The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1308 advisory.

  - apache-commons-beanutils: does not suppresses the class     property in PropertyUtilsBean by default     (CVE-2019-10086)

  - nimbus-jose-jwt: Uncaught exceptions while parsing a JWT     (CVE-2019-17195)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1289 advisory.

  - haproxy: malformed HTTP/2 requests can lead to out-of-     bounds writes (CVE-2020-11100)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1288 advisory.

  - haproxy: malformed HTTP/2 requests can lead to out-of-     bounds writes (CVE-2020-11100)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1296 advisory.

  - QEMU: block: iscsi: OOB heap access via an unexpected     response of iSCSI Server (CVE-2020-1711)

  - QEMU: slirp: OOB buffer access while emulating tcp     protocols in tcp_emu() (CVE-2020-7039)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1292 advisory.

  - QEMU: Slirp: potential OOB access due to unsafe     snprintf() usages (CVE-2020-8608)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1293 advisory.

  - ICU: Integer overflow in UnicodeString::doAppend()     (CVE-2020-10531)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1300 advisory.

  - QEMU: block: iscsi: OOB heap access via an unexpected     response of iSCSI Server (CVE-2020-1711)

  - QEMU: slirp: OOB buffer access while emulating tcp     protocols in tcp_emu() (CVE-2020-7039)

  - QEMU: Slirp: potential OOB access due to unsafe     snprintf() usages (CVE-2020-8608)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1185 advisory.

  - libsndfile: stack-based buffer overflow in sndfile-     deinterleave utility (CVE-2018-13139)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1267 advisory.

  - ROHNP: Key Extraction Side Channel in Multiple Crypto     Libraries (CVE-2018-0495)

  - nss: Out-of-bounds write when passing an output buffer     smaller than the block size to NSC_EncryptUpdate     (CVE-2019-11745)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1269 advisory.

  - ipa: Batch API logging user passwords to     /var/log/httpd/error_log (CVE-2019-10195)

  - ipa: Denial of service in IPA server due to wrong use of     ber_scanf() (CVE-2019-14867)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1265 advisory.

  - procps-ng, procps: Local privilege escalation in top     (CVE-2018-1122)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1268 advisory.

  - python: DOS via regular expression catastrophic     backtracking in apop() method in pop3lib (CVE-2018-1060)

  - python: DOS via regular expression backtracking in     difflib.IS_LINE_JUNK method in difflib (CVE-2018-1061)

  - python: Missing salt initialization in _elementtree.c     module (CVE-2018-14647)

  - python: CRLF injection via the query part of the url     passed to urlopen() (CVE-2019-9740)

  - python: CRLF injection via the path part of the url     passed to urlopen() (CVE-2019-9947)

  - python: Undocumented local_file protocol allows remote     attackers to bypass protection mechanisms     (CVE-2019-9948)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1266 advisory.

  - kernel: heap overflow in mwifiex_update_vs_ie() function     of Marvell WiFi driver (CVE-2019-14816)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1264 advisory.

  - systemd: line splitting via fgets() allows for state     injection during daemon-reexec (CVE-2018-15686)

  - systemd: out-of-bounds read when parsing a crafted     syslog message (CVE-2018-16866)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:1270 advisory.

  - usrsctp: Out of bounds reads in     sctp_load_addresses_from_init() (CVE-2019-20503)

  - chromium-browser: Use after free in WebGL     (CVE-2020-6422)

  - chromium-browser: Use after free in media     (CVE-2020-6424)

  - chromium-browser: Insufficient policy enforcement in     extensions (CVE-2020-6425)

  - chromium-browser: Inappropriate implementation in V8     (CVE-2020-6426)

  - chromium-browser: Use after free in audio     (CVE-2020-6427, CVE-2020-6428, CVE-2020-6429,     CVE-2020-6449)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:1231 advisory.

  - proglottis/gpgme: Use-after-free in GPGME bindings     during container image pull (CVE-2020-8945)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1234 advisory.

  - runc: AppArmor/SELinux bypass with malicious image that     specifies a volume at /proc (CVE-2019-16884)

  - containers/image: Container images read entire image     manifest into memory (CVE-2020-1702)

  - proglottis/gpgme: Use-after-free in GPGME bindings     during container image pull (CVE-2020-8945)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1226 advisory.

  - dpdk: possible memory leak leads to denial of service     (CVE-2019-14818)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1230 advisory.

  - proglottis/gpgme: Use-after-free in GPGME bindings     during container image pull (CVE-2020-8945)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1227 advisory.

  - podman: resolving symlink in host filesystem leads to     unexpected results of copy operation (CVE-2019-18466)

  - containers/image: Container images read entire image     manifest into memory (CVE-2020-1702)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1016 advisory.

  - kernel: out of bound read in DVB connexant driver.
    (CVE-2015-9289)

  - kernel: Missing permissions check for request_key()     destination allows local attackers to add keys to     keyring without Write permission (CVE-2017-17807)

  - kernel: oob memory read in hso_probe in     drivers/net/usb/hso.c (CVE-2018-19985)

  - kernel: usb: missing size check in the
    __usb_get_extra_descriptor() leading to DoS     (CVE-2018-20169)

  - kernel: denial of service via ioctl call in network tun     handling (CVE-2018-7191)

  - kernel: null-pointer dereference in     hci_uart_set_flow_control (CVE-2019-10207)

  - Kernel: net: weak IP ID generation leads to remote     device tracking (CVE-2019-10638)

  - Kernel: net: using kernel space address bits to derive     IP ID may potentially break KASLR (CVE-2019-10639)

  - kernel: ASLR bypass for setuid binaries due to late     install_exec_creds() (CVE-2019-11190)

  - kernel: sensitive information disclosure from kernel     stack memory via HIDPCONNADD command (CVE-2019-11884)

  - kernel: unchecked kstrdup of fwstr in     drm_load_edid_firmware leads to denial of service     (CVE-2019-12382)

  - kernel: use-after-free in arch/x86/lib/insn-eval.c     (CVE-2019-13233)

  - kernel: denial of service in     arch/powerpc/kernel/signal_32.c and     arch/powerpc/kernel/signal_64.c via sigreturn() system     call (CVE-2019-13648)

  - kernel: integer overflow and OOB read in     drivers/block/floppy.c (CVE-2019-14283)

  - kernel: memory leak in register_queue_kobjects() in     net/core/net-sysfs.c leads to denial of service     (CVE-2019-15916)

  - kernel: buffer-overflow hardening in WiFi beacon     validation code. (CVE-2019-16746)

  - kernel: (powerpc) incomplete Spectre-RSB mitigation     leads to information exposure (CVE-2019-18660)

  - kernel: perf_event_open() and execve() race in setuid     programs allows a data leak (CVE-2019-3901)

  - kernel: brcmfmac frame validation bypass (CVE-2019-9503)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:1037 advisory.

  - advancecomp: integer overflow in png_compress in     pngex.cc (CVE-2019-9210)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1070 advisory.

  - kernel: out of bound read in DVB connexant driver.
    (CVE-2015-9289)

  - kernel: Missing permissions check for request_key()     destination allows local attackers to add keys to     keyring without Write permission (CVE-2017-17807)

  - kernel: oob memory read in hso_probe in     drivers/net/usb/hso.c (CVE-2018-19985)

  - kernel: usb: missing size check in the
    __usb_get_extra_descriptor() leading to DoS     (CVE-2018-20169)

  - kernel: denial of service via ioctl call in network tun     handling (CVE-2018-7191)

  - kernel: null-pointer dereference in     hci_uart_set_flow_control (CVE-2019-10207)

  - Kernel: net: weak IP ID generation leads to remote     device tracking (CVE-2019-10638)

  - Kernel: net: using kernel space address bits to derive     IP ID may potentially break KASLR (CVE-2019-10639)

  - kernel: ASLR bypass for setuid binaries due to late     install_exec_creds() (CVE-2019-11190)

  - kernel: sensitive information disclosure from kernel     stack memory via HIDPCONNADD command (CVE-2019-11884)

  - kernel: unchecked kstrdup of fwstr in     drm_load_edid_firmware leads to denial of service     (CVE-2019-12382)

  - kernel: use-after-free in arch/x86/lib/insn-eval.c     (CVE-2019-13233)

  - kernel: integer overflow and OOB read in     drivers/block/floppy.c (CVE-2019-14283)

  - kernel: memory leak in register_queue_kobjects() in     net/core/net-sysfs.c leads to denial of service     (CVE-2019-15916)

  - kernel: buffer-overflow hardening in WiFi beacon     validation code. (CVE-2019-16746)

  - kernel: perf_event_open() and execve() race in setuid     programs allows a data leak (CVE-2019-3901)

  - kernel: brcmfmac frame validation bypass (CVE-2019-9503)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1050 advisory.

  - cups: Local privilege escalation to root due to insecure     environment variable handling (CVE-2018-4180)

  - cups: Manipulation of cupsd.conf by a local attacker     resulting in limited reads of arbitrary files as root     (CVE-2018-4181)

  - cups: Predictable session cookie breaks CSRF protection     (CVE-2018-4700)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1047 advisory.

  - wireshark: Out-of-bounds read in packet-ldss.c     (CVE-2018-11362)

  - wireshark: Multiple dissectors could crash (wnpa-     sec-2018-36) (CVE-2018-14340)

  - wireshark: DICOM dissector infinite loop (wnpa-     sec-2018-39) (CVE-2018-14341)

  - wireshark: Bazaar dissector infinite loop (wnpa-     sec-2018-40) (CVE-2018-14368)

  - wireshark: Radiotap dissector crash (CVE-2018-16057)

  - wireshark: Infinite loop in the MMSE dissector     (CVE-2018-19622)

  - wireshark: SIGCOMP dissector crash in packet-sigcomp.c     (CVE-2018-7418)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1034 advisory.

  - doxygen: cross-site scripting in     templates/html/search_opensearch.php (CVE-2016-10245)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1167 advisory.

  - nbdkit: denial of service due to premature opening of     back-end connection (CVE-2019-14850)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1020 advisory.

  - curl: TFTP receive heap buffer overflow in     tftp_receive_packet() function (CVE-2019-5436)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1121 advisory.

  - httpd: Out of bounds write in mod_authnz_ldap when using     too small Accept-Language values (CVE-2017-15710)

  - httpd: Out of bounds access after failure in reading the     HTTP request (CVE-2018-1301)

  - httpd: mod_session_cookie does not respect expiry time     (CVE-2018-17199)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1190 advisory.

  - libxml2: DoS caused by incorrect error detection during     XZ decompression (CVE-2015-8035)

  - libxml2: Use after free triggered by XPointer paths     beginning with range-to (CVE-2016-5131)

  - libxml2: Use after free in     xmlXPathCompOpEvalPositionalPredicate() function in     xpath.c (CVE-2017-15412)

  - libxml2: Unrestricted memory usage in xz_head() function     in xzlib.c (CVE-2017-18258)

  - libxml2: NULL pointer dereference in     xmlXPathCompOpEval() function in xpath.c     (CVE-2018-14404)

  - libxml2: Infinite loop caused by incorrect error     detection during LZMA decompression (CVE-2018-14567)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1022 advisory.

  - file: out-of-bounds read via a crafted ELF file     (CVE-2018-10360)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1061 advisory.

  - bind: An assertion failure if a trust anchor rolls over     to an unsupported key algorithm when using managed-keys     (CVE-2018-5745)

  - bind: Controls for zone transfers may not be properly     applied to DLZs if the zones are writable     (CVE-2019-6465)

  - bind: TCP Pipelining doesn't limit TCP clients on a     single connection (CVE-2019-6477)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1151 advisory.

  - libreoffice: LibreLogo script can be manipulated into     executing arbitrary python commands (CVE-2019-9848)

  - libreoffice: Remote resources protection module not     applied to bullet graphics (CVE-2019-9849)

  - libreoffice: Insufficient URL validation allowing     LibreLogo script execution (CVE-2019-9850)

  - libreoffice: LibreLogo global-event script execution     (CVE-2019-9851)

  - libreoffice: Insufficient URL encoding flaw in allowed     script location check (CVE-2019-9852)

  - libreoffice: Insufficient URL decoding flaw in     categorizing macro location (CVE-2019-9853)

  - libreoffice: Unsafe URL assembly flaw in allowed script     location check (CVE-2019-9854)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1189 advisory.

  - libqb: Insecure treatment of IPC (temporary) files     (CVE-2019-12779)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1011 advisory.

  - expat: Integer overflow leading to buffer overflow in     XML_GetBuffer() (CVE-2015-2716)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1208 advisory.

  - QEMU: Slirp: potential OOB access due to unsafe     snprintf() usages (CVE-2020-8608)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1051 advisory.

  - Libosinfo: osinfo-install-script option leaks password     via command line argument (CVE-2019-13313)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1081 advisory.

  - net-snmp: NULL pointer exception in snmp_oid_compare in     snmplib/snmp_api.c resulting in a denial of service     (CVE-2018-18066)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1113 advisory.

  - bash: BASH_CMD is writable in restricted bash shells     (CVE-2019-9924)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1068 advisory.

  - squid: Incorrect pointer handling when processing ESI     Responses can lead to denial of service     (CVE-2018-1000024)

  - squid: Incorrect pointer handling in HTTP processing and     certificate download can lead to denial of service     (CVE-2018-1000027)

  - squid: XSS via user_name or auth parameter in     cachemgr.cgi (CVE-2019-13345)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1135 advisory.

  - polkit: Improper authorization in     polkit_backend_interactive_authority_check_authorization     function in polkitd (CVE-2018-1116)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:1131 advisory.

  - python: Cookie domain check returns incorrect results     (CVE-2018-20852)

  - python: email.utils.parseaddr wrongly parses email     addresses (CVE-2019-16056)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1045 advisory.

  - lftp: particular remote file names may lead to current     working directory erased (CVE-2018-10916)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1173 advisory.

  - okular: Directory traversal in function     unpackDocumentArchive() in core/document.cpp     (CVE-2018-1000801)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1132 advisory.

  - python: Cookie domain check returns incorrect results     (CVE-2018-20852)

  - python: email.utils.parseaddr wrongly parses email     addresses (CVE-2019-16056)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:1091 advisory.

  - python-twisted: Improper neutralization of CRLF     characters in URIs and HTTP methods (CVE-2019-12387)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1084 advisory.

  - samba: Combination of parameters and permissions can     allow user to escape from the share path definition     (CVE-2019-10197)

  - samba: smb client vulnerable to filenames containing     path separators (CVE-2019-10218)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:1181 advisory.

  - unzip: overlapping of files in ZIP container leads to     denial of service (CVE-2019-13232)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1000 advisory.

  - rsyslog: heap-based overflow in     contrib/pmaixforwardedfrom/pmaixforwardedfrom.c     (CVE-2019-17041)

  - rsyslog: heap-based overflow in     contrib/pmcisconames/pmcisconames.c (CVE-2019-17042)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1150 advisory.

  - QEMU: block: iscsi: OOB heap access via an unexpected     response of iSCSI Server (CVE-2020-1711)

  - QEMU: slirp: OOB buffer access while emulating tcp     protocols in tcp_emu() (CVE-2020-7039)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Severity
135185	RHEL 7 : Red Hat Virtualization Engine security, bug fix 4.3.9 (Low) (RHSA-2020:1308)	High
135184	RHEL 8 : haproxy (RHSA-2020:1289)	Critical
135183	RHEL 8 : haproxy (RHSA-2020:1288)	Critical
135176	RHEL 7 : qemu-kvm-rhev (RHSA-2020:1296)	High
135175	RHEL 7 : qemu-kvm-rhev (RHSA-2020:1292)	Critical
135174	RHEL 8 : nodejs:12 (RHSA-2020:1293)	Medium
135173	RHEL 7 : qemu-kvm-rhev (RHSA-2020:1300)	Critical
135095	RHEL 7 : libsndfile (RHSA-2020:1185)	Medium
135092	RHEL 7 : nss-softokn (RHSA-2020:1267)	Medium
135091	RHEL 8 : idm:DL1 (RHSA-2020:1269)	Medium
135090	RHEL 7 : procps-ng (RHSA-2020:1265)	Medium
135089	RHEL 7 : python (RHSA-2020:1268)	Medium
135088	RHEL 7 : kernel (RHSA-2020:1266)	High
135087	RHEL 7 : systemd (RHSA-2020:1264)	Critical
135086	RHEL 6 : chromium-browser (RHSA-2020:1270)	High
135085	RHEL 7 : buildah (RHSA-2020:1231)	High
135084	RHEL 7 : docker (RHSA-2020:1234)	High
135083	RHEL 7 : dpdk (RHSA-2020:1226)	Medium
135082	RHEL 7 : skopeo (RHSA-2020:1230)	High
135081	RHEL 7 : podman (RHSA-2020:1227)	Medium
135080	RHEL 7 : kernel (RHSA-2020:1016)	High
135079	RHEL 7 : advancecomp (RHSA-2020:1037)	Medium
135078	RHEL 7 : kernel-rt (RHSA-2020:1070)	High
135077	RHEL 7 : cups (RHSA-2020:1050)	Medium
135076	RHEL 7 : wireshark (RHSA-2020:1047)	High
135075	RHEL 7 : doxygen (RHSA-2020:1034)	Medium
135074	RHEL 7 : nbdkit (RHSA-2020:1167)	Low
135073	RHEL 7 : curl (RHSA-2020:1020)	Medium
135072	RHEL 7 : httpd (RHSA-2020:1121)	Medium
135071	RHEL 7 : libxml2 (RHSA-2020:1190)	Medium
135070	RHEL 7 : file (RHSA-2020:1022)	Medium
135069	RHEL 7 : bind (RHSA-2020:1061)	Medium
135068	RHEL 7 : libreoffice (RHSA-2020:1151)	High
135067	RHEL 7 : libqb (RHSA-2020:1189)	Medium
135066	RHEL 7 : expat (RHSA-2020:1011)	High
135065	RHEL 7 : qemu-kvm (RHSA-2020:1208)	Critical
135064	RHEL 7 : libosinfo (RHSA-2020:1051)	Low
135063	RHEL 7 : net-snmp (RHSA-2020:1081)	Medium
135062	RHEL 7 : bash (RHSA-2020:1113)	High
135061	RHEL 7 : squid (RHSA-2020:1068)	Medium
135060	RHEL 7 : polkit (RHSA-2020:1135)	Low
135059	RHEL 7 : python (RHSA-2020:1131)	Medium
135058	RHEL 7 : lftp (RHSA-2020:1045)	High
135057	RHEL 7 : okular (RHSA-2020:1173)	Medium
135056	RHEL 7 : python3 (RHSA-2020:1132)	Medium
135055	RHEL 7 : python-twisted-web (RHSA-2020:1091)	Medium
135054	RHEL 7 : samba (RHSA-2020:1084)	Medium
135053	RHEL 7 : unzip (RHSA-2020:1181)	Medium
135052	RHEL 7 : rsyslog (RHSA-2020:1000)	High
135051	RHEL 7 : qemu-kvm-ma (RHSA-2020:1150)	High

Red Hat Local Security Checks Family for Nessus