The version of Microsoft Edge installed on the remote Windows host is prior to 85.0.564.63. It is, therefore, affected by multiple vulnerabilities as referenced in the ADV200002-9-23-2020 advisory.

  - Heap buffer overflow in storage in Google Chrome prior to 85.0.564.63 allowed a remote attacker to     potentially perform out of bounds memory access via a crafted HTML page. (CVE-2020-15960)

  - Insufficient policy validation in extensions in Google Chrome prior to 85.0.564.63 allowed an attacker     who convinced a user to install a malicious extension to potentially perform a sandbox escape via a     crafted Chrome Extension. (CVE-2020-15961)

  - Insufficient policy validation in serial in Google Chrome prior to 85.0.564.63 allowed a remote attacker     to potentially perform out of bounds memory access via a crafted HTML page. (CVE-2020-15962)

  - Insufficient policy enforcement in extensions in Google Chrome prior to 85.0.564.63 allowed an attacker     who convinced a user to install a malicious extension to potentially perform a sandbox escape via a     crafted Chrome Extension. (CVE-2020-15963)

  - Insufficient data validation in media in Google Chrome prior to 85.0.564.63 allowed a remote attacker to     potentially exploit heap corruption via a crafted HTML page. (CVE-2020-15964)

  - Type confusion in V8 in Google Chrome prior to 85.0.564.63 allowed a remote attacker to potentially     perform out of bounds memory access via a crafted HTML page. (CVE-2020-15965)

  - Insufficient policy enforcement in extensions in Google Chrome prior to 85.0.564.63 allowed an attacker     who convinced a user to install a malicious extension to obtain potentially sensitive information via a     crafted Chrome Extension. (CVE-2020-15966)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Tanium Client, an agent for the Tanium platform, is installed on the remote Windows host.

The version of Node.js installed on the remote host is prior to 10.22.1 or 12.18.4 or 14.11.0. It is, therefore, affected by multiple vulnerabilities as referenced in the september-2020-security-releases advisory.

  - Affected Node.js versions converted carriage returns in HTTP request headers to a hyphen before parsing.
    This can lead to HTTP Request Smuggling as it is a non-standard interpretation of the header.
    (CVE-2020-8201)

  - Node.js is vulnerable to HTTP denial of service (DOS) attacks based on delayed requests submission which     can make the server unable to accept new connections. The fix a new http.Server option called requestTimeout     with a default value of 0 which means it is disabled by default. This should be set when Node.js is used     as an edge server. (CVE-2020-8251)

  - libuv's realpath implementation incorrectly determined the buffer size which can result in a buffer overflow     if the resolved path is longer than 256 bytes. (CVE-2020-8252)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Microsoft Edge (Chromium) installed on the remote Windows host is prior to 85.0.564.44. It is, therefore, affected by a remote code execution vulnerability. The vulnerability exists in the way that the IEToEdge Browser Helper Object (BHO) plugin on Internet Explorer handles objects in memory. An unauthenticated, remote attacker can exploit this, by convincing a user to visit a specially crafted website designed to exploit this vulnerability, to execute arbitrary code with the privileges of the current user. 

In order for the host to be vulnerable, it also must have Internet Explorer enabled, as only users that use Internet Explorer to browse the internet are affected.

Note that Nessus has not attempted to exploit this issue but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote Windows host is prior to 2.6.20. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.6.20 advisory.

  - The MIME Multipart dissector could crash. It may be possible to make Wireshark crash by injecting a     malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
    (CVE-2020-25863)

  - The TCP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25862)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote Windows host is prior to 3.0.14. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.0.14 advisory.

  - The MIME Multipart dissector could crash. It may be possible to make Wireshark crash by injecting a     malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
    (CVE-2020-25863)

  - The TCP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25862)

  - The BLIP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25866)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of VMware Workstation installed on the remote host is 15.x. It is, therefore, affected by the following vulnerabilities:

  - Multiple out-of-bounds read vulnerabilities in Cortado ThinPrint components JPEG2000 parser, EMR     STRETCHDIBITS parser, and EMF Parser. A malicious actor with normal access to a virtual machine can     exploit these issues to create a partial denial-of-service condition or to leak memory from TPView process     running on the system where Workstation is installed. (CVE-2020-3986, CVE-2020-3987, CVE-2020-3988)

  - A denial of service (DoS) vulnerability due to an out-of-bounds write issue in a Cortado ThinPrint     component. A malicious actor with normal access to a virtual machine can exploit this issue to create a     partial denial-of-service condition on the system where Workstation is installed. Exploitation is only     possible if virtual printing has been enabled. This feature is not enabled by default on Workstation.
    (CVE-2020-3989)

  - An information disclosure vulnerability due to an integer overflow issue in Cortado ThinPrint component. A     malicious actor with normal access to a virtual machine can exploit this issue to leak memory from TPView     process running on the system where Workstation is installed. Exploitation is only possible if virtual     printing has been enabled. This feature is not enabled by default on Workstation. (CVE-2020-3990)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of VMware Horizon Client for Windows installed on the remote host is less than 5.4.4. It is, therefore, affected by the following vulnerabilities:

  - Multiple out-of-bounds read vulnerabilities in Cortado ThinPrint components JPEG2000 parser, EMR     STRETCHDIBITS parser, and EMF Parser. A malicious actor with normal access to a virtual machine can     exploit these issues to create a partial denial-of-service condition or to leak memory from TPView process     running on the system where Horizon Client is installed. (CVE-2020-3986, CVE-2020-3987, CVE-2020-3988)

  - A denial of service (DoS) vulnerability due to an out-of-bounds write issue in a Cortado ThinPrint     component. A malicious actor with normal access to a virtual machine can exploit this issue to create a     partial denial-of-service condition on the system where Horizon Client is installed. Exploitation is only     possible if virtual printing has been enabled. This feature is enabled by default on Horizon Client.
    (CVE-2020-3989)

  - An information disclosure vulnerability due to an integer overflow issue in Cortado ThinPrint component. A     malicious actor with normal access to a virtual machine can exploit this issue to leak memory from TPView     process running on the system where Horizon Client is installed. Exploitation is only possible if virtual     printing has been enabled. This feature is enabled by default on Horizon Client. (CVE-2020-3990)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote Windows host is prior to 3.2.7. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.2.7 advisory.

  - The MIME Multipart dissector could crash. It may be possible to make Wireshark crash by injecting a     malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
    (CVE-2020-25863)

  - The TCP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25862)

  - The BLIP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25866)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Firefox ESR installed on the remote Windows host is prior to 78.3. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-43 advisory.

  - By exploiting an Open Redirect vulnerability on a website, an attacker could have spoofed the site     displayed in the download file dialog to show the original site (the one suffering from the open redirect)     rather than the site the file was actually downloaded from. (CVE-2020-15677)

  - Firefox sometimes ran the onload handler for SVG elements that the DOM sanitizer decided to remove,     resulting in JavaScript being executed after pasting attacker-controlled data into a contenteditable     element. (CVE-2020-15676)

  - When recursing through graphical layers while scrolling, an iterator may have become invalid, resulting in     a potential use-after-free. This occurs because the function     APZCTreeManager::ComputeClippedCompositionBounds did not follow iterator invalidation rules.
    (CVE-2020-15678)

  - Mozilla developer Jason Kratzer reported memory safety bugs present in Firefox 80 and Firefox ESR 78.2.
    Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of     these could have been exploited to run arbitrary code. (CVE-2020-15673)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Firefox installed on the remote Windows host is prior to 81.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-42 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Adobe Media Encoder installed on the remote host is prior to 14.4. It is, therefore, affected by multiple out-of-bounds read errors that could be exploited to read past the end of an allocated buffer, possibly resulting in a crash or disclosure of sensitive information from other memory locations. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Google Chrome installed on the remote Windows host is prior to 85.0.4183.121. It is, therefore, affected by multiple vulnerabilities as referenced in the 2020_09_stable-channel-update-for-desktop_21 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The Netlogon service on the remote host is vulnerable to the zerologon vulnerability. An unauthenticated, remote attacker can exploit this, by spoofing a client credential to establish a secure channel to a domain controller using the Netlogon remote protocol (MS-NRPC). The attacker can then use this to change the computer's Active Directory (AD) password, and escalate privileges to domain admin.

In order for this plugin to run, you must disable 'Only use credentials provided by the user' in the scanner settings.

CrowdStrike Falcon Sensor, an agent for the Falcon platform, is installed on the remote Windows host.

The Windows 'WebP Image Extention' or 'WebP from Device Manufacturer' app installed on the remote host is affected by a remote code execution vulnerability.
An unauthenticated, remote attacker can exploit this vulnerability via an specially crafted image to execute code and gain control of the system.

The Windows 'AV1 Video Extension' or 'AV1 from Device Manufacturer' app installed on the remote host is affected by two code execution vulnerabilities.
An unauthenticated, remote attacker can exploit either of these vulnerabilities via a image file to execute code and gain control of the system.

Using the Windows Event Log command line tool, this plugin enumerates packages removed by CbsTask or Deepclean.

Note:   The wevtutil command is limited to members of the Administrators group and must be run with elevated privileges.
  Tenable software must be provided appropriate credentials to be able to leverage this plugin.

SQL Server Reporting Services, a server-based report generating software system is installed on the remote host.

The version of Microsoft OneDrive installed on the remote Windows host is prior to 20.170.0824.0001. It is,  therefore, affected by the following vulnerabilities :

  - An unspecified flaw exists related to handling symbolic     links that could allow elevation of privileges.
    (CVE-2020-16851, CVE-2020-16852, CVE-2020-16853)

According to its self-reported version, Cisco Jabber is affected by a vulnerability due to improper validation of message contents. An authenticated, remote attacker can exploit this, by sending specially crafted messages that contain Universal Naming Convention (UNC) links to a targeted user and convincing the user to follow the provided link in order to cause the application to access a remote system, possibly allowing the attacker to gain sensitive information.

Please see the included Cisco BIDs and Cisco Security Advisory for more information.

According to its version, the Foxit PhantomPDF application (formally known as Phantom) installed on the remote Windows host is prior to 9.7.3. It is, therefore affected by multiple vulnerabilities.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Adobe FrameMaker installed on the remote Windows host is prior to 15.0.7. It is, therefore, affected by the following vulnerabilities:

  - An unspecified memory corruption error exists that allows arbitrary code execution (CVE-2020-9725)

  - An unspecified out of bounds read error exists that allows arbitrary code execution. (CVE-2020-9726)     Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Microsoft Visual Studio Code installed on the remote Windows host is prior to 1.48.2. It is, therefore, affected by the following vulnerability:

  - A remote code execution vulnerability exists in Visual     Studio Code when a user is tricked into opening a     malicious 'package.json' file. An attacker who     successfully exploited the vulnerability could run     arbitrary code in the context of the current user. If     the current user is logged on with administrative user     rights, an attacker could take control of the affected     system. An attacker could then install programs; view,     change, or delete data; or create new accounts with full     user rights.   To exploit this vulnerability, an     attacker would need to convince a target to clone a     repository and open it in Visual Studio Code. Attacker-     specified code would execute when the target opens the     malicious 'package.json' file.  The update address the     vulnerability by modifying the way Visual Studio Code     handles JSON files.

The Microsoft ASP.NET Core installation on the remote host is version 2.1.x < 2.1.22, or 3.1.x < 3.1.8. It is, therefore, affected by a security feature bypass vulnerability in the way ASP.NET Core parses encoded cookie names. An unauthenticated, remote attacker can exploit this issue, by sending a specially crafted cookies to the ASP.NET Core application to set a second cookie.

The version of Google Chrome installed on the remote Windows host is prior to 85.0.4183.102. It is, therefore, affected by multiple vulnerabilities as referenced in the 2020_09_stable-channel-update-for-desktop advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

According to its self-reported version, Cisco Jabber is affected by a arbitrary code execution vulnerability. The vulnerability is due to improper validation of message contents. An attacker could exploit this vulnerability by sending specially crafted Extensible Messaging and Presence Protocol (XMPP) messages to the affected software. A successful exploit could allow the attacker to cause the application to execute arbitrary programs on the targeted system with the privileges of the user account that is running the Cisco Jabber client software, possibly resulting in arbitrary code execution.

Please see the included Cisco BIDs and Cisco Security Advisory for more information.

According to its self-reported version, Cisco Jabber is affected by a information disclosure vulnerability. The vulnerability is due to improper validation of message contents. An attacker could exploit this vulnerability by sending specially crafted messages to a targeted system. A successful exploit could allow the attacker to cause the application to return sensitive authentication information to another system, possibly for use in further attacks.

Please see the included Cisco BIDs and Cisco Security Advisory for more information.

According to its self-reported version, Cisco Webex Teams is affected by a vulnerability. Please see the included Cisco BIDs and Cisco Security Advisory for more information.

According to its self-reported version, Cisco Webex Meetings is affected by a vulnerability. Please see the included Cisco BIDs and Cisco Security Advisory for more information.

According to its self-reported version, the IBM MQ server installed on the remote host is 8.0.0.x prior to 8.0.0.15, 8.1.x prior to 8.1.0.5, 9.0.x prior to 9.0.0.10, 9.1.0.x prior to 9.1.0.5, or 9.1.x prior to 9.2 and it is therefore affected by a denial of service (DoS) vulnerability. An authenticated, remote attacker can exploit this using an issue within the pubsub messaging logic

The version of Microsoft Windows Defender component MpCmdRun.exe installed on the remote Windows host is prior to 4.18.2005.1. It is, therefore, affected by a elevation of privilege vulnerability which could allow an attacker who successfully exploited this vulnerability to elevate privileges on the system.

VMware App Volumes Manager, an application and VM management software, is installed on the remote Windows host.

VMware App Volumes Agent, an application and VM management software, is installed on the remote Windows host.

The version of VMWare App Volumes installed on the remote host is 2.x prior to 2.18.6, or 4.x prior to 4.1.0.57 (2006).
It is, therefore, affected by a cross-site scripting vulnerability. A malicious actor with access to create and edit applications or create storage groups, may be able to inject malicious script which will be executed by a victim's browser when viewing.

The remote host is running a version of SolarWinds DameWare Mini Remote Control prior to 12.1.1. It is, therefore, affected by a denial of service vulnerability. A classic buffer overflow allows a remote, unauthenticated attacker to cause a denial of service by sending a large 'SigPubkeyLen' during ECDH key exchange.

According to its self-reported version, the Foxit Studio Photo application installed on the remote Windows host is prior to 3.6.6.928. It is, therefore, affected by an out-of-bounds write error when processing PSD files. A remote, unauthenticated attacker could trick a victim into opening a specially crafted file to trigger out-of-bounds write error and execute arbitrary code on the target system.

Check Point Endpoint Security SandBlast Agent which provides unified management, policy enforcement, threat prevention, and detection is installed on the remote Windows host.

MySQL Enterprise Monitor (MEM), a distributed application for monitoring multiple MySQL servers, is installed on the remote Windows server.

The version of Thunderbird installed on the remote Windows host is prior to 68.12. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-40 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Thunderbird installed on the remote Windows host is prior to 78.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-41 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Google Chrome installed on the remote Windows host is prior to 85.0.4183.83. It is, therefore, affected by multiple vulnerabilities as referenced in the 2020_08_stable-channel-update-for-desktop_25 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Firefox ESR installed on the remote Windows host is prior to 78.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-38 advisory.

  - If Firefox is installed to a user-writable directory, the Mozilla Maintenance Service would execute     updater.exe from the install location with system privileges. Although the Mozilla Maintenance Service     does ensure that updater.exe is signed by Mozilla, the version could have been rolled back to a previous     version which would have allowed exploitation of an older bug and arbitrary code execution with System     Privileges.Note: This issue only affected Windows operating systems. Other operating systems are     unaffected. (CVE-2020-15663)

  - By holding a reference to the eval() function from an about:blank window, a malicious webpage     could have gained access to the InstallTrigger object which would allow them to prompt the user to install     an extension. Combined with user confusion, this could result in an unintended or malicious extension     being installed. (CVE-2020-15664)

  - Mozilla developers Jason Kratzer, Christian Holler, Byron Campen, Tyson Smith reported memory safety bugs     present in Firefox 79 and Firefox ESR 78.1. Some of these bugs showed evidence of memory corruption and we     presume that with enough effort some of these could have been exploited to run arbitrary code.
    (CVE-2020-15670)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Firefox installed on the remote Windows host is prior to 80.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-36 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Firefox ESR installed on the remote Windows host is prior to 68.12. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-37 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Using the Deployment Image Servicing Management tool, this plugin enumerates installed packages.

The version of Artifex Ghostscript installed on the remote Windows host is 9.50. It is, therefore, affected by multiple vulnerabilities:

  - A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted PDF file. (CVE-2020-16302)

  - A use-after-free vulnerability in xps_finish_image_path() in devices/vector/gdevxps.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted PDF file. (CVE-2020-16303)

  - A buffer overflow vulnerability in image_render_color_thresh() in base/gxicolor.c of Artifex Software     GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted eps file. (CVE-2020-16304)

Additionally, the version of Artifex Ghostscript installed is affected by multiple buffer overflow vulnerabilities which could allow an attacker to cause a denial of service via a crafted file.

The McAfee ePolicy Orchestrator installation on the remote host has a Data Loss Prevention extension installed.

The remote host is running a version of McAfee ePolicy Orchestrator that is affected by multiple vulnerabilities, including the following:

  - Unrestricted Upload of File with Dangerous Type in McAfee Data Loss Prevention (DLP) ePO extension prior     to 11.5.3 allows authenticated attackers to upload malicious files to the DLP case management section via     lack of sanity checking. (CVE-2020-7302)

  - Improper Authorization vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3     allows authenticated remote attackers to change the configuration when logged in with view only privileges     via carefully constructed HTTP post messages. (CVE-2020-7300)

  - Cross Site scripting vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3     allows authenticated attackers to trigger alerts via the file upload tab in the DLP case management     section. (CVE-2020-7301)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

According to its self-reported version, the IBM MQ server installed on the remote host is 7.1, 7.5, 8.0.0.x prior to 8.0.0.15, 9.0.x prior to 9.0.0.10, 9.1.0.x prior to 9.1.0.6, or 9.1.x prior to 9.1.5 and it is therefore affected by a denial of service (DoS) vulnerability. An authenticated, remote attacker can exploit this issue by overflowing a buffer in the channel processing code using an older client in order to crash the system.

ID	Name	Severity
141009	Microsoft Edge (Chromium) < 85.0.564.63 Multiple Vulnerabilities	Medium
140918	Tanium Client Installed (Windows)	Info
140795	Node.js multiple vulnerabilities (September 2020 Security Releases).	Medium
140792	Microsoft Edge (Chromium) < 85.0.564.44 RCE	Medium
140777	Wireshark 2.6.x < 2.6.20 Multiple Vulnerabilities	Medium
140775	Wireshark 3.0.x < 3.0.14 Multiple Vulnerabilities	Medium
140773	VMware Workstation 15.x Multiple Vulnerabilities (VMSA-2020-0020)	Low
140772	VMware Horizon View Client < 5.4.4 Multiple Vulnerabilities (VMSA-2020-0020)	Low
140757	Wireshark 3.2.x < 3.2.7 Multiple Vulnerabilities	Medium
140734	Mozilla Firefox ESR < 78.3	Medium
140732	Mozilla Firefox < 81.0	Medium
140728	Adobe Media Encoder < 14.4 Out-of-Bounds Read (APSB20-57)	Medium
140700	Google Chrome < 85.0.4183.121 Multiple Vulnerabilities	Medium
140657	Microsoft Netlogon Elevation of Privilege (Zerologon) (Remote)	High
140633	CrowdStrike Falcon Sensor Installed (Windows)	Info
140596	Microsoft Windows WebP Image Extention RCE (August 2020)	Medium
140595	Microsoft Windows Codecs Library AV1 RCE (August 2020)	Medium
140578	CBS Removed Package Enumeration (Windows Event Log Tool)	Info
140535	SQL Server Reporting Services Installed	Info
140517	Microsoft OneDrive Multiple Elevation of Privilege	Low
140505	Cisco Jabber for Windows Universal Naming Convention Link Handling (cisco-sa-jabber-G3NSjPn7)	Low
140503	Foxit PhantomPDF < 9.7.3 Multiple Vulnerabilities	Medium
140491	Adobe FrameMaker < 15.0.7 (aka 2019.0.7) Multiple Vulnerabilities (APSB20-54)	Medium
140432	Security Update for Microsoft Visual Studio Code (CVE-2020-16881)	High
140425	Security Update for Microsoft ASP.NET Core (September 2020)	Medium
140406	Google Chrome < 85.0.4183.102 Multiple Vulnerabilities	Medium
140271	Cisco Jabber for Windows Message Handling Arbitrary Code Execution (cisco-sa-jabber-UyTKCPGg)	High
140270	Cisco Jabber for Windows Information Disclosure (cisco-sa-jabber-ttcgB9R3)	Medium
140269	Cisco Webex Teams for Windows Information Disclosure Vulnerability (cisco-sa-webex-media-znjfwHD6)	Low
140268	Cisco Webex Meetings for Windows Information Disclosure Vulnerability (cisco-sa-webex-media-znjfwHD6)	Low
140187	IBM MQ 8.0 < 8.0.0.15 / 8.1 < 8.1.0.5 HPE/ 9.1 < 9.1.0.5 LTS / 9.1 < 9.2 CD DoS	Medium
140132	Microsoft Windows Defender Elevation of Privilege Vulnerability (CVE-2020-1163 & CVE-2020-1170)	High
140045	VMware App Volumes Manager Installed (Windows)	Info
140044	VMware App Volumes Agent Installed (Windows)	Info
140043	VMware App Volumes 2.x < 2.18.6 / 4.x < 4.1.0.57 (2006) XSS	Low
140041	SolarWinds DameWare Mini Remote Control < 12.1.1 Denial of Service	Medium
139924	Foxit Studio Photo < 3.6.6.928 Out-of-Bounds Write	Medium
139913	Check Point Endpoint Security SandBlast Agent Installed (Windows)	Info
139874	Oracle MySQL Enterprise Monitor Installed (Windows)	Info
139870	Mozilla Thunderbird < 68.12	High
139868	Mozilla Thunderbird < 78.2	High
139794	Google Chrome < 85.0.4183.83 Multiple Vulnerabilities	High
139791	Mozilla Firefox ESR < 78.2	High
139789	Mozilla Firefox < 80.0	High
139787	Mozilla Firefox ESR < 68.12	High
139785	DISM Package List (Windows)	Info
139748	Artifex Ghostscript 9.50 Multiple Vulnerabilities	Medium
139745	McAfee DLP Extension for ePO Installed (Windows)	Info
139744	McAfee Data Loss Prevention ePO extension Multiple Vulnerabilities (SB10326)	Medium
139730	IBM MQ 7.1 / 7.5 / 8.0 < 8.0.0.15 / 9.0 < 9.0.0.10 LTS / 9.1 < 9.1.0.6 LTS / 9.1 < 9.1.5 CD DoS	Medium

Windows Family for Nessus