Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Multiple SQL injection vulnerabilities in Liferay Portal 7.3.5 allow remote authenticated users to execute arbitrary SQL commands via the classPKField parameter.

Affected Versions:
Liferay CE 7.3.5

QID detection logic:
This unauthenticated QID checks for the banner as well as the CE portal regex in the main GET query.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Affected Products:
openSUSE Leap 15.3


Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

To install packages using the command line interface, use the command "yum update".

Refer to SUSE security advisory openSUSE-SU-2021:2591-1 to address this issue and obtain further details.

IBM Websphere MQ 8.0 is detected on host.

QID Detection Logic (authenticated):
Operating System: Windows
The QID checks for the Registry Key "HKLM\SOFTWARE\IBM\MQSeries\CurrentVersion" value "VRMF" to see if the system is running a vulnerable version of IBM MQ or not.

QID Detection Logic (authenticated):
Operating System: Linux
The QID runs the command "/opt/mqm/bin/dspmqver -v | grep -A3 '^Name'" and "/usr/mqm/bin/dspmqver -v | grep -A3 '^Name'" (for AIX only) to see if the system is running a vulnerable version of IBM MQ or not.

IBM Websphere MQ 5.3 is detected on host.

QID Detection Logic (authenticated):
Operating System: Windows
The QID checks for the Registry Key "HKLM\SOFTWARE\IBM\MQSeries\CurrentVersion" value "VRMF" to see if the system is running a vulnerable version of IBM MQ or not.

QID Detection Logic (authenticated):
Operating System: Linux
The QID runs the command "/opt/mqm/bin/dspmqver -v | grep -A3 '^Name'" and "/usr/mqm/bin/dspmqver -v | grep -A3 '^Name'" (for AIX only) to see if the system is running a vulnerable version of IBM MQ or not.

IBM Websphere MQ 6.x is detected on host.

QID Detection Logic (authenticated):
Operating System: Windows
The QID checks for the Registry Key "HKLM\SOFTWARE\IBM\MQSeries\CurrentVersion" value "VRMF" to see if the system is running a vulnerable version of IBM MQ or not.

QID Detection Logic (authenticated):
Operating System: Linux
The QID runs the command "/opt/mqm/bin/dspmqver -v | grep -A3 '^Name'" and "/usr/mqm/bin/dspmqver -v | grep -A3 '^Name'" (for AIX only) to see if the system is running a vulnerable version of IBM MQ or not.

IBM Websphere MQ 9.0.X is detected on host.

QID Detection Logic (authenticated):
Operating System: Windows
The QID checks for the Registry Key "HKLM\SOFTWARE\IBM\MQSeries\CurrentVersion" value "VRMF" to see if the system is running a vulnerable version of IBM MQ or not.

QID Detection Logic (authenticated):
Operating System: Linux
The QID runs the command "/opt/mqm/bin/dspmqver -v | grep -A3 '^Name'" and "/usr/mqm/bin/dspmqver -v | grep -A3 '^Name'" (for AIX only) to see if the system is running a vulnerable version of IBM MQ or not.

Affected OS:
Fedora 33

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 33 Update

Affected OS:
Fedora 34

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 34 Update

Affected Versions:
Apple MacOS Big Sur version before 11.5.1

QID Detection Logic:
This QID checks for vulnerable version of Big sur.

For more information regarding the update can be found at HT212622.

Affected OS:
Fedora 34

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 34 Update

Affected OS:
Fedora 33

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 33 Update

Affected OS:
Fedora 34

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 34 Update

Affected OS:
Fedora 33

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 33 Update

Affected OS:
Fedora 33

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 33 Update

Affected OS:
Fedora 34

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 34 Update

Affected OS:
Fedora 33

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 33 Update

Affected OS:
Fedora 34

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 34 Update

Affected OS:
Fedora 34

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 34 Update

Affected OS:
Fedora 33

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 33 Update

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

Affected Version:
DB2 Release v9.7 jdk version prior to 7.0.10.80
DB2 Release V10.1 jdk version prior to 7.0.10.80
DB2 Release V10.5 jdk version prior to 7.0.10.80
DB2 Release V11.1 jdk version prior to 8.0.6.25
DB2 Release V11.5 jdk version prior to 8.0.6.25

QID Detection Logic:(Authenticated)
This QID sends INST_DIR/java/jdk64/bin/./java -version command to check the vulnerable version of Java used by DB2.
Note: use db2 user credentials to scan this qid.

Affected OS:
Fedora 34

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 34 Update

Affected Versions
SAP NetWeaver AS JAVA Versions 7.20, 7.30, 7.31, 7.40, 7.50

QID Detection Logic(s):
Scan initiates HTTP request on Web Server and determines version based on the Server Header.

Security Fix(es): kernel: size_t-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909) systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash (CVE-2021-33910)

Affected Products:

Red Hat OpenShift Container Platform 4.7 for RHEL 8 x86_64
Red Hat OpenShift Container Platform 4.7 for RHEL 7 x86_64
Red Hat OpenShift Container Platform for Power 4.7 for RHEL 8 ppc64le
Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.7 for RHEL 8 s390x

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2763 to address this issue and obtain more information.

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

CBL-Mariner is an internal Linux distribution for cloud infrastructure and edge products and services of Microsoft.

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of package name.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:

Citrix ADC provides proven L4-7 load balancing and global server load balancing (GSLB) to ensure the best application performance and reliability.
Multiple vulnerability has been identified in Citrix Application Delivery Controller (ADC) formerly known as NetScaler ADC and Citrix Gateway formerly known as NetScaler Gateway that, if exploited, could result in a number of security issues.

Affected Versions:
Citrix ADC and Citrix Gateway 13.0-82.42
Citrix ADC and Citrix Gateway 12.1-62.25

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of Citrix ADC/NetScaler.

Customers are advised to refer to CTX319135 for information pertaining to remediating this vulnerability.

A remote code execution vulnerability exists in .NET 5 and .NET Core due to how text encoding is performed.

Affected Versions:
PowerShell Version 7.0 Prior to 7.0.6
PowerShell Version 7.1 Prior to 7.1.3

QID Detection Logic: (Authenticated)
Operating System: Windows
The QID checks for vulnerable version of file pwsh.exe and QID checks for vulnerable version of PowerShell Core by running command pwsh --version on linux systems.

NOTE: The Windows check will only work for msi installations.

Trend Micro OfficeScan is a security suite that protects office networks from a variety of threats, including viruses, trojans and spyware.

Vulnerabilities in Trend Micro OfficeScan XG SP1 on Microsoft Windows may allow an attacker to create a hard link to any file on the system, which then could be manipulated to gain a privilege escalation and code execution.
An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Affected software:
OfficeScan XG SP1

CVE-2020-24556 and CVE-2020-24562: Trend Micro Apex One Hard Link Privilege Escalation Vulnerability (Windows)
CVE-2020-24557: Trend Micro Apex One and OfficeScan XG Improper Access Control Privilege Escalation
CVE-2020-24559: Trend Micro Apex One Hard Link Privilege Escalation Vulnerability (macOS)

Affected Versions
Trend Micro Apex 2019 (On-Prem) prior to Build 8378

QID Detection Logic:(Authenticated):
The QID checks for vulnerable version of Trend Micro Apex which it fetches out through registry file.

Citrix ADC provides proven L4-7 load balancing and global server load balancing (GSLB) to ensure the best application performance and reliability.
Multiple vulnerability has been identified in Citrix Application Delivery Controller (ADC) formerly known as NetScaler ADC and Citrix Gateway formerly known as NetScaler Gateway that, if exploited, could result in a number of security issues.

Affected Versions:
Citrix ADC and Citrix Gateway 13.0 before 13.0-82.45
Citrix ADC and Citrix Gateway 12.1 before 12.1-62.27
Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.22
Citrix ADC and Citrix Gateway 13.0-82.42
Citrix ADC and Citrix Gateway 12.1-62.25

QID Detection Logic(Authenticated):
This QID checks for vulnerable versions of Citrix ADC/NetScaler.

Customers are advised to refer to CTX319135 for information pertaining to remediating this vulnerability.

Security Fix(es): Mozilla: IMAP server responses sent by a MITM prior to STARTTLS could be processed (CVE-2021-29969) Mozilla: Use-after-free in accessibility features of a document (CVE-2021-29970) Mozilla: Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12 (CVE-2021-29976) chromium-browser: Out of bounds write in ANGLE (CVE-2021-30547)

Affected Products:

Red Hat Enterprise Linux Server 7 x86_64
Red Hat Enterprise Linux Workstation 7 x86_64
Red Hat Enterprise Linux Desktop 7 x86_64
Red Hat Enterprise Linux for Power, little endian 7 ppc64le

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2881 to address this issue and obtain more information.

Security Fix(es): Mozilla: IMAP server responses sent by a MITM prior to STARTTLS could be processed (CVE-2021-29969) Mozilla: Use-after-free in accessibility features of a document (CVE-2021-29970) Mozilla: Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12 (CVE-2021-29976) chromium-browser: Out of bounds write in ANGLE (CVE-2021-30547)

Affected Products:

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.1 x86_64
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.1 ppc64le
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.1 ppc64le
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.1 x86_64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2882 to address this issue and obtain more information.

Security Fix(es): Mozilla: IMAP server responses sent by a MITM prior to STARTTLS could be processed (CVE-2021-29969) Mozilla: Use-after-free in accessibility features of a document (CVE-2021-29970) Mozilla: Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12 (CVE-2021-29976) chromium-browser: Out of bounds write in ANGLE (CVE-2021-30547)

Affected Products:

Red Hat Enterprise Linux for x86_64 8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4 x86_64
Red Hat Enterprise Linux Server - AUS 8.4 x86_64
Red Hat Enterprise Linux for IBM z Systems 8 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4 s390x
Red Hat Enterprise Linux for Power, little endian 8 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4 ppc64le
Red Hat Enterprise Linux Server - TUS 8.4 x86_64
Red Hat Enterprise Linux for ARM 64 8 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4 aarch64
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.4 ppc64le
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.4 x86_64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2883 to address this issue and obtain more information.

Security Fix(es): Mozilla: IMAP server responses sent by a MITM prior to STARTTLS could be processed (CVE-2021-29969) Mozilla: Use-after-free in accessibility features of a document (CVE-2021-29970) Mozilla: Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12 (CVE-2021-29976) chromium-browser: Out of bounds write in ANGLE (CVE-2021-30547)

Affected Products:

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.2 x86_64
Red Hat Enterprise Linux Server - AUS 8.2 x86_64
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.2 ppc64le
Red Hat Enterprise Linux Server - TUS 8.2 x86_64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.2 aarch64
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.2 ppc64le
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.2 x86_64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2914 to address this issue and obtain more information.

An out-of-bounds write flaw was found in the linux kernel's seq_file in the filesystem layer.
This flaw allows a local attacker with a user privilege to gain access to out-of-bound memory, leading to a system crash or a leak of internal kernel information.
The issue results from not validating the size_t-to-int conversion prior to performing operations.
The highest threat from this vulnerability is to data integrity, confidentiality and system availability. (
( CVE-2021-33909)

Amazon has released a security update for kernel-livepatch to fix the vulnerabilities.

Security Fix(es): kernel: size_t-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909) kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan (CVE-2021-33034) kernel: use-after-free in show_numa_stats function (CVE-2019-20934) kernel: mishandles invalid descriptors in drivers/media/usb/gspca/xirlink_cit.c (CVE-2020-11668) kernel: use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c (CVE-2021-33033)

Affected Products:

Red Hat Enterprise Linux Server 7 x86_64
Red Hat Enterprise Linux Workstation 7 x86_64
Red Hat Enterprise Linux Desktop 7 x86_64
Red Hat Enterprise Linux for IBM z Systems 7 s390x
Red Hat Enterprise Linux for Power, big endian 7 ppc64
Red Hat Enterprise Linux for Scientific Computing 7 x86_64
Red Hat Enterprise Linux for Power, little endian 7 ppc64le
Red Hat Virtualization Host 4 for RHEL 7 x86_64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2725 to address this issue and obtain more information.

Security Fix(es): kernel: size_t-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909) kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan (CVE-2021-33034) kernel: use-after-free in show_numa_stats function (CVE-2019-20934) kernel: mishandles invalid descriptors in drivers/media/usb/gspca/xirlink_cit.c (CVE-2020-11668) kernel: use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c (CVE-2021-33033)

Affected Products:

Red Hat Enterprise Linux for Real Time 7 x86_64
Red Hat Enterprise Linux for Real Time for NFV 7 x86_64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2726 to address this issue and obtain more information.

Security Fix(es): kernel: size_t-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909) kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan (CVE-2021-33034)

Affected Products:

Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.7 x86_64
Red Hat Enterprise Linux Server - AUS 7.7 x86_64
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 7.7 s390x
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 7.7 ppc64
Red Hat Enterprise Linux EUS Compute Node 7.7 x86_64
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.7 ppc64le
Red Hat Enterprise Linux Server - TUS 7.7 x86_64
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.7 ppc64le
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.7 x86_64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2728 to address this issue and obtain more information.

Security Fix(es): kernel: size_t-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909) kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan (CVE-2021-33034)

Affected Products:

Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.7 x86_64
Red Hat Enterprise Linux Server - AUS 7.7 x86_64
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.7 ppc64le
Red Hat Enterprise Linux Server - TUS 7.7 x86_64
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.7 ppc64le
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.7 x86_64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2729 to address this issue and obtain more information.

Vulnerability in the java se, oracle graalvm enterprise edition product of oracle java se (component: networking).
Supported versions that are affected are java se: 7u301, 8u291, 11.0.11, 16.0.1; oracle graalvm enterprise edition: 20.3.2 and 21.1.0.
Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise java se, oracle graalvm enterprise edition.
Successful attacks require human interaction from a person other than the attacker.
Successful attacks of this vulnerability can result in unauthorized read access to a subset of java se, oracle graalvm enterprise edition accessible data.
Note: this vulnerability applies to java deployments, typically in clients running sandboxed java web start applications or sandboxed java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the java sandbox for security.
This vulnerability does not apply to java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator).
Cvss 3.1 base score 3.1 (confidentiality impacts).
Cvss vector: (cvss:3.1/av:n/ac:h/pr:n/ui:r/s:u/c:l/i:n/a:n). (
( CVE-2021-2341) vulnerability in the java se, oracle graalvm enterprise edition product of oracle java se (component: library).
Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise java se, oracle graalvm enterprise edition.
Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of java se, oracle graalvm enterprise edition accessible data.
Cvss 3.1 base score 4.3 (integrity impacts).
Cvss vector: (cvss:3.1/av:n/ac:l/pr:n/ui:r/s:u/c:n/i:l/a:n). (
( CVE-2021-2369) vulnerability in the java se, oracle graalvm enterprise edition product of oracle java se (component: hotspot).
Supported versions that are affected are java se: 8u291, 11.0.11, 16.0.1; oracle graalvm enterprise edition: 20.3.2 and 21.1.0.
Successful attacks of this vulnerability can result in takeover of java se, oracle graalvm enterprise edition.
Cvss 3.1 base score 7.5 (confidentiality, integrity and availability impacts).
Cvss vector: (cvss:3.1/av:n/ac:h/pr:n/ui:r/s:u/c:h/i:h/a:h). (
( CVE-2021-2388)

Security Fix(es): OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)
(CVE-2021-2388) OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)
(CVE-2021-2341) OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)
(CVE-2021-2369)

Affected Products:

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.2 x86_64
Red Hat Enterprise Linux Server - AUS 8.2 x86_64
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.2 s390x
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.2 ppc64le
Red Hat Enterprise Linux Server - TUS 8.2 x86_64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.2 aarch64
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.2 ppc64le
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.2 x86_64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2774 to address this issue and obtain more information.

Security Fix(es): OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)
(CVE-2021-2388) OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)
(CVE-2021-2341) OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)
(CVE-2021-2369)

Affected Products:

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.1 x86_64
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.1 s390x
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.1 ppc64le
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.1 aarch64
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.1 ppc64le
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.1 x86_64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2775 to address this issue and obtain more information.

Security Fix(es): OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)
(CVE-2021-2388) OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)
(CVE-2021-2341) OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)
(CVE-2021-2369)

Affected Products:

Red Hat Enterprise Linux for x86_64 8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4 x86_64
Red Hat Enterprise Linux Server - AUS 8.4 x86_64
Red Hat Enterprise Linux for IBM z Systems 8 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4 s390x
Red Hat Enterprise Linux for Power, little endian 8 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4 ppc64le
Red Hat Enterprise Linux Server - TUS 8.4 x86_64
Red Hat Enterprise Linux for ARM 64 8 aarch64
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.4 ppc64le
Red Hat CodeReady Linux Builder for x86_64 8 x86_64
Red Hat CodeReady Linux Builder for Power, little endian 8 ppc64le
Red Hat CodeReady Linux Builder for ARM 64 8 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4 aarch64
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.4 x86_64
Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.4 x86_64
Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.4 ppc64le
Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.4 aarch64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2776 to address this issue and obtain more information.

Security Fix(es): OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)
(CVE-2021-2388) OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)
(CVE-2021-2341) OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)
(CVE-2021-2369)

Affected Products:

Red Hat Enterprise Linux for x86_64 8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.4 x86_64
Red Hat Enterprise Linux Server - AUS 8.4 x86_64
Red Hat Enterprise Linux for IBM z Systems 8 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.4 s390x
Red Hat Enterprise Linux for Power, little endian 8 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.4 ppc64le
Red Hat Enterprise Linux Server - TUS 8.4 x86_64
Red Hat Enterprise Linux for ARM 64 8 aarch64
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.4 ppc64le
Red Hat CodeReady Linux Builder for x86_64 8 x86_64
Red Hat CodeReady Linux Builder for Power, little endian 8 ppc64le
Red Hat CodeReady Linux Builder for ARM 64 8 aarch64
Red Hat CodeReady Linux Builder for IBM z Systems 8 s390x
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.4 aarch64
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.4 x86_64
Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.4 x86_64
Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.4 ppc64le
Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 8.4 s390x
Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.4 aarch64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2781 to address this issue and obtain more information.

Security Fix(es): OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)
(CVE-2021-2388) OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)
(CVE-2021-2341) OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)
(CVE-2021-2369)

Affected Products:

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.2 x86_64
Red Hat Enterprise Linux Server - AUS 8.2 x86_64
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.2 s390x
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.2 ppc64le
Red Hat Enterprise Linux Server - TUS 8.2 x86_64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.2 aarch64
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.2 ppc64le
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.2 x86_64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2782 to address this issue and obtain more information.

Security Fix(es): OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)
(CVE-2021-2388) OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)
(CVE-2021-2341) OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)
(CVE-2021-2369)

Affected Products:

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.1 x86_64
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.1 s390x
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.1 ppc64le
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.1 aarch64
Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.1 ppc64le
Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.1 x86_64

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2783 to address this issue and obtain more information.

Security Fix(es): OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)
(CVE-2021-2388) OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)
(CVE-2021-2341) OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)
(CVE-2021-2369)

Affected Products:

Red Hat Enterprise Linux Server 7 x86_64
Red Hat Enterprise Linux Workstation 7 x86_64
Red Hat Enterprise Linux Desktop 7 x86_64
Red Hat Enterprise Linux for IBM z Systems 7 s390x
Red Hat Enterprise Linux for Power, big endian 7 ppc64
Red Hat Enterprise Linux for Scientific Computing 7 x86_64
Red Hat Enterprise Linux for Power, little endian 7 ppc64le

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2784 to address this issue and obtain more information.

Security Fix(es): OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)
(CVE-2021-2388) OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)
(CVE-2021-2341) OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)
(CVE-2021-2369)

Affected Products:

Red Hat Enterprise Linux Server 7 x86_64
Red Hat Enterprise Linux Workstation 7 x86_64
Red Hat Enterprise Linux Desktop 7 x86_64
Red Hat Enterprise Linux for IBM z Systems 7 s390x
Red Hat Enterprise Linux for Power, big endian 7 ppc64
Red Hat Enterprise Linux for Scientific Computing 7 x86_64
Red Hat Enterprise Linux for Power, little endian 7 ppc64le

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Refer to Red Hat security advisory RHSA-2021:2845 to address this issue and obtain more information.

Affected Products:
openSUSE Leap 15.3


Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

To install packages using the command line interface, use the command "yum update".

Refer to SUSE security advisory openSUSE-SU-2021:1863-1 to address this issue and obtain further details.

Affected Products:
openSUSE Leap 15.3


Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

To install packages using the command line interface, use the command "yum update".

Refer to SUSE security advisory openSUSE-SU-2021:2474-1 to address this issue and obtain further details.

Amazon has released a security update for kernel-livepatch to fix the vulnerabilities. Affected Product: Amazon Linux 2

Amazon has released a security update for kernel-livepatch to fix the vulnerabilities. Affected Product: Amazon Linux 2

Amazon has released a security update for kernel-livepatch to fix the vulnerabilities. Affected Product: Amazon Linux 2

Amazon has released a security update for kernel-livepatch to fix the vulnerabilities. Affected Product: Amazon Linux 2

Affected Products:

centos 7

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Affected Products:
ThinkStation P340 Tiny
ThinkStation P320
ThinkStation P330 Tiny
ThinkStation P320 Tiny
ThinkStation P310
ThinkStation P330
ThinkStation P500
ThinkStation P520/P520c
ThinkStation P700
ThinkStation P900
ThinkStation P920
ThinkPad P50
ThinkPad T470
ThinkPad T480s
QID Detection Logic
: This QID checks if Vulnerable versions of BIOS installed on windows system.

Affected OS:
Fedora 33

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 33 Update

Affected OS:
Fedora 34

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 34 Update

Affected OS:
Fedora 33

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 33 Update

Affected OS:
Fedora 33

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 33 Update

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

An out-of-bounds write flaw was found in the linux kernel's seq_file in the filesystem layer.
This flaw allows a local attacker with a user privilege to gain access to out-of-bound memory, leading to a system crash or a leak of internal kernel information.
The issue results from not validating the size_t-to-int conversion prior to performing operations.
The highest threat from this vulnerability is to data integrity, confidentiality and system availability. (
( CVE-2021-33909)

The vulnerability can be used to achieve authenticated RCE as Administrator.
In order to exploit this, an attacker first needs to know the credentials of an unprivileged local account on the Orion Server.

Affected Versions:
SolarWinds Orion Job Scheduler 2020.2.1 through 2020.2.4

QID Detection Logic (Authenticated):
This QID checks for vulnerable version of SolarWinds Job Scheduler

Affected Versions:
Adobe Photoshop 2020 version 21.2.8 and earlier
Adobe Photoshop 2021 version 22.4.1 and earlier

QID Detection Logic:
Windows(Authenticated): This QID checks for vulnerable version of 'Photoshop.exe' file.

Following security issues are observed :
CVE-2021-30789,CVE-2021-30788,CVE-2021-30781,CVE-2021-30780,CVE-2021-30785,CVE-2021-30786,CVE-2021-30804,CVE-2021-30799,CVE-2021-30802,CVE-2021-30800,CVE-2021-30763,CVE-2021-30748,CVE-2021-30760,CVE-2021-30769,CVE-2021-30768,CVE-2020-36328,CVE-2020-36329,CVE-2020-36331,CVE-2020-36330,CVE-2021-30798,CVE-2021-30791,CVE-2021-30792,CVE-2018-25011,CVE-2018-25010,CVE-2021-30796,CVE-2021-30797,CVE-2018-25014,CVE-2021-30795,CVE-2021-30779,CVE-2021-30758,CVE-2021-30759,CVE-2021-30770,CVE-2021-30773,CVE-2021-30774,CVE-2021-30775,CVE-2021-30776,CVE-2021-3518

Affected Devices
iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)

Following security issues are observed :
A memory corruption issue was addressed with improved memory handling. CVE-2021-30807

Affected Devices
iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)

Affected Versions:
Apple MacOS Big Sur version before 11.5

QID Detection Logic:
This QID checks for vulnerable version of Big sur.

For more information regarding the update can be found at HT212602.

Affected Products:
openSUSE Leap 15.3


Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

To install packages using the command line interface, use the command "yum update".

Refer to SUSE security advisory openSUSE-SU-2021:2458-1 to address this issue and obtain further details.

Affected Products:
openSUSE Leap 15.2


Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

To install packages using the command line interface, use the command "yum update".

Refer to SUSE security advisory openSUSE-SU-2021:1076-1 to address this issue and obtain further details.

Affected Products:

centos 7

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

Affected Products:
openSUSE Leap 15.2


Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

To install packages using the command line interface, use the command "yum update".

Refer to SUSE security advisory openSUSE-SU-2021:1078-1 to address this issue and obtain further details.

Affected OS:
Fedora 34

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 34 Update

Affected versions:
Apple macOS Security Update Prior to 2021-005 Mojave.

QID Detection Logic (Authenticated):
This QID looks for the missing security patches from Mojave

For more information regarding the update can be found at HT212603.

Affected versions:
Apple macOS Security Update 2021-004 Catalina.

QID Detection Logic (Authenticated):
This QID looks for the missing security patches from Catalina

For more information regarding the update can be found at HT212600.

Affected OS:
Fedora 33

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 33 Update

Affected OS:
Fedora 34

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 34 Update

Affected Products:
openSUSE Leap 15.3


Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

To install packages using the command line interface, use the command "yum update".

Refer to SUSE security advisory openSUSE-SU-2021:2427-1 to address this issue and obtain further details.

Affected Product:
SolarWinds Server and Application Monitor 2020.2 versions prior to 2020.2.5

QID Detection Logic:(Authenticated)
This QID checks for APMServiceControl.exe file version to detect the vulnerable version of the product.

Affected OS:
Fedora 34

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 34 Update

Affected Products:
openSUSE Leap 15.2


Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

To install packages using the command line interface, use the command "yum update".

Refer to SUSE security advisory openSUSE-SU-2021:1071-1 to address this issue and obtain further details.

Affected Products:
openSUSE Leap 15.3


Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

To install packages using the command line interface, use the command "yum update".

Refer to SUSE security advisory openSUSE-SU-2021:2442-1 to address this issue and obtain further details.

Affected Products:
openSUSE Leap 15.2


Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

To install packages using the command line interface, use the command "yum update".

Refer to SUSE security advisory openSUSE-SU-2021:1073-1 to address this issue and obtain further details.

Affected OS:
Fedora 33

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 33 Update

Affected Products:
openSUSE Leap 15.2


Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

To install packages using the command line interface, use the command "yum update".

Refer to SUSE security advisory openSUSE-SU-2021:1068-1 to address this issue and obtain further details.

Affected Versions:
Oracle PeopleSoft Enterprise PeopleTools 8.57
Oracle PeopleSoft Enterprise PeopleTools 8.58
Oracle PeopleSoft Enterprise PeopleTools 8.59

QID Detection Logic (Authenticated):
The authenticated check looks for the installed version of PeopleTools and it's corresponding patch.

These updates address critical vulnerabilities Arbitrary code execution in Adobe Prelude. Affected Versions:
Adobe Prelude 10.0 and earlier versions

QID Detection Logic:(Authenticated)
This QID checks the Windows registry to see if Adobe Prelude is installed. If found, it checks if the installed versions are vulnerable.

Affected OS:
Fedora 34

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 34 Update

Affected OS:
Fedora 33

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 33 Update