06.20
33395 - Oracle Solaris 152926-01 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: 152926-01
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://getupdates.oracle.com/readme/152926-01
JavaSE 7(x86): update 201 patch (equivalent to JDK 7u201), 64bit
SOLARIS_10_x86
SUNWj7rtx:1.7.0,REV=2011.06.27.02.48 SUNWj7dmx:1.7.0,REV=2011.06.27.02.48 SUNWj7dvx:1.7.0,REV=2011.06.27.02.48
33396 - Oracle Solaris 152924-01 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: 152924-01
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://getupdates.oracle.com/readme/152924-01
JavaSE 7: update 201 patch (equivalent to JDK 7u201), 64bit
SOLARIS_10
SUNWj7dvx:1.7.0,REV=2011.06.27.06.23 SUNWj7dmx:1.7.0,REV=2011.06.27.06.23 SUNWj7rtx:1.7.0,REV=2011.06.27.06.23
88981 - Slackware Linux 14.0, 14.1, 14.2 SSA:2018-283-01 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes Risk Level: Low CVE: CVE-2018-17456
Description The scan detected that the host is missing the following update: SSA:2018-283-01
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.slackware.com/security/viewer.php?l=slackware-security&y=2018&m=slackware-security.442862
Slackware 14.0 x86_64 git-2.14.5-x86_64-1
Slackware 14.2 x86_64 git-2.14.5-x86_64-1 i586 git-2.14.5-i586-1
Slackware 14.1 x86_64 git-2.14.5-x86_64-1
131221 - Debian Linux 9.0 DSA-4318-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2017-5934
Description The scan detected that the host is missing the following update: DSA-4318-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4318
Debian 9.0 all python-moinmoin_1.9.9-1+deb9u1
131225 - Debian Linux 9.0 DSA-4316-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2018-16412, CVE-2018-16413, CVE-2018-16642, CVE-2018-16644, CVE-2018-16645
Description The scan detected that the host is missing the following update: DSA-4316-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4316 Debian 9.0 all imagemagick_8:6.9.7.4+dfsg-11+deb9u6
131226 - Debian Linux 9.0 DSA-4315-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2018-16056, CVE-2018-16057, CVE-2018-16058
Description The scan detected that the host is missing the following update: DSA-4315-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4315
Debian 9.0 all wireshark_2.6.3-1~deb9u1
131227 - Debian Linux 9.0 DSA-4314-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2018-18065
Description The scan detected that the host is missing the following update: DSA-4314-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2018/dsa-4314
Debian 9.0 all libsnmp-base_5.7.3+dfsg-1.7+deb9u1 libsnmp30_5.7.3+dfsg-1.7+deb9u1 python-netsnmp_5.7.3+dfsg-1.7+deb9u1 tkmib_5.7.3+dfsg-1.7+deb9u1 snmp_5.7.3+dfsg-1.7+deb9u1 snmpd_5.7.3+dfsg-1.7+deb9u1 snmptrapd_5.7.3+dfsg-1.7+deb9u1 libsnmp-dev_5.7.3+dfsg-1.7+deb9u1 libsnmp30-dbg_5.7.3+dfsg-1.7+deb9u1 libsnmp-perl_5.7.3+dfsg-1.7+deb9u1
182815 - FreeBSD gitea Multiple Vulnerabilities (cb539d4e-cd68-11e8-8819-00e04c1ea73d) Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: gitea -- multiple vulnerabilities (cb539d4e-cd68-11e8-8819-00e04c1ea73d)
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/cb539d4e-cd68-11e8-8819-00e04c1ea73d.html
Affected packages: gitea < 1.5.2
182816 - FreeBSD jenkins Multiple Vulnerabilities (3350275d-cd5a-11e8-a7be-3497f683cb16)
Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: jenkins -- multiple vulnerabilities (3350275d-cd5a-11e8-a7be-3497f683cb16)
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/3350275d-cd5a-11e8-a7be-3497f683cb16.html
Affected packages: jenkins < 2.146 jenkins-lts < 2.138.2
182817 - FreeBSD Memory Leak Bug In Toxcore (4c11b51e-cd8d-11e8-b0cb-a0f3c100ae18)
Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: Memory leak bug in Toxcore (4c11b51e-cd8d-11e8-b0cb-a0f3c100ae18)
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/4c11b51e-cd8d-11e8-b0cb-a0f3c100ae18.html
Affected packages: toxcore < 0.2.8,1
182818 - FreeBSD Libgit2 Multiple Vulnerabilities (8c08ab4c-d06c-11e8-b35c-001b217b3468)
Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-2018-17456
Description The scan detected that the host is missing the following update: Libgit2 -- multiple vulnerabilities (8c08ab4c-d06c-11e8-b35c-001b217b3468)
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/8c08ab4c-d06c-11e8-b35c-001b217b3468.html
Affected packages: libgit2 < 0.27.5
186425 - Ubuntu Linux 14.04, 16.04, 18.04 USN-3791-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2018-17456
Description The scan detected that the host is missing the following update: USN-3791-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.ubuntu.com/archives/ubuntu-security-announce/2018-October/004616.html
Ubuntu 16.04 git_2.7.4-0ubuntu1.5
Ubuntu 14.04 git_1.9.1-1ubuntu0.9
Ubuntu 18.04 git_2.17.1-1ubuntu0.3
186426 - Ubuntu Linux 18.04 USN-3781-2 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH Description The scan detected that the host is missing the following update: USN-3781-2
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.ubuntu.com/archives/ubuntu-security-announce/2018-October/004612.html
Ubuntu 18.04 libjavascriptcoregtk-4.0-18_2.22.2-0ubuntu0.18.04.2 libwebkit2gtk-4.0-37_2.22.2-0ubuntu0.18.04.2
186427 - Ubuntu Linux 14.04, 16.04, 18.04 USN-3789-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2018-15378
Description The scan detected that the host is missing the following update: USN-3789-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.ubuntu.com/archives/ubuntu-security-announce/2018-October/004614.html
Ubuntu 16.04 clamav_0.100.2+dfsg-1ubuntu0.16.04.1
Ubuntu 14.04 clamav_0.100.2+dfsg-1ubuntu0.14.04.1
Ubuntu 18.04 clamav_0.100.2+dfsg-1ubuntu0.18.04.1
186429 - Ubuntu Linux 14.04, 16.04, 18.04 USN-3792-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2018-18065
Description The scan detected that the host is missing the following update: USN-3792-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.ubuntu.com/archives/ubuntu-security-announce/2018-October/004618.html
Ubuntu 16.04 libsnmp30_5.7.3+dfsg-1ubuntu4.2
Ubuntu 14.04 libsnmp30_5.7.2~dfsg-8.1ubuntu3.3
Ubuntu 18.04 libsnmp30_5.7.3+dfsg-1.8ubuntu3.1
186430 - Ubuntu Linux 14.04, 16.04 USN-3787-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2018-11784
Description The scan detected that the host is missing the following update: USN-3787-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.ubuntu.com/archives/ubuntu-security-announce/2018-October/004613.html
Ubuntu 14.04 libtomcat7-java_7.0.52-1ubuntu0.16 tomcat7_7.0.52-1ubuntu0.16
Ubuntu 16.04 libtomcat8-java_8.0.32-1ubuntu1.8 tomcat8_8.0.32-1ubuntu1.8
186431 - Ubuntu Linux 14.04, 16.04, 18.04 USN-3793-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2018-12376, CVE-2018-12377, CVE-2018-12378, CVE-2018-12383, CVE-2018-12385
Description The scan detected that the host is missing the following update: USN-3793-1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.ubuntu.com/archives/ubuntu-security-announce/2018-October/004619.html
Ubuntu 16.04 thunderbird_60.2.1+build1-0ubuntu0.16.04.4
Ubuntu 14.04 thunderbird_60.2.1+build1-0ubuntu0.14.04.2
Ubuntu 18.04 thunderbird_60.2.1+build1-0ubuntu0.18.04.2
194301 - Fedora Linux 28 FEDORA-2018-f76e6d17f1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2018-16428, CVE-2018-16429, CVE-2018-6055, CVE-2018-6119
Description The scan detected that the host is missing the following update: FEDORA-2018-f76e6d17f1
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 28 chromium-69.0.3497.100-1.fc28
194302 - Fedora Linux 28 FEDORA-2018-cc9adc4808 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2018-17175
Description The scan detected that the host is missing the following update: FEDORA-2018-cc9adc4808
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 28 python-marshmallow-2.11.1-8.fc28 194305 - Fedora Linux 28 FEDORA-2018-a78cf5fcfc Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: FEDORA-2018-a78cf5fcfc
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 28 thunderbird-60.2.1-2.fc28
194306 - Fedora Linux 27 FEDORA-2018-11b3ae4e31 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: FEDORA-2018-11b3ae4e31
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 27 ca-certificates-2018.2.26-1.0.fc27
194307 - Fedora Linux 28 FEDORA-2018-8dfeb06ce9 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: FEDORA-2018-8dfeb06ce9
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 28 php-horde-nag-4.2.19-1.fc28
194311 - Fedora Linux 27 FEDORA-2018-113c354377 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Description The scan detected that the host is missing the following update: FEDORA-2018-113c354377
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 27 php-horde-nag-4.2.19-1.fc27
194316 - Fedora Linux 27 FEDORA-2018-54d84b0b0c Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2017-3145, CVE-2018-5738, CVE-2018-5741
Description The scan detected that the host is missing the following update: FEDORA-2018-54d84b0b0c
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 27 bind-9.11.4-3.P2.fc27
194317 - Fedora Linux 28 FEDORA-2018-6ffb18592f Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2018-11763
Description The scan detected that the host is missing the following update: FEDORA-2018-6ffb18592f
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=1
Fedora Core 28 mod_http2-1.11.1-1.fc28
194319 - Fedora Linux 27 FEDORA-2018-8b109a6de0 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2018-17175
Description The scan detected that the host is missing the following update: FEDORA-2018-8b109a6de0
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.fedoraproject.org/archives/list/[email protected]/2018/10/?count=200&page=2
Fedora Core 27 python-marshmallow-2.11.1-8.fc27
135213 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3273)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3273
Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135215 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3275)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3275 Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135216 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3272)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3272
Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135217 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3274)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3274
Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135218 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3263)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3263
Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135220 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3267)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3267
Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135221 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3271)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3271
Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135222 - Oracle Solaris 11.4.1.4.0 Update Is Not Installed (CVE-2018-3172)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3172
Description The scan detected that the host is missing the following update: SRU 11.4.1.4.0
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197 135223 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3268)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3268
Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135224 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3265)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3265
Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135225 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3264)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3264
Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135226 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3269)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3269 Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135227 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3266)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3266
Description The scan detected that the host is missing the following update: SRU 11.4
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135228 - Oracle Solaris 11.3.35.6.0 Update Is Not Installed (CVE-2018-2922)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-2922
Description The scan detected that the host is missing the following update: SRU 11.3.35.6.0
Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
135229 - Oracle Solaris 11.4 Update Is Not Installed (CVE-2018-3270)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2018-3270
Description The scan detected that the host is missing the following update: SRU 11.4 Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://support.oracle.com/epmos/faces/DocumentDisplay?id=2451130.1&_adf.ctrl-state=x1fz6mynb_4&_afrLoop=334395524385197
24300 - Microsoft Office 365 ProPlus and Office 2019 Oct 2018 Updates
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Informational CVE: CVE-2018-8432, CVE-2018-8501, CVE-2018-8502, CVE-2018-8504
Description Multiple issues are present in some versions of Microsoft Office 365 ProPlus and Office 2019.
Observation Microsoft Office 365 ProPlus and Office 2019 are the industry standard productivity suite.
Multiple issues are present in some versions of Microsoft Office 365 ProPlus and Office 2019. The flaws are present in multiple components. Such defects could lead the product to software vulnerabilities, malfunction or unexpected behavior in some of its affected components.
ENHANCED CHECKS
The following checks have been updated. Enhancements may include optimizations, changes that reflect new information on a vulnerability and anything else that improves upon an existing FSL check. 139068 - Oracle Solaris 11.3.22.3.0 Update Is Not Installed (Third Party Components)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2012-6706, CVE-2013-6501, CVE-2014-0978, CVE-2014-1236, CVE-2014-9157, CVE-2015-4021, CVE-2015-4022, CVE-2015-4024, CVE-2015-4025, CVE-2015-4026, CVE-2016-10087, CVE-2016-5385, CVE-2016-6288, CVE-2016-6289, CVE- 2016-6290, CVE-2016-6291, CVE-2016-6292, CVE-2016-6293, CVE-2016-6294, CVE-2016-6295, CVE-2016-6296, CVE-2016- 6297, CVE-2016-9935, CVE-2017-3629, CVE-2017-3632, CVE-2017-5193, CVE-2017-5194, CVE-2017-5195, CVE-2017-5196, CVE-2017-5399, CVE-2017-5403, CVE-2017-5406, CVE-2017-5407, CVE-2017-5411, CVE-2017-5412, CVE-2017-5413, CVE- 2017-5414, CVE-2017-5416, CVE-2017-5418, CVE-2017-5419, CVE-2017-5421, CVE-2017-5422, CVE-2017-5425, CVE-2017- 5426, CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-2017-7755, CVE-2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7760, CVE-2017-7761, CVE-2017-7763, CVE- 2017-7764, CVE-2017-7765, CVE-2017-7766, CVE-2017-7767, CVE-2017-7768, CVE-2017-7778, CVE-2017-7811, CVE-2017- 9468, CVE-2017-9469
Update Details CVE is updated
139072 - Oracle Solaris 11.3.25.3.0 Update Is Not Installed (Third Party Components)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2015-7511, CVE-2016-3492, CVE-2016-5584, CVE-2016-5612, CVE-2016-5624, CVE-2016-5629, CVE-2016-6313, CVE-2016-6662, CVE-2016-6663, CVE-2016-6664, CVE-2016-7440, CVE-2016-8283, CVE-2016-8318, CVE-2017-1000383, CVE-2017-12150, CVE-2017-12151, CVE-2017-12163, CVE-2017-13765, CVE-2017-13766, CVE-2017-13767, CVE-2017-14482, CVE-2017-3238, CVE-2017-3244, CVE-2017-3257, CVE-2017-3258, CVE-2017-3265, CVE-2017-3273, CVE-2017-3291, CVE- 2017-3312, CVE-2017-3634, CVE-2017-3635, CVE-2017-3636, CVE-2017-3641, CVE-2017-3647, CVE-2017-3648, CVE-2017- 3649, CVE-2017-3651, CVE-2017-3652, CVE-2017-3653, CVE-2017-3732, CVE-2017-7526, CVE-2017-7674, CVE-2017-7675, CVE-2017-7783, CVE-2017-7793, CVE-2017-7797, CVE-2017-7805, CVE-2017-7806, CVE-2017-7810, CVE-2017-7814, CVE- 2017-7818, CVE-2017-7819, CVE-2017-7823, CVE-2017-7824, CVE-2017-7825
Update Details CVE is updated
24026 - Delta Electronics CNCSoft Multiple Vulnerabilities Prior To 1.01.09
Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2018-10598, CVE-2018-10636
Update Details Risk is updated
24030 - Microsoft Office 2016 Click-To-Run Aug 2018 Updates
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2018-8375, CVE-2018-8378, CVE-2018-8379, CVE-2018-8382
Update Details Risk is updated
33388 - Oracle Solaris 152922-11 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2008-2086, CVE-2009-3910
Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated
33389 - Oracle Solaris 152921-11 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2008-2086, CVE-2009-3910
Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated
33390 - Oracle Solaris 152919-11 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2008-2086, CVE-2009-3910
Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated
33391 - Oracle Solaris 152920-11 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2008-2086, CVE-2009-3910
Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated
139092 - Oracle Solaris 11.3.29.5.0 Update Is Not Installed (Third Party Components)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2015-7554, CVE-2015-7557, CVE-2015-7558, CVE-2016-2334, CVE-2016-2335, CVE-2016-4348, CVE-2016-6163, CVE-2016-9296, CVE-2017-10965, CVE-2017-10966, CVE-2017-11464, CVE-2017-13726, CVE-2017-13727, CVE-2017-15227, CVE-2017-15228, CVE-2017-15721, CVE-2017-15722, CVE-2017-15723, CVE-2017-17880, CVE-2017-18271, CVE-2017-18272, CVE-2017-18273, CVE-2017-2753, CVE-2017-2885, CVE-2017-3142, CVE-2017-3143, CVE-2017-5753, CVE-2017-5884, CVE- 2017-5885, CVE-2017-7829, CVE-2017-7845, CVE-2017-7846, CVE-2017-7847, CVE-2017-7848, CVE-2017-9468, CVE-2017- 9765, CVE-2018-2753, CVE-2018-2754, CVE-2018-5089, CVE-2018-5091, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117, CVE-2018-5205, CVE- 2018-5206, CVE-2018-5207, CVE-2018-5208, CVE-2018-5334, CVE-2018-5335, CVE-2018-5336
Update Details CVE is updated
160445 - CentOS 6 CESA-2018-2284 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897
Update Details Risk is updated
160446 - CentOS 7 CESA-2018-2285 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897
Update Details Risk is updated
163670 - Oracle Enterprise Linux ELSA-2018-2284 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897
Update Details Risk is updated
163672 - Oracle Enterprise Linux ELSA-2018-2285 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897
Update Details Risk is updated
170996 - Amazon Linux AMI ALAS-2018-1057 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897
Update Details Risk is updated
175426 - Scientific Linux Security ERRATA Important: yum-utils on SL6.x (noarch) (1807-12557)
Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2018-10897
Update Details Risk is updated
175430 - Scientific Linux Security ERRATA Important: yum-utils on SL7.x (noarch) (1807-11881)
Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2018-10897
Update Details Risk is updated
191328 - Fedora Linux 24 FEDORA-2016-3113e71193 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2016-8614, CVE-2016-8628
Update Details Risk is updated
191375 - Fedora Linux 25 FEDORA-2016-3ccb098630 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2016-8614, CVE-2016-8628
Update Details Risk is updated
194215 - Fedora Linux 28 FEDORA-2018-4f0089c995 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897
Update Details Risk is updated
194241 - Fedora Linux 27 FEDORA-2018-3aafb854a9 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897
Update Details Risk is updated
194266 - Fedora Linux 29 FEDORA-2018-357e8e07ce Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897
Update Details Risk is updated
196056 - Red Hat Enterprise Linux RHSA-2018-2285 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897
Update Details Risk is updated
196064 - Red Hat Enterprise Linux RHSA-2018-2284 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10897
Update Details Risk is updated
24045 - (HPESBHF03843) HPE Moonshot Provisioning Manager Multiple Vulnerabilities Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: High CVE: CVE-2018-7072, CVE-2018-7073
Update Details FASLScript is updated
88966 - Slackware Linux 14.0, 14.1, 14.2 SSA:2018-214-01 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes Risk Level: High CVE: CVE-2018-10916
Update Details Risk is updated
139044 - Oracle Solaris 11.3.24.4.0 Update Is Not Installed (Third Party Components)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2014-9913, CVE-2015-7696, CVE-2015-7697, CVE-2016-10328, CVE-2016-1238, CVE-2016-9844, CVE-2017- 1000115, CVE-2017-1000116, CVE-2017-1000117, CVE-2017-10971, CVE-2017-10972, CVE-2017-11114, CVE-2017-11406, CVE-2017-11407, CVE-2017-11408, CVE-2017-11410, CVE-2017-11411, CVE-2017-12562, CVE-2017-12836, CVE-2017-3167, CVE-2017-3169, CVE-2017-7659, CVE-2017-7668, CVE-2017-7679, CVE-2017-7702, CVE-2017-7753, CVE-2017-7762, CVE- 2017-7779, CVE-2017-7782, CVE-2017-7784, CVE-2017-7785, CVE-2017-7786, CVE-2017-7787, CVE-2017-7791, CVE-2017- 7792, CVE-2017-7798, CVE-2017-7800, CVE-2017-7801, CVE-2017-7802, CVE-2017-7803, CVE-2017-7804, CVE-2017-7807, CVE-2017-7809, CVE-2017-8105, CVE-2017-8287, CVE-2017-8779, CVE-2017-8804, CVE-2017-9233, CVE-2017-9350, CVE- 2017-9788, CVE-2017-9789, CVE-2017-9800
Update Details CVE is updated
139085 - Oracle Solaris 11.3.1.5.0 Update Is Not Installed (Third Party Components)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2014-0230, CVE-2014-7810, CVE-2014-8111, CVE-2014-9512, CVE-2015-0228, CVE-2015-0253, CVE-2015-3183, CVE-2015-3185, CVE-2015-4651, CVE-2015-4652, CVE-2015-4891, CVE-2015-5143, CVE-2015-5144, CVE-2015-5600, CVE- 2015-5722, CVE-2015-5963, CVE-2015-5964, CVE-2015-6241, CVE-2015-6242, CVE-2015-6243, CVE-2015-6244, CVE-2015- 6245, CVE-2015-6246, CVE-2015-6247, CVE-2015-6248, CVE-2015-6249, CVE-2016-0440
Update Details CVE is updated
139093 - Oracle Solaris 11.3.31.6.0 Update Is Not Installed (Third Party Components)
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2015-1315, CVE-2015-9262, CVE-2016-10397, CVE-2016-1245, CVE-2016-1283, CVE-2017-1000083, CVE-2017- 1000158, CVE-2017-11142, CVE-2017-11143, CVE-2017-11144, CVE-2017-11145, CVE-2017-11147, CVE-2017-12932, CVE- 2017-15706, CVE-2017-16227, CVE-2017-16611, CVE-2017-16612, CVE-2017-16642, CVE-2017-17784, CVE-2017-17789, CVE- 2017-3735, CVE-2017-3736, CVE-2017-3737, CVE-2017-3738, CVE-2017-5581, CVE-2017-5753, CVE-2017-7392, CVE-2017- 7393, CVE-2017-7394, CVE-2017-7395, CVE-2017-7396, CVE-2017-7890, CVE-2018-1000007, CVE-2018-1000031, CVE-2018- 1000032, CVE-2018-1000033, CVE-2018-1000034, CVE-2018-1000035, CVE-2018-1304, CVE-2018-1305, CVE-2018-2562, CVE-2018-2573, CVE-2018-2583, CVE-2018-2590, CVE-2018-2591, CVE-2018-2612, CVE-2018-2622, CVE-2018-2640, CVE- 2018-2645, CVE-2018-2647, CVE-2018-2665, CVE-2018-2668, CVE-2018-2696, CVE-2018-2703, CVE-2018-2892, CVE-2018- 5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145, CVE-2018-5146, CVE-2018-5148, CVE-2018-5378, CVE-2018-5379, CVE-2018-5381, CVE-2018-5711, CVE-2018-5712, CVE-2018-5732, CVE- 2018-5733, CVE-2018-7050, CVE-2018-7051, CVE-2018-7052, CVE-2018-7053, CVE-2018-7054, CVE-2018-7170, CVE-2018- 7182, CVE-2018-7183, CVE-2018-7184, CVE-2018-7185, CVE-2018-7584
Update Details CVE is updated
147047 - SuSE Linux 42.3 openSUSE-SU-2018:2487-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2015-9262
Update Details Risk is updated
170993 - Amazon Linux AMI ALAS-2018-1049 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-5390
Update Details Risk is updated
186329 - Ubuntu Linux 18.04 USN-3732-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: High CVE: CVE-2018-5390
Update Details Risk is updated
186340 - Ubuntu Linux 16.04 USN-3732-2 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: High CVE: CVE-2018-5390
Update Details Risk is updated
186381 - Ubuntu Linux 12.04 USN-3763-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: High CVE: CVE-2018-5390
Update Details Risk is updated
196072 - Red Hat Enterprise Linux RHSA-2018-2372 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2018-10931
Update Details Risk is updated
33145 - Oracle Solaris 150401-63 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2004-0230, CVE-2013-0399, CVE-2013-3799, CVE-2013-5862, CVE-2013-5876, CVE-2014-4215, CVE-2014-6575, CVE-2015-0375, CVE-2015-0471, CVE-2015-2580, CVE-2015-4869, CVE-2016-3419, CVE-2016-3441, CVE-2016-3453, CVE- 2016-5544, CVE-2016-5553, CVE-2017-10004, CVE-2017-10036, CVE-2017-10042, CVE-2017-10122, CVE-2018-1171, CVE- 2018-2710, CVE-2018-2717, CVE-2018-2764, CVE-2018-2903
Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated
131122 - Debian Linux 8.0, 9.0 DSA-4216-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10847
Update Details Risk is updated
146759 - SuSE Linux 15.0 openSUSE-SU-2018:1632-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10847
Update Details Risk is updated
146762 - SuSE Linux 42.3 openSUSE-SU-2018:1627-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10847
Update Details Risk is updated
147113 - SuSE Linux 42.3 openSUSE-SU-2018:2851-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000222
Update Details Risk is updated
147131 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:2837-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000222
Update Details Risk is updated
147133 - SuSE Linux 15.0 openSUSE-SU-2018:2941-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000222
Update Details Risk is updated
147138 - SuSE Linux 15.0 openSUSE-SU-2018:2790-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15120
Update Details Risk is updated
147153 - SuSE Linux 15.0 openSUSE-SU-2018:2849-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000222
Update Details Risk is updated
147184 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:3070-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000223
Update Details Risk is updated
182805 - FreeBSD pango Remote DoS Vulnerability (5a757a31-f98e-4bd4-8a85-f1c0f3409769)
Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15120
Update Details Risk is updated
193785 - Fedora Linux 27 FEDORA-2018-455803056d Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10847
Update Details Risk is updated
193788 - Fedora Linux 28 FEDORA-2018-18f8c6ce79 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-10847
Update Details Risk is updated
194143 - Fedora Linux 28 FEDORA-2018-5bf744beee Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-1000222
Update Details Risk is updated
194156 - Fedora Linux 27 FEDORA-2018-83116f8692 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15120
Update Details Risk is updated
33332 - Oracle Solaris 152264-02 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7236, CVE-2018-3172
Update Details Name is updated Description is updated Observation is updated Recommendation is updated CVE is updated FASLScript is updated
33335 - Oracle Solaris 152265-02 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7236, CVE-2018-3172
Update Details Name is updated Description is updated Observation is updated Recommendation is updated CVE is updated FASLScript is updated
131187 - Debian Linux 9.0 DSA-4280-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15473
Update Details Risk is updated
145607 - SuSE Linux 42.2 openSUSE-SU-2017:0910-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-9579
Update Details Risk is updated
146889 - SuSE SLES 11 SP4 SUSE-SU-2018:2142-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14348
Update Details Risk is updated
146891 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:2143-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14348 Update Details Risk is updated
146942 - SuSE Linux 42.3 openSUSE-SU-2018:2241-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14348
Update Details Risk is updated
147003 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:2468-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14348
Update Details Risk is updated
171010 - Amazon Linux AMI ALAS-2018-1075 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15473
Update Details Risk is updated
182760 - FreeBSD FreeBSD Resource Exhaustion In TCP Reassembly (3c2eea8c-99bf-11e8-8bee-a4badb2f4699)
Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-6922
Update Details Risk is updated
182787 - FreeBSD Containous Traefik Exposes The Configuration And Secret (fe818607-b5ff-11e8-856b-485b3931c969)
Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15598
Update Details Risk is updated
194053 - Fedora Linux 28 FEDORA-2018-f6adf1cb62 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14348
Update Details Risk is updated
194109 - Fedora Linux 28 FEDORA-2018-065a7722ee Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15473
Update Details Risk is updated
194135 - Fedora Linux 28 FEDORA-2018-8fd21e2a72 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15560
Update Details Risk is updated
194152 - Fedora Linux 27 FEDORA-2018-a42eb4ac61 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15560
Update Details Risk is updated
194169 - Fedora Linux 27 FEDORA-2018-f56ded11c4 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15473
Update Details Risk is updated
194187 - Fedora Linux 29 FEDORA-2018-4f06058324 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-15560
Update Details Risk is updated 33162 - Oracle Solaris 150400-63 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2004-0230, CVE-2013-5862, CVE-2013-5876, CVE-2014-0447, CVE-2014-6473, CVE-2014-6575, CVE-2015-0375, CVE-2015-0471, CVE-2015-2580, CVE-2015-2589, CVE-2015-4869, CVE-2016-3419, CVE-2016-3441, CVE-2016-3453, CVE- 2016-5553, CVE-2017-10004, CVE-2017-10036, CVE-2017-10042, CVE-2017-10122, CVE-2018-1171, CVE-2018-2710, CVE- 2018-2717, CVE-2018-2764, CVE-2018-2903
Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated
194022 - Fedora Linux 27 FEDORA-2018-dbb0d41078 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773, CVE-2018-14774
Update Details Risk is updated
194023 - Fedora Linux 28 FEDORA-2018-732f45d43e Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773, CVE-2018-14774
Update Details Risk is updated
194025 - Fedora Linux 28 FEDORA-2018-9b54497b6e Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773, CVE-2018-14774
Update Details Risk is updated
194044 - Fedora Linux 27 FEDORA-2018-7f43cbdb69 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773
Update Details Risk is updated
194054 - Fedora Linux 27 FEDORA-2018-4deae442f2 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773, CVE-2018-14774
Update Details Risk is updated
194060 - Fedora Linux 28 FEDORA-2018-9c38d1dc1d Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773, CVE-2018-14774
Update Details Risk is updated
194063 - Fedora Linux 28 FEDORA-2018-4a606489ae Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-14773, CVE-2018-14774
Update Details Risk is updated
194274 - Fedora Linux 29 FEDORA-2018-1b7b0ad759 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2018-11771
Update Details Risk is updated
33319 - Oracle Solaris 151913-13 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated
33323 - Oracle Solaris 151912-13 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated 33349 - Oracle Solaris 152101-91 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated
33350 - Oracle Solaris 152100-91 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated
147018 - SuSE Linux 15.0 openSUSE-SU-2018:2400-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Low CVE: CVE-2018-10858, CVE-2018-10918, CVE-2018-10919, CVE-2018-1139, CVE-2018-1140
Update Details Risk is updated
182014 - FreeBSD tiff Buffer Overflow (0ab66088-4aa5-11e6-a7bd-14dae9d210b8)
Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-2016-5314, CVE-2016-5320, CVE-2016-5875
Update Details CVE is updated
146993 - SuSE Linux 15.0 openSUSE-SU-2018:2316-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Low CVE: CVE-2018-6556
Update Details Risk is updated
186333 - Ubuntu Linux 18.04 USN-3730-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2018-6556 Update Details Risk is updated
70131 - f5.fasl3.inc
Category: General Vulnerability Assessment -> NonIntrusive -> Invalid Category Risk Level: Informational CVE: CVE-MAP-NOMATCH
Update Details FASLScript is updated
DELETED CHECKS
33336 - Oracle Solaris 152099-91 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
33339 - Oracle Solaris 152097-91 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
33340 - Oracle Solaris 152098-91 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
33341 - Oracle Solaris 152096-91 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH
ADDITIONAL NOTES
33336 - was flagged as obsolete by the vendor. 33339 - was flagged as obsolete by the vendor. 33340 - was flagged as obsolete by the vendor. 33341 - was flagged as obsolete by the vendor.
HOW TO UPDATE
FS1000 APPLIANCE customers should follow the instructions for Enterprise/Professional customers, below. In addition, we strongly urge all appliance customers to authorize and install any Windows Update critical patches. The appliance will auto-download any critical updates but will wait for your explicit authorization before installing. FOUNDSTONE ENTERPRISE and PROFESSIONAL customers may obtain these new scripts using the FSUpdate Utility by selecting "FoundScan Update" on the help menu. Make sure that you have a valid FSUpdate username and password. The new vulnerability scripts will be automatically included in your scans if you have selected that option by right-clicking the selected vulnerability category and checking the "Run New Checks" checkbox.
MANAGED SERVICE CUSTOMERS already have the newest update applied to their environment. The new vulnerability scripts will be automatically included when your scans are next scheduled, provided the Run New Scripts option has been turned on.
MCAFEE TECHNICAL SUPPORT
ServicePortal: https://mysupport.mcafee.com Multi-National Phone Support available here: http://www.mcafee.com/us/about/contact/index.html Non-US customers - Select your country from the list of Worldwide Offices.
This email may contain confidential and privileged material for the sole use of the intended recipient. Any review or distribution by others is strictly prohibited. If you are not the intended recipient please contact the sender and delete all copies.
Copyright 2018 McAfee, Inc. McAfee is a registered trademark of McAfee, Inc. and/or its affiliates