The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3735 advisory.

  - dovecot: Resource exhaustion via deeply nested MIME parts (CVE-2020-12100)

  - dovecot: Out of bound reads in dovecot NTLM implementation (CVE-2020-12673)

  - dovecot: Crash due to assert in RPA implementation (CVE-2020-12674)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3757 advisory.

  - mysql: Information Schema unspecified vulnerability (CPU Oct 2019) (CVE-2019-2911)

  - mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2019) (CVE-2019-2914,     CVE-2019-2957)

  - mysql: InnoDB unspecified vulnerability (CPU Oct 2019) (CVE-2019-2938, CVE-2019-2963, CVE-2019-2968,     CVE-2019-3018)

  - mysql: Server: PS unspecified vulnerability (CPU Oct 2019) (CVE-2019-2946)

  - mysql: Server: Replication unspecified vulnerability (CPU Oct 2019) (CVE-2019-2960)

  - mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019) (CVE-2019-2966, CVE-2019-2967,     CVE-2019-2974, CVE-2019-2982, CVE-2019-2991, CVE-2019-2998)

  - mysql: Server: C API unspecified vulnerability (CPU Oct 2019) (CVE-2019-2993, CVE-2019-3011)

  - mysql: Server: DDL unspecified vulnerability (CPU Oct 2019) (CVE-2019-2997)

  - mysql: Server: Parser unspecified vulnerability (CPU Oct 2019) (CVE-2019-3004)

  - mysql: Server: Connection unspecified vulnerability (CPU Oct 2019) (CVE-2019-3009)

  - mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020) (CVE-2020-14539, CVE-2020-14547,     CVE-2020-14597, CVE-2020-14614, CVE-2020-14654, CVE-2020-14680, CVE-2020-14725)

  - mysql: Server: DML unspecified vulnerability (CPU Jul 2020) (CVE-2020-14540, CVE-2020-14575,     CVE-2020-14620)

  - mysql: C API unspecified vulnerability (CPU Jul 2020) (CVE-2020-14550)

  - mysql: Server: Pluggable Auth unspecified vulnerability (CPU Jul 2020) (CVE-2020-14553)

  - mysql: Server: Information Schema unspecified vulnerability (CPU Jul 2020) (CVE-2020-14559)

  - mysql: Server: Replication unspecified vulnerability (CPU Jul 2020) (CVE-2020-14567)

  - mysql: InnoDB unspecified vulnerability (CPU Jul 2020) (CVE-2020-14568, CVE-2020-14623, CVE-2020-14633,     CVE-2020-14634)

  - mysql: Server: UDF unspecified vulnerability (CPU Jul 2020) (CVE-2020-14576)

  - mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020) (CVE-2020-14586,     CVE-2020-14663, CVE-2020-14678, CVE-2020-14697, CVE-2020-14702)

  - mysql: Server: Parser unspecified vulnerability (CPU Jul 2020) (CVE-2020-14619)

  - mysql: Server: JSON unspecified vulnerability (CPU Jul 2020) (CVE-2020-14624)

  - mysql: Server: Security: Audit unspecified vulnerability (CPU Jul 2020) (CVE-2020-14631)

  - mysql: Server: Options unspecified vulnerability (CPU Jul 2020) (CVE-2020-14632)

  - mysql: Server: Security: Roles unspecified vulnerability (CPU Jul 2020) (CVE-2020-14641, CVE-2020-14643,     CVE-2020-14651)

  - mysql: Server: Locking unspecified vulnerability (CPU Jul 2020) (CVE-2020-14656)

  - mysql: C API unspecified vulnerability (CPU Jan 2020) (CVE-2020-2570, CVE-2020-2573, CVE-2020-2574)

  - mysql: InnoDB unspecified vulnerability (CPU Jan 2020) (CVE-2020-2577, CVE-2020-2589)

  - mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2020) (CVE-2020-2579, CVE-2020-2660,     CVE-2020-2679, CVE-2020-2686)

  - mysql: Server: DDL unspecified vulnerability (CPU Jan 2020) (CVE-2020-2580)

  - mysql: Server: Options unspecified vulnerability (CPU Jan 2020) (CVE-2020-2584)

  - mysql: Server: DML unspecified vulnerability (CPU Jan 2020) (CVE-2020-2588)

  - mysql: Server: Parser unspecified vulnerability (CPU Jan 2020) (CVE-2020-2627)

  - mysql: Server: Information Schema unspecified vulnerability (CPU Jan 2020) (CVE-2020-2694)

  - mysql: C API unspecified vulnerability (CPU Apr 2020) (CVE-2020-2752, CVE-2020-2922)

  - mysql: Server: Replication unspecified vulnerability (CPU Apr 2020) (CVE-2020-2759, CVE-2020-2763)

  - mysql: InnoDB unspecified vulnerability (CPU Apr 2020) (CVE-2020-2760, CVE-2020-2762, CVE-2020-2814,     CVE-2020-2893, CVE-2020-2895)

  - mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2020) (CVE-2020-2761,     CVE-2020-2774, CVE-2020-2779, CVE-2020-2853)

  - mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020) (CVE-2020-2765, CVE-2020-2892,     CVE-2020-2897, CVE-2020-2901, CVE-2020-2904, CVE-2020-2923, CVE-2020-2924, CVE-2020-2928)

  - mysql: Server: Logging unspecified vulnerability (CPU Apr 2020) (CVE-2020-2770)

  - mysql: Server: DML unspecified vulnerability (CPU Apr 2020) (CVE-2020-2780)

  - mysql: Server: Memcached unspecified vulnerability (CPU Apr 2020) (CVE-2020-2804)

  - mysql: Server: Stored Procedure unspecified vulnerability (CPU Apr 2020) (CVE-2020-2812)

  - mysql: Server: Information Schema unspecified vulnerability (CPU Apr 2020) (CVE-2020-2896)

  - mysql: Server: Charsets unspecified vulnerability (CPU Apr 2020) (CVE-2020-2898)

  - mysql: Server: Connection Handling unspecified vulnerability (CPU Apr 2020) (CVE-2020-2903)

  - mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2020) (CVE-2020-2921)

  - mysql: Server: PS unspecified vulnerability (CPU Apr 2020) (CVE-2020-2925)

  - mysql: Server: Group Replication GCS unspecified vulnerability (CPU Apr 2020) (CVE-2020-2926)

  - mysql: Server: Parser unspecified vulnerability (CPU Apr 2020) (CVE-2020-2930)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3755 advisory.

  - mysql: Information Schema unspecified vulnerability (CPU Oct 2019) (CVE-2019-2911)

  - mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2019) (CVE-2019-2914,     CVE-2019-2957)

  - mysql: InnoDB unspecified vulnerability (CPU Oct 2019) (CVE-2019-2938, CVE-2019-2963, CVE-2019-2968,     CVE-2019-3018)

  - mysql: Server: PS unspecified vulnerability (CPU Oct 2019) (CVE-2019-2946)

  - mysql: Server: Replication unspecified vulnerability (CPU Oct 2019) (CVE-2019-2960)

  - mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019) (CVE-2019-2966, CVE-2019-2967,     CVE-2019-2974, CVE-2019-2982, CVE-2019-2991, CVE-2019-2998)

  - mysql: Server: C API unspecified vulnerability (CPU Oct 2019) (CVE-2019-2993, CVE-2019-3011)

  - mysql: Server: DDL unspecified vulnerability (CPU Oct 2019) (CVE-2019-2997)

  - mysql: Server: Parser unspecified vulnerability (CPU Oct 2019) (CVE-2019-3004)

  - mysql: Server: Connection unspecified vulnerability (CPU Oct 2019) (CVE-2019-3009)

  - mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020) (CVE-2020-14539, CVE-2020-14547,     CVE-2020-14597, CVE-2020-14614, CVE-2020-14654, CVE-2020-14680, CVE-2020-14725)

  - mysql: Server: DML unspecified vulnerability (CPU Jul 2020) (CVE-2020-14540, CVE-2020-14575,     CVE-2020-14620)

  - mysql: C API unspecified vulnerability (CPU Jul 2020) (CVE-2020-14550)

  - mysql: Server: Pluggable Auth unspecified vulnerability (CPU Jul 2020) (CVE-2020-14553)

  - mysql: Server: Information Schema unspecified vulnerability (CPU Jul 2020) (CVE-2020-14559)

  - mysql: Server: Replication unspecified vulnerability (CPU Jul 2020) (CVE-2020-14567)

  - mysql: InnoDB unspecified vulnerability (CPU Jul 2020) (CVE-2020-14568, CVE-2020-14623, CVE-2020-14633,     CVE-2020-14634)

  - mysql: Server: UDF unspecified vulnerability (CPU Jul 2020) (CVE-2020-14576)

  - mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020) (CVE-2020-14586,     CVE-2020-14663, CVE-2020-14678, CVE-2020-14697, CVE-2020-14702)

  - mysql: Server: Parser unspecified vulnerability (CPU Jul 2020) (CVE-2020-14619)

  - mysql: Server: JSON unspecified vulnerability (CPU Jul 2020) (CVE-2020-14624)

  - mysql: Server: Security: Audit unspecified vulnerability (CPU Jul 2020) (CVE-2020-14631)

  - mysql: Server: Options unspecified vulnerability (CPU Jul 2020) (CVE-2020-14632)

  - mysql: Server: Security: Roles unspecified vulnerability (CPU Jul 2020) (CVE-2020-14641, CVE-2020-14643,     CVE-2020-14651)

  - mysql: Server: Locking unspecified vulnerability (CPU Jul 2020) (CVE-2020-14656)

  - mysql: C API unspecified vulnerability (CPU Jan 2020) (CVE-2020-2570, CVE-2020-2573, CVE-2020-2574)

  - mysql: InnoDB unspecified vulnerability (CPU Jan 2020) (CVE-2020-2577, CVE-2020-2589)

  - mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2020) (CVE-2020-2579, CVE-2020-2660,     CVE-2020-2679, CVE-2020-2686)

  - mysql: Server: DDL unspecified vulnerability (CPU Jan 2020) (CVE-2020-2580)

  - mysql: Server: Options unspecified vulnerability (CPU Jan 2020) (CVE-2020-2584)

  - mysql: Server: DML unspecified vulnerability (CPU Jan 2020) (CVE-2020-2588)

  - mysql: Server: Parser unspecified vulnerability (CPU Jan 2020) (CVE-2020-2627)

  - mysql: Server: Information Schema unspecified vulnerability (CPU Jan 2020) (CVE-2020-2694)

  - mysql: C API unspecified vulnerability (CPU Apr 2020) (CVE-2020-2752, CVE-2020-2922)

  - mysql: Server: Replication unspecified vulnerability (CPU Apr 2020) (CVE-2020-2759, CVE-2020-2763)

  - mysql: InnoDB unspecified vulnerability (CPU Apr 2020) (CVE-2020-2760, CVE-2020-2762, CVE-2020-2814,     CVE-2020-2893, CVE-2020-2895)

  - mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2020) (CVE-2020-2761,     CVE-2020-2774, CVE-2020-2779, CVE-2020-2853)

  - mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020) (CVE-2020-2765, CVE-2020-2892,     CVE-2020-2897, CVE-2020-2901, CVE-2020-2904, CVE-2020-2923, CVE-2020-2924, CVE-2020-2928)

  - mysql: Server: Logging unspecified vulnerability (CPU Apr 2020) (CVE-2020-2770)

  - mysql: Server: DML unspecified vulnerability (CPU Apr 2020) (CVE-2020-2780)

  - mysql: Server: Memcached unspecified vulnerability (CPU Apr 2020) (CVE-2020-2804)

  - mysql: Server: Stored Procedure unspecified vulnerability (CPU Apr 2020) (CVE-2020-2812)

  - mysql: Server: Information Schema unspecified vulnerability (CPU Apr 2020) (CVE-2020-2896)

  - mysql: Server: Charsets unspecified vulnerability (CPU Apr 2020) (CVE-2020-2898)

  - mysql: Server: Connection Handling unspecified vulnerability (CPU Apr 2020) (CVE-2020-2903)

  - mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2020) (CVE-2020-2921)

  - mysql: Server: PS unspecified vulnerability (CPU Apr 2020) (CVE-2020-2925)

  - mysql: Server: Group Replication GCS unspecified vulnerability (CPU Apr 2020) (CVE-2020-2926)

  - mysql: Server: Parser unspecified vulnerability (CPU Apr 2020) (CVE-2020-2930)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3756 advisory.

  - librepo: missing path validation in repomd.xml may lead to directory traversal (CVE-2020-14352)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3749 advisory.

  - librepo: missing path validation in repomd.xml may lead to directory traversal (CVE-2020-14352)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3740 advisory.

  - chromium-browser: Insufficient policy enforcement in networking (CVE-2020-15959)

  - chromium-browser: Use after free in video (CVE-2020-6573)

  - chromium-browser: Insufficient policy enforcement in installer (CVE-2020-6574)

  - chromium-browser: Race in Mojo (CVE-2020-6575)

  - chromium-browser: Use after free in offscreen canvas (CVE-2020-6576)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3736 advisory.

  - dovecot: Resource exhaustion via deeply nested MIME parts (CVE-2020-12100)

  - dovecot: Out of bound reads in dovecot NTLM implementation (CVE-2020-12673)

  - dovecot: Crash due to assert in RPA implementation (CVE-2020-12674)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3734 advisory.

  - httpd: Push diary crash on specifically crafted HTTP/2 header (CVE-2020-9490)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3623 advisory.

  - squid: HTTP Request Smuggling could result in cache poisoning (CVE-2020-15810)

  - squid: HTTP Request Splitting could result in cache poisoning (CVE-2020-15811)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3726 advisory.

  - httpd: Push diary crash on specifically crafted HTTP/2 header (CVE-2020-9490)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3723 advisory.

  - chromium-browser: Use after free in presentation API (CVE-2020-6559)

  - chromium-browser: Insufficient policy enforcement in autofill (CVE-2020-6560)

  - chromium-browser: Inappropriate implementation in Content Security Policy (CVE-2020-6561)

  - chromium-browser: Insufficient policy enforcement in Blink (CVE-2020-6562)

  - chromium-browser: Insufficient policy enforcement in intent handling (CVE-2020-6563, CVE-2020-6568)

  - chromium-browser: Incorrect security UI in permissions (CVE-2020-6564)

  - chromium-browser: Incorrect security UI in Omnibox (CVE-2020-6565, CVE-2020-6571)

  - chromium-browser: Insufficient policy enforcement in media (CVE-2020-6566)

  - chromium-browser: Insufficient validation of untrusted input in command line handling (CVE-2020-6567)

  - chromium-browser: Integer overflow in WebUSB (CVE-2020-6569)

  - chromium-browser: Side-channel information leakage in WebRTC (CVE-2020-6570)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3713 advisory.

  - dovecot: Resource exhaustion via deeply nested MIME parts (CVE-2020-12100)

  - dovecot: Out of bound reads in dovecot NTLM implementation (CVE-2020-12673)

  - dovecot: Crash due to assert in RPA implementation (CVE-2020-12674)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3714 advisory.

  - httpd: Push diary crash on specifically crafted HTTP/2 header (CVE-2020-9490)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3704 advisory.

  - openstack-nova: Soft reboot after live-migration reverts instance to original source domain XML     (CVE-2020-17376)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3616 advisory.

  - jenkins-script-security-plugin: sandbox protection bypass leads to execute arbitrary code in sandboxed     scripts (CVE-2019-16538)

  - jenkins-pipeline-groovy-plugin: sandbox protection bypass through default parameter expressions in CPS-     transformed methods (CVE-2020-2109)

  - jenkins-script-security-plugin: sandbox protection bypass during script compilation phase by applying AST     transforming annotations (CVE-2020-2110)

  - jenkins-subversion-plugin: XSS in project repository base url (CVE-2020-2111)

  - jenkins-script-security-plugin: sandbox protection bypass via crafted constructor calls and crafted     constructor bodies (CVE-2020-2134)

  - jenkins-script-security-plugin: sandbox protection bypass leads to arbitrary code execution     (CVE-2020-2135)

  - jenkins-git-plugin: stored cross-site scripting (CVE-2020-2136)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3702 advisory.

  - openstack-nova: Soft reboot after live-migration reverts instance to original source domain XML     (CVE-2020-17376)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3711 advisory.

  - openstack-nova: Soft reboot after live-migration reverts instance to original source domain XML     (CVE-2020-17376)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3708 advisory.

  - openstack-nova: Soft reboot after live-migration reverts instance to original source domain XML     (CVE-2020-17376)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3706 advisory.

  - openstack-nova: Soft reboot after live-migration reverts instance to original source domain XML     (CVE-2020-17376)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3654 advisory.

  - libcroco: Stack overflow in function cr_parser_parse_any_core in cr-parser.c (CVE-2020-12825)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3658 advisory.

  - librepo: missing path validation in repomd.xml may lead to directory traversal (CVE-2020-14352)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3697 advisory.

  - dotnet: ASP.NET cookie prefix spoofing vulnerability (CVE-2020-1045)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3699 advisory.

  - dotnet: ASP.NET cookie prefix spoofing vulnerability (CVE-2020-1045)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3625 advisory.

  - CVE-2020-2182 jenkins-2-plugins: jenkins-credentials-binding-plugin: various flaws [openshift-4]     (CVE-2020-2181)

  - CVE-2020-2181  jenkins-2-plugins: jenkins-credentials-binding-plugin: various flaws [openshift-4]     (CVE-2020-2182)

  - jenkins-script-security-plugin: cross-site scripting vulnerability due to configure sandboxed scripts     (CVE-2020-2190)

  - jenkins-2-plugins/matrix-project: Stored XSS vulnerability in single axis builds tooltips (CVE-2020-2224)

  - jenkins-2-plugins/matrix-project: Stored XSS vulnerability in multiple axis builds tooltips     (CVE-2020-2225)

  - jenkins-2-plugins/matrix-auth: Stored XSS vulnerability in Matrix Authorization Strategy Plugin     (CVE-2020-2226)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3643 advisory.

  - Mozilla: Attacker-induced prompt for extension installation (CVE-2020-15664)

  - Mozilla: Use-After-Free when aborting an operation (CVE-2020-15669)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:3644 advisory.

  - cloud-init: default configuration disabled deletion of SSH host keys (CVE-2018-10896)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3669 advisory.

  - postgresql: Selectivity estimators bypass row security policies (CVE-2019-10130)

  - postgresql: Stack-based buffer overflow via setting a password (CVE-2019-10164)

  - postgresql: TYPE in pg_temp executes arbitrary SQL during SECURITY DEFINER execution (CVE-2019-10208)

  - postgresql: Uncontrolled search path element in logical replication (CVE-2020-14349)

  - postgresql: Uncontrolled search path element in CREATE EXTENSION (CVE-2020-14350)

  - postgresql: ALTER ... DEPENDS ON EXTENSION is missing authorization checks (CVE-2020-1720)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3637 advisory.

  - hibernate: SQL injection issue in Hibernate ORM (CVE-2019-14900)

  - jackson-databind: mishandles the interaction between serialization gadgets and typing which could result     in remote command execution (CVE-2020-10672, CVE-2020-10673)

  - dom4j: XML External Entity vulnerability in default SAX parser (CVE-2020-10683)

  - Undertow: Incomplete fix for CVE-2017-2666 due to permitting invalid characters in HTTP requests     (CVE-2020-10687)

  - hibernate-validator: Improper input validation in the interpolation of constraint error messages     (CVE-2020-10693)

  - wildfly-elytron: session fixation when using FORM authentication (CVE-2020-10714)

  - wildfly: exposed setting of TCCL via the EmbeddedManagedProcess API (CVE-2020-10718)

  - wildfly: unsafe deserialization in Wildfly Enterprise Java Beans (CVE-2020-10740)

  - wildfly: Some EJB transaction objects may get accumulated causing Denial of Service (CVE-2020-14297)

  - wildfly: EJB SessionOpenInvocations may not be removed properly after a response is received causing     Denial of Service (CVE-2020-14307)

  - resteasy: Improper validation of response header in MediaTypeHeaderDelegate.java class (CVE-2020-1695)

  - EAP: field-name is not parsed in accordance to RFC7230 (CVE-2020-1710)

  - Wildfly: Improper authorization issue in WildFlySecurityManager when using alternative protection domain     (CVE-2020-1748)

  - Mojarra: Path traversal via either the loc parameter or the con parameter, incomplete fix of     CVE-2018-14371 (CVE-2020-6950)

  - jackson-databind: Lacks certain xbean-reflect/JNDI blocking (CVE-2020-8840)

  - jackson-databind: Serialization gadgets in shaded-hikari-config (CVE-2020-9546)

  - jackson-databind: Serialization gadgets in ibatis-sqlmap (CVE-2020-9547)

  - jackson-databind: Serialization gadgets in anteros-core (CVE-2020-9548)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3662 advisory.

  - php: Out-of-bounds read due to integer overflow in iconv_mime_decode_headers() (CVE-2019-11039)

  - php: Buffer over-read in exif_read_data() (CVE-2019-11040)

  - php: Heap buffer over-read in exif_scan_thumbnail() (CVE-2019-11041)

  - php: Heap buffer over-read in exif_process_user_comment() (CVE-2019-11042)

  - php: DirectoryIterator class accepts filenames with embedded \0 byte and treats them as terminating at     that byte (CVE-2019-11045)

  - php: Information disclosure in exif_read_data() (CVE-2019-11047)

  - php: Integer wraparounds when receiving multipart forms (CVE-2019-11048)

  - php: Out of bounds read when parsing EXIF information (CVE-2019-11050)

  - oniguruma: Use-after-free in onig_new_deluxe() in regext.c (CVE-2019-13224)

  - oniguruma: NULL pointer dereference in match_at() in regexec.c (CVE-2019-13225)

  - oniguruma: Stack exhaustion in regcomp.c because of recursion in regparse.c (CVE-2019-16163)

  - oniguruma: Heap-based buffer over-read in function gb18030_mbc_enc_len in file gb18030.c (CVE-2019-19203)

  - oniguruma: Heap-based buffer over-read in function fetch_interval_quantifier in regparse.c     (CVE-2019-19204)

  - oniguruma: Heap-based buffer overflow in str_lower_case_match in regexec.c (CVE-2019-19246)

  - pcre: Out of bounds read in JIT mode when \X is used in non-UTF mode (CVE-2019-20454)

  - php: Out of bounds read in php_strip_tags_ex (CVE-2020-7059)

  - php: Global buffer-overflow in mbfl_filt_conv_big5_wchar function (CVE-2020-7060)

  - php: NULL pointer dereference in PHP session upload progress (CVE-2020-7062)

  - php: Files added to tar with Phar::buildFromIterator have all-access permissions (CVE-2020-7063)

  - php: Information disclosure in exif_read_data() function (CVE-2020-7064)

  - php: Using mb_strtolower() function with UTF-32LE encoding leads to potential code execution     (CVE-2020-7065)

  - php: Information disclosure in function get_headers (CVE-2020-7066)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3634 advisory.

  - Mozilla: Attacker-induced prompt for extension installation (CVE-2020-15664)

  - Mozilla: Use-After-Free when aborting an operation (CVE-2020-15669)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3632 advisory.

  - Mozilla: Attacker-induced prompt for extension installation (CVE-2020-15664)

  - Mozilla: Use-After-Free when aborting an operation (CVE-2020-15669)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3639 advisory.

  - hibernate: SQL injection issue in Hibernate ORM (CVE-2019-14900)

  - jackson-databind: mishandles the interaction between serialization gadgets and typing which could result     in remote command execution (CVE-2020-10672, CVE-2020-10673)

  - dom4j: XML External Entity vulnerability in default SAX parser (CVE-2020-10683)

  - Undertow: Incomplete fix for CVE-2017-2666 due to permitting invalid characters in HTTP requests     (CVE-2020-10687)

  - hibernate-validator: Improper input validation in the interpolation of constraint error messages     (CVE-2020-10693)

  - wildfly-elytron: session fixation when using FORM authentication (CVE-2020-10714)

  - wildfly: exposed setting of TCCL via the EmbeddedManagedProcess API (CVE-2020-10718)

  - wildfly: unsafe deserialization in Wildfly Enterprise Java Beans (CVE-2020-10740)

  - wildfly: Some EJB transaction objects may get accumulated causing Denial of Service (CVE-2020-14297)

  - wildfly: EJB SessionOpenInvocations may not be removed properly after a response is received causing     Denial of Service (CVE-2020-14307)

  - resteasy: Improper validation of response header in MediaTypeHeaderDelegate.java class (CVE-2020-1695)

  - EAP: field-name is not parsed in accordance to RFC7230 (CVE-2020-1710)

  - Wildfly: Improper authorization issue in WildFlySecurityManager when using alternative protection domain     (CVE-2020-1748)

  - Mojarra: Path traversal via either the loc parameter or the con parameter, incomplete fix of     CVE-2018-14371 (CVE-2020-6950)

  - jackson-databind: Lacks certain xbean-reflect/JNDI blocking (CVE-2020-8840)

  - jackson-databind: Serialization gadgets in shaded-hikari-config (CVE-2020-9546)

  - jackson-databind: Serialization gadgets in ibatis-sqlmap (CVE-2020-9547)

  - jackson-databind: Serialization gadgets in anteros-core (CVE-2020-9548)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3665 advisory.

  - golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash     (CVE-2020-14040)

  - golang: data race in certain net/http servers including ReverseProxy can lead to DoS (CVE-2020-15586)

  - golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs     (CVE-2020-16845)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3638 advisory.

  - hibernate: SQL injection issue in Hibernate ORM (CVE-2019-14900)

  - jackson-databind: mishandles the interaction between serialization gadgets and typing which could result     in remote command execution (CVE-2020-10672, CVE-2020-10673)

  - dom4j: XML External Entity vulnerability in default SAX parser (CVE-2020-10683)

  - Undertow: Incomplete fix for CVE-2017-2666 due to permitting invalid characters in HTTP requests     (CVE-2020-10687)

  - hibernate-validator: Improper input validation in the interpolation of constraint error messages     (CVE-2020-10693)

  - wildfly-elytron: session fixation when using FORM authentication (CVE-2020-10714)

  - wildfly: exposed setting of TCCL via the EmbeddedManagedProcess API (CVE-2020-10718)

  - wildfly: unsafe deserialization in Wildfly Enterprise Java Beans (CVE-2020-10740)

  - wildfly: Some EJB transaction objects may get accumulated causing Denial of Service (CVE-2020-14297)

  - wildfly: EJB SessionOpenInvocations may not be removed properly after a response is received causing     Denial of Service (CVE-2020-14307)

  - resteasy: Improper validation of response header in MediaTypeHeaderDelegate.java class (CVE-2020-1695)

  - EAP: field-name is not parsed in accordance to RFC7230 (CVE-2020-1710)

  - Wildfly: Improper authorization issue in WildFlySecurityManager when using alternative protection domain     (CVE-2020-1748)

  - Mojarra: Path traversal via either the loc parameter or the con parameter, incomplete fix of     CVE-2018-14371 (CVE-2020-6950)

  - jackson-databind: Lacks certain xbean-reflect/JNDI blocking (CVE-2020-8840)

  - jackson-databind: Serialization gadgets in shaded-hikari-config (CVE-2020-9546)

  - jackson-databind: Serialization gadgets in ibatis-sqlmap (CVE-2020-9547)

  - jackson-databind: Serialization gadgets in anteros-core (CVE-2020-9548)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3631 advisory.

  - Mozilla: Attacker-induced prompt for extension installation (CVE-2020-15664)

  - Mozilla: Use-After-Free when aborting an operation (CVE-2020-15669)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3617 advisory.

  - dovecot: Resource exhaustion via deeply nested MIME parts (CVE-2020-12100)

  - dovecot: Out of bound reads in dovecot NTLM implementation (CVE-2020-12673)

  - dovecot: Crash due to assert in RPA implementation (CVE-2020-12674)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3602 advisory.

  - ansible: dnf module install packages with no GPG signature (CVE-2020-14365)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 / 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:3579 advisory.

  - kubernetes: Node disk DOS by writing to container /etc/hosts (CVE-2020-8557)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3601 advisory.

  - ansible: dnf module install packages with no GPG signature (CVE-2020-14365)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 / 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:3600 advisory.

  - ansible: dnf module install packages with no GPG signature (CVE-2020-14365)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3598 advisory.

  - kernel: kernel: DAX hugepages not considered during mremap (CVE-2020-10757)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3588 advisory.

  - libvncserver: websocket decoding buffer overflow (CVE-2017-18922)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3592 advisory.

  - bash: BASH_CMD is writable in restricted bash shells (CVE-2019-9924)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3586 advisory.

  - QEMU: slirp: networking out-of-bounds read information disclosure vulnerability (CVE-2020-10756)

  - libvirt: leak of /dev/mapper/control into QEMU guests (CVE-2020-14339)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3581 advisory.

  - git: Crafted URL containing new lines, empty host or lacks a scheme can cause credential leak     (CVE-2020-11008)

  - git: Crafted URL containing new lines can cause credential leak (CVE-2020-5260)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3574 advisory.

  - CloudForms: Business logic bypass through widgets (CVE-2020-10778)

  - CloudForms: Missing access control leads to escalation of admin group privileges (CVE-2020-10783)

  - CloudForms: Out-of-band OS Command Injection through conversion host (CVE-2020-14324)

  - CloudForms: User Impersonation in the API for OIDC and SAML (CVE-2020-14325)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3541 advisory.

  - jenkins-jira-plugin: plugin information disclosure (CVE-2019-16541)

  - python-rsa: decryption of ciphertext leads to DoS (CVE-2020-13757)

  - openshift-ansible: cors allowed origin allows changing url protocol (CVE-2020-1741)

  - jenkins: Stored XSS vulnerability in job build time trend (CVE-2020-2220)

  - jenkins: Stored XSS vulnerability in upstream cause (CVE-2020-2221)

  - jenkins: Stored XSS vulnerability in 'keep forever' badge icons (CVE-2020-2222)

  - jenkins: Stored XSS vulnerability in console links (CVE-2020-2223)

  - jenkins-2-plugins/matrix-project: Stored XSS vulnerability in single axis builds tooltips (CVE-2020-2224)

  - jenkins-2-plugins/matrix-project: Stored XSS vulnerability in multiple axis builds tooltips     (CVE-2020-2225)

  - jenkins-2-plugins/matrix-auth: Stored XSS vulnerability in Matrix Authorization Strategy Plugin     (CVE-2020-2226)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3560 advisory.

  - chromium-browser: Use after free in ANGLE (CVE-2020-6542)

  - chromium-browser: Use after free in task scheduling (CVE-2020-6543)

  - chromium-browser: Use after free in media (CVE-2020-6544, CVE-2020-6549)

  - chromium-browser: Use after free in audio (CVE-2020-6545)

  - chromium-browser: Inappropriate implementation in installer (CVE-2020-6546)

  - chromium-browser: Incorrect security UI in media (CVE-2020-6547)

  - chromium-browser: Heap buffer overflow in Skia (CVE-2020-6548)

  - chromium-browser: Use after free in IndexedDB (CVE-2020-6550)

  - chromium-browser: Use after free in WebXR (CVE-2020-6551)

  - chromium-browser: Use after free in Blink (CVE-2020-6552)

  - chromium-browser: Use after free in offline mode (CVE-2020-6553)

  - chromium-browser: Use after free in extensions (CVE-2020-6554)

  - chromium-browser: Out of bounds read in WebGL (CVE-2020-6555)

  - chromium-browser: Heap buffer overflow in SwiftShader (CVE-2020-6556)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3557 advisory.

  - Mozilla: Integer overflow in nsJPEGEncoder::emptyOutputBuffer (CVE-2020-12422)

  - Mozilla: WebRTC permission prompt could have been bypassed by a compromised content process     (CVE-2020-12424)

  - Mozilla: Out of bound read in Date.parse() (CVE-2020-12425)

  - Mozilla: X-Frame-Options bypass using object or embed tags (CVE-2020-15648)

  - Mozilla: Bypassing iframe sandbox when allowing popups (CVE-2020-15653)

  - Mozilla: Custom cursor can overlay user interface (CVE-2020-15654)

  - Mozilla: Type confusion for special arguments in IonMonkey (CVE-2020-15656)

  - Mozilla: Overriding file type when saving to disk (CVE-2020-15658)

  - Mozilla: Attacker-induced prompt for extension installation (CVE-2020-15664)

  - Mozilla: Use-After-Free when aborting an operation (CVE-2020-15669)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3559 advisory.

  - Mozilla: Integer overflow in nsJPEGEncoder::emptyOutputBuffer (CVE-2020-12422)

  - Mozilla: WebRTC permission prompt could have been bypassed by a compromised content process     (CVE-2020-12424)

  - Mozilla: Out of bound read in Date.parse() (CVE-2020-12425)

  - Mozilla: X-Frame-Options bypass using object or embed tags (CVE-2020-15648)

  - Mozilla: Bypassing iframe sandbox when allowing popups (CVE-2020-15653)

  - Mozilla: Custom cursor can overlay user interface (CVE-2020-15654)

  - Mozilla: Type confusion for special arguments in IonMonkey (CVE-2020-15656)

  - Mozilla: Overriding file type when saving to disk (CVE-2020-15658)

  - Mozilla: Attacker-induced prompt for extension installation (CVE-2020-15664)

  - Mozilla: Use-After-Free when aborting an operation (CVE-2020-15669)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Severity
140602	RHEL 8 : dovecot (RHSA-2020:3735)	Medium
140599	RHEL 8 : mysql:8.0 (RHSA-2020:3757)	Medium
140598	RHEL 8 : mysql:8.0 (RHSA-2020:3755)	Medium
140597	RHEL 8 : librepo (RHSA-2020:3756)	High
140594	RHEL 8 : librepo (RHSA-2020:3749)	High
140587	RHEL 6 : chromium-browser (RHSA-2020:3740)	High
140582	RHEL 8 : dovecot (RHSA-2020:3736)	Medium
140581	RHEL 8 : httpd:2.4 (RHSA-2020:3734)	Medium
140579	RHEL 8 : squid:4 (RHSA-2020:3623)	Medium
140523	RHEL 8 : httpd:2.4 (RHSA-2020:3726)	Medium
140494	RHEL 6 : chromium-browser (RHSA-2020:3723)	High
140493	RHEL 8 : dovecot (RHSA-2020:3713)	Medium
140492	RHEL 8 : httpd:2.4 (RHSA-2020:3714)	Medium
140490	RHEL 8 : openstack-nova (RHSA-2020:3704)	Medium
140489	RHEL 7 : OpenShift Container Platform 4.3.35 jenkins-2-plugins (RHSA-2020:3616)	Medium
140488	RHEL 8 : openstack-nova (RHSA-2020:3702)	Medium
140487	RHEL 7 : openstack-nova (RHSA-2020:3711)	Medium
140485	RHEL 7 : openstack-nova (RHSA-2020:3708)	Medium
140484	RHEL 8 : openstack-nova (RHSA-2020:3706)	Medium
140461	RHEL 8 : libcroco (RHSA-2020:3654)	Medium
140460	RHEL 8 : librepo (RHSA-2020:3658)	High
140435	RHEL 7 : .NET Core 3.1 security and bugfix update for Red Hat Enterprise Linux (Important) (RHSA-2020:3697)	High
140434	RHEL 8 : .NET Core 3.1 (RHSA-2020:3699)	High
140407	RHEL 7 : OpenShift Container Platform 4.4.20 jenkins-2-plugins (RHSA-2020:3625)	Medium
140400	RHEL 6 : thunderbird (RHSA-2020:3643)	High
140399	RHEL 8 : cloud-init (RHSA-2020:3644)	Low
140398	RHEL 8 : postgresql:10 (RHSA-2020:3669)	High
140397	RHEL 6 : Red Hat JBoss Enterprise Application Platform 7.2.9 on RHEL 6 (RHSA-2020:3637)	High
140396	RHEL 8 : php:7.3 (RHSA-2020:3662)	High
140394	RHEL 8 : thunderbird (RHSA-2020:3634)	High
140393	RHEL 8 : thunderbird (RHSA-2020:3632)	High
140392	RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.2.9 on RHEL 8 (RHSA-2020:3639)	High
140391	RHEL 8 : go-toolset:rhel8 (RHSA-2020:3665)	Medium
140390	RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.2.9 on RHEL 7 (RHSA-2020:3638)	High
140389	RHEL 7 : thunderbird (RHSA-2020:3631)	High
140204	RHEL 7 : dovecot (RHSA-2020:3617)	Medium
140130	RHEL 7 / 8 : Ansible security and bug fix update (2.9.13) (Important) (RHSA-2020:3602)	High
140129	RHEL 7 / 8 : OpenShift Container Platform 4.4.19 openshift (RHSA-2020:3579)	Low
140128	RHEL 7 / 8 : Ansible security and bug fix update (2.9.13) (Important) (RHSA-2020:3601)	High
140127	RHEL 7 / 8 : Ansible security and bug fix update (2.8.15) (Important) (RHSA-2020:3600)	High
140124	RHEL 7 : kernel (RHSA-2020:3598)	Medium
140121	RHEL 8 : libvncserver (RHSA-2020:3588)	High
140120	RHEL 7 : bash (RHSA-2020:3592)	High
140110	RHEL 8 : virt:8.2 and virt-devel:8.2 (RHSA-2020:3586)	Low
140083	RHEL 7 : git (RHSA-2020:3581)	Medium
139920	RHEL 7 : CloudForms 4.7.16 (RHSA-2020:3574)	Medium
139919	RHEL 7 : OpenShift Container Platform 3.11 (RHSA-2020:3541)	Medium
139860	RHEL 6 : chromium-browser (RHSA-2020:3560)	High
139854	RHEL 8 : firefox (RHSA-2020:3557)	High
139851	RHEL 8 : firefox (RHSA-2020:3559)	High

Red Hat Local Security Checks Family for Nessus