Detections
Analytics

Unsupported linux kernel version detected in banner reporting (PCI-DSS check)

critical Nessus Plugin ID 122157

Language:

Synopsis

The Linux kernel version reported in banners is no longer supported.

Description

A service banner response from the remote host indicates a Linux kernel install at a level that may no longer be supported, where kernel development and security patching has ceased.

This plugin only runs when 'Check for PCI-DSS compliance' is enabled in the scan policy. It does not run if local security checks are enabled. It runs off of self-reported kernel versions in banners.

Solution

Update the version of the Linux kernel running on the system.

See Also

https://www.kernel.org/category/releases.html

https://en.wikipedia.org/wiki/Linux_kernel

Plugin Details

Severity: Critical

ID: 122157

File Name: kernel_banner_unsupported.nasl

Version: 1.2

Type: remote

Family: Web Servers

Published: 2/14/2019

Updated: 4/22/2020

Supported Sensors: Nessus

Risk Information

CVSS Score Rationale: Tenable score for unsupported software.

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: manual

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

Required KB Items: Settings/PCI_DSS

Excluded KB Items: Host/local_checks_enabled