Browse, filter by detection status, or search by CVE to get visibility into upcoming and new detections (QIDs) for all severities.
Disclaimer: The Vulnerability Detection Pipeline is intended to give users an early insight into some of the CVEs the Qualys Research Team is investigating. It may not show all the CVEs that are actively being investigated. Specific CVE feature requests filed via a Qualys Support case may or may not show up on this page. Please reach out to Qualys Support for status of such support cases.
Under investigation:
We are researching a detection and will publish one if
it is feasible.
In development:
We are coding a detection and will typically publish it
within a few days.
Recently published:
We have published the detection on the date indicated,
and it will typically be available in the KnowledgeBase
on shared platforms within a day.
Non-Qualys customers can audit their network for all published vulnerabilities by signing up for a Qualys Free Trial or Qualys Community Edition.
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner 2.0 security advisories:https://github.com/microsoft/CBL-Mariner/tree/2.0
Affected OS:
Fedora 36
Affected versions:
Apple macOS Monterey Versions Prior to 12.5.1
QID Detection Logic (Authenticated)
This QID checks for vulnerable versions of Apple macOS Monterey.
Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.
Affected OS:
Fedora 35
Affected OS:
Fedora 35
Affected OS:
Fedora 36
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
CVE-2020-1927: Apache HTTP Server could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability in the mod_rewrite module.
CVE-2020-1934: Apache HTTP Server could allow a remote attacker to execute arbitrary code on the system, caused by the use of uninitialized value in mod_proxy_ftp. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service condition on the system.
Affected Versions:
IBM HTTP Server V9.0.0.0 through 9.0.5.3
IBM HTTP Server V8.5.0.0 through 8.5.5.17
IBM HTTP Server V8.0.0.0 through 8.0.0.15
IBM HTTP Server V70.0.0 through 7.0.0.45
QID Detection Logic (Authenticated):
Operating System: Windows
The QID checks the key "HKLM\SYSTEM\CurrentControlSet\Services" to see if IBM HTTP vulnerable version installed on the host or not.
QID Detection Logic (Authenticated):
Operating System: Linux
The QID checks the vulnerable version IBM HTTP Server. "version.signature" is used to verify the version.
QID Detection Logic (Authenticated):
This QID lists installed patch to check if the patches are missing.
NOTE: Revision 4 and 2: Published on 2020-November-18 and 2021-January-06
QID Detection Logic (Authenticated):
This QID lists installed patch to check if the patches are missing.
NOTE: Revision 3:Published on 2020-December-18
QID Detection Logic (Authenticated):
This QID lists installed patch to check if the patches are missing.
NOTE: Revision 4: Published on 2021-03-16
Patch is NOT available for the package.
Patch is NOT available for the package.
Affected versions:
Foxit Reader version 5.4.4 and earlier
Foxit PhantomPDF version 5.4.2 and earlier
QID detection logic:(Authenticated)
This QID checks Windows Registry to get Foxit Reader and Foxit PhantomPDF installation path and then reads corresponding executable((FoxitReader.exe/FoxitPhantomPDF.exe)) to see if it's running a vulnerable version.
Affected versions:
Foxit Reader version 7.0.6.1126 and earlier
Foxit PhantomPDF version 7.0.6.1126 and earlier
QID detection logic:(Authenticated)
This QID checks Windows Registry to get Foxit Reader and Foxit PhantomPDF installation path and then reads corresponding executable((FoxitReader.exe/FoxitPhantomPDF.exe)) to see if it's running a vulnerable version.
Affected versions:
Foxit Reader version 7.1.5.425 and earlier
Foxit PhantomPDF version 7.1.5.425 and earlier
QID detection logic:(Authenticated)
This QID checks Windows Registry to get Foxit Reader and Foxit PhantomPDF installation path and then reads corresponding executable((FoxitReader.exe/FoxitPhantomPDF.exe)) to see if it's running a vulnerable version.
Affected versions:
Foxit Reader version 7.2.0.722 and earlier
Foxit PhantomPDF version 7.2.0.722 and earlier
QID detection logic:(Authenticated)
This QID checks Windows Registry to get Foxit Reader and Foxit PhantomPDF installation path and then reads corresponding executable((FoxitReader.exe/FoxitPhantomPDF.exe)) to see if it's running a vulnerable version.
Affected versions:
Foxit Reader version 7.2.8.1124 and earlier
Foxit PhantomPDF version 7.2.2.929 and earlier
QID detection logic:(Authenticated)
This QID checks Windows Registry to get Foxit Reader and Foxit PhantomPDF installation path and then reads corresponding executable((FoxitReader.exe/FoxitPhantomPDF.exe)) to see if it's running a vulnerable version.
Affected versions:
Foxit Reader version 6.2.0.429 and earlier
Foxit PhantomPDF version 6.2.0.429 and earlier
QID detection logic:(Authenticated)
This QID checks Windows Registry to get Foxit Reader and Foxit PhantomPDF installation path and then reads corresponding executable((FoxitReader.exe/FoxitPhantomPDF.exe)) to see if it's running a vulnerable version.
Affected versions:
Foxit Reader version 7.1.0.306 and 7.1.3.320
Foxit PhantomPDF version 7.1.0.306, 7.1.2.311 and 7.1.3.320
QID detection logic:(Authenticated)
This QID checks Windows Registry to get Foxit Reader and Foxit PhantomPDF installation path and then reads corresponding executable((FoxitReader.exe/FoxitPhantomPDF.exe)) to see if it's running a vulnerable version.
AFFECTED PRODUCTS
1. Relion 670 series version 2.2.0.9 through version 2.2.0.12
2. Relion 670 series version 2.2.1.0 through version 2.2.1.5
3. Relion 670 series version 2.2.2.0 and version 2.2.2.2
4. Relion 670 series version 2.2.3.0 and version 2.2.3.1
5. Relion 650 series version 1.3.0.0 through version 1.3.0.6
6. Relion 650 series version 2.2.0.9 through version 2.2.0.12
7. Relion 650 series version 2.2.1.0 through version 2.2.1.5
8. Relion SAM600-IO version 2.2.1.0 through version 2.2.1.4
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Customers are advised to refer to CERT MITIGATIONS section 1MRG035816 for affected packages and patching details.
Affected OS:
Fedora 35
The WP-DBManager WordPress plugin does not prevent administrators from running arbitrary commands on the server in multisite installations, where only super-administrators should.
Affected Versions:
WordPress WP-DBManager plugin before 2.80.8
QID Detection Logic:
This QID sends a HTTP GET request and checks for vulnerable version of WordPress plugin running on the target application.
AFFECTED PRODUCTS
Relion670 series version 1p1r26 and earlier releases
Relion 670 series version 1.2.3.17 and earlier releases
Relion 670 series version 2.0.0.10 and earlier releases (RES670 2.0.0.4 and earlier releases)
Relion 670 series version 2.1.0.1 and earlier releases
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Customers are advised to refer to CERT MITIGATIONS section ABB-VU-PPGA-1MRG024910 for affected packages and patching details.
Affected Products
Siemens reports that the vulnerabilities affect the following versions of S7-1200 PLCs:
V2.x,
V3.0.0, and
V3.0.1.
Impact
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Customers are advised to refer to CERT MITIGATIONS section ICSA-12-283-01 for affected packages and patching details.
Affected OS:
Fedora 36
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
AFFECTED PRODUCTS
The following versions of CNCSoft, a software management platform, are affected:
CNCSoft: All versions prior to 1.01.32
QID Detection Logic (Authenticated)
QID checks for the Vulnerable version using windows registry keys
Customers are advised to refer to CERT MITIGATIONS section ICSA-22-132-01 for affected packages and patching details.
Patch is NOT available for the package.
Patch is NOT available for the package.
AFFECTED PRODUCTS
For following products affected version is 8.8.5 and prior
FL MGUARD RS2000 TX/TX VPN
FL MGUARD RS2005 TX VPN
TC MGUARD RS2000 3G VPN
FL MGUARD RS4000 TX/TX
FL MGUARD RS4000 TX/TX VPN
FL MGUARD RS4004 TX/DTX
FL MGUARD RS4004 TX/DTX VPN
TC MGUARD RS4000 3G VPN
FL MGUARD RS2000 TX/TX-B
FL MGUARD RS4000 TX/TX-P
FL MGUARD RS4000 TX/TX-M
FL MGUARD PCI4000
FL MGUARD PCI4000 VPN
FL MGUARD PCIE4000
FL MGUARD PCIE4000 VPN
FL MGUARD DELTA TX/TX
FL MGUARD DELTA TX/TX VPN
FL MGUARD SMART2
FL MGUARD SMART2 VPN
FL MGUARD CORE TX
FL MGUARD CORE TX VPN
FL MGUARD SMART2 VPN/K1
FL MGUARD RS4000 TX/TX VPN/K1
FL MGUARD PCIE4000 VPN/K2
FL MGUARD RS4000 VPN/K2
FL MGUARD PCI4000 VPN/K2
TC MGUARD RS2000 4G VPN
TC MGUARD RS4000 4G VPN
TC MGUARD RS4000 4G VZW VPN
TC MGUARD RS2000 4G VZW VPN
TC MGUARD RS4000 4G ATT VPN
TC MGUARD RS2000 4G ATT VPN
FL MGUARD GT/GT
FL MGUARD GT/GT VPN
FL MGUARD CENTERPORT
FL MGUARD CENTERPORT VPN-1000
For following products affected version is 1.13.0.1 and prior
FL MGUARD DM UNLIMITED
For following products affected version is 2.70 and prior
FL WLAN 1010
FL WLAN 1011
FL WLAN 1100
FL WLAN 1101
FL WLAN 2010
FL WLAN 2011
FL WLAN 2100
FL WLAN 2101
For following products affected version is 3.21 and prior
FL WLAN 5100
FL WLAN 5101
FL WLAN 5102
FL WLAN 5110
FL WLAN 5111
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Customers are advised to refer to CERT MITIGATIONS section VDE-2022-013 for affected packages and patching details.
AFFECTED PRODUCTS
WAGO PFC200 Firmware version 03.00.39(12) WAGO PFC200 Firmware version 03.01.07(13) WAGO PFC100 Firmware version 03.00.39(12) WAGO PFC100 Firmware version 03.02.02(14)
Based on inspection of various firmware versions, this vulnerability appears to impact all versions from the current and going back to at least 10 and likely earlier.
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Customers are advised to refer to CERT MITIGATIONS section TALOS-2019-0939 for affected packages and patching details.
AFFECTED PRODUCTS
WAGO PFC200 Firmware version 03.00.39(12) WAGO PFC200 Firmware version 03.01.07(13) WAGO PFC100 Firmware version 03.00.39(12)
Based on inspection of various firmware versions, this vulnerability appears to impact all versions from the current and going back to at least 10 and likely earlier.
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Customers are advised to refer to CERT MITIGATIONS section TALOS-2019-0923 for affected packages and patching details.
QID Detection Logic (Authenticated):
This QID lists installed patch to check if the patches are missing.
NOTE: Revision 3: Published on 2021-06-15
QID Detection Logic (Authenticated):
This QID lists installed patch to check if the patches are missing.
NOTE: Revision 2: Published on 2021-11-16
QID Detection Logic (Authenticated):
This QID lists installed patch to check if the patches are missing.
NOTE: Revision 3: Published on 2022-06-17
QID Detection Logic (Authenticated):
This QID lists installed patch to check if the patches are missing.
NOTE: Revision 2: Published on 2022-05-17
QID Detection Logic (Authenticated):
This QID lists installed patch to check if the patches are missing.
NOTE: Revision 4: Published on 2022-03-15
AFFECTED PRODUCTS
The vulnerability affects the products listed below. Affected firmware versions are 1.66 - 1.88.
4NWP102879R0001 CS141 Advanced - Box
4NWP102880R0001 CS141 Advanced - Slot
4NWP102881R0001 CS141 ModBus - Box
4NWP102882R0001 CS141 ModBus - Slot
4NWP102687R0001 CS141 Basic - Box
4NWP102688R0001 CS141 Basic - Slot
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Customers are advised to refer to CERT MITIGATIONS section ABBVU-ELSP-4178-2150 for affected packages and patching details.
Affected Products
Cisco ASA Software earlier than Release 9.17(1) and had the Clientless SSL VPN feature enabled.
QID Detection Logic (Authenticated):
The check matches Cisco ASA OS version retrieved via Unix Auth using "version" command.
Customers are advised to refer to cisco-sa-asa-webvpn-LOeKsNmO for more information.
AFFECTED PRODUCTS
WAGO PFC200 Firmware version 03.00.39(12) WAGO PFC200 Firmware version 03.01.07(13) WAGO PFC100 Firmware version 03.00.39(12)
Based on inspection of various firmware versions, this vulnerability appears to impact all versions from the current and going back to at least 10 and likely earlier.
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Customers are advised to refer to CERT MITIGATIONS section TALOS-2019-0924 for affected packages and patching details.
AFFECTED PRODUCTS
Siemens reports that the vulnerability affects the following versions:
SIPROTEC 4 and SIPROTEC Compact product families
All devices that include the EN100 Ethernet module version V4.24 or prior.
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Customers are advised to refer to CERT MITIGATIONS section ICSA-15-202-01 for affected packages and patching details.
QID Detection Logic (Authenticated):
This QID lists installed patch to check if the patches are missing.
NOTE: Revision 2: Published on 2021-05-18
QID Detection Logic (Authenticated):
This QID lists installed patch to check if the patches are missing.
NOTE: Revision 3: Published on 2021-12-10
Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.
AFFECTED PRODUCTS
The following versions of Advantech iView management software are affected:
Advantech iView: All versions prior to 5_7_04_6469
QID Detection Logic (Authenticated)
QID checks for the Vulnerable version using windows registry keys
Customers are advised to refer to CERT MITIGATIONS section ICSA-22-179-03 for affected packages and patching details.
CVE-2022-23990 - Expat (aka libexpat) could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflow in the doProlog function. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system..
CVE-2022-23852 - Expat (aka libexpat) could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflow in the XML_GetBuffer function. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system..
7.0,8.0,8.5, and 9.0.
Affected Versions:
IBM HTTP Server V9.0.0.0 through 9.0.5.7
IBM HTTP Server V8.5.0.0 through 8.5.5.19
IBM HTTP Server V8.0.0.0 through 8.0.0.15
IBM HTTP Server V7.0.0.0 through 7.0.0.45
QID Detection Logic (Authenticated):
Operating System: Linux
The QID checks the vulnerable version IBM HTTP Server. "version.signature" is used to verify the version.
AFFECTED PRODUCTS
Moxa EDR-810 V4.1 build 17030317
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Customers are advised to refer to CERT MITIGATIONS section TALOS-2017-0472 for affected packages and patching details.
QID Detection Logic (Authenticated):
This QID lists installed patch to check if the patches are missing.
NOTE: Revision 3: Published on 2022-02-15
Vulnerable Component: BIG-IP ASM,LTM,APM
Affected Versions:
16.0.0 - 16.0.1
15.1.0 - 15.1.6
14.1.0 - 14.1.4
QID Detection Logic(Authenticated):
This QID checks for the vulnerable versions of F5 BIG-IP devices using the tmsh command.
Vulnerable Component: BIG-IP ASM,LTM,APM
Affected Versions:
17.0.0
16.1.0 - 16.1.3
15.1.0 - 15.1.6
14.1.0 - 14.1.5
13.1.0 - 13.1.5
QID Detection Logic(Authenticated):
This QID checks for the vulnerable versions of F5 BIG-IP devices using the tmsh command.
Vulnerable Component: BIG-IP ASM,LTM,APM
Affected Versions:
15.1.4 - 15.1.6
14.1.4.1 - 14.1.5
QID Detection Logic(Authenticated):
This QID checks for the vulnerable versions of F5 BIG-IP devices using the tmsh command.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
AFFECTED PRODUCTS
The following versions of C-more EA9, an industrial touch screen HMI, are affected:
C-more EA9-PGMSW all versions prior to 6.73.
QID Detection Logic (Authenticated)
QID checks for the Vulnerable version using windows registry keys.
Customers are advised to refer to CERT MITIGATIONS section ICSA-22-167-01 for affected packages and patching details.
Leadtools is affected by remote code execution vulnerability.
Affected Version:
All the versions of Leadtools:20.0.2019.3.15 are affected
QID Detection Logic:
This QID checks for vulnerable versions of Leadtools.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
A vulnerability in the handling of RSA keys on devices running Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to retrieve an RSA private key.
Affected Products
Cisco products if they were running a vulnerable release of Cisco ASA Software which perform hardware-based cryptographic functions
QID Detection Logic (Authenticated):
The check matches Cisco ASA OS version retrieved via Unix Auth using "version" command.
Customers are advised to refer to cisco-sa-asaftd-rsa-key-leak-Ms7UEfZz for more information.
Patch is NOT available for the package.
Patch is NOT available for the package.
The software logistics system of SAP NetWeaver AS ABAP and ABAP Platform versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 787, 788 do not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
Affected Versions:
SAP NetWeaver AS for ABAP, Versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753,
754, 755, 756, 787, 788
QID Detection Logic(s):
Scan initiates HTTP request on Web Server and determines version based on the Server Header.
Affected versions:
uDraw versions prior to version 3.3.3
QID Detection Logic (Unauthenticated):
This QID checks for vulnerable uDraw plugin by sending a crafted payload to the webserver.
AFFECTED PRODUCTS
InHand Networks InRouter302 V3.5.4
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Customers are advised to refer to CERT MITIGATIONS section TALOS-2022-1471 for affected packages and patching details.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
The software logistics system of SAP NetWeaver AS ABAP versions - 753, 754, 755, 756 allows an authenticated attacker to upload malicious files and delete (theme) data, which could result in Stored Cross-Site Scripting (XSS) attack.
Affected Versions:
SAP NetWeaver AS for ABAP, Versions - 753, 754, 755, 756
QID Detection Logic(s):
Scan initiates HTTP request on Web Server and determines version based on the Server Header.
Affected Versions:
Shareaholic Plugin prior to version 9.7.6
QID Detection Logic (Unauthenticated) :
This QID checks for vulnerable Shareaholic plugin by sending a crafted payload to the webserver.
The software logistics system of SAP NetWeaver AS ABAP and ABAP Platform versions - 740, 750, 787 allows an unauthenticated attacker to redirect users to a malicious site due to insufficient URL validation. This could lead to the user being tricked to disclose personal information.
Affected Versions:
SAP NetWeaver AS for ABAP, Versions - 740, 750, 787
QID Detection Logic(s):
Scan initiates HTTP request on Web Server and determines version based on the Server Header.
The software logistics system of SAP NetWeaver AS ABAP and ABAP Platform versions - 701, 702, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 786 allows an attacker authenticated as a regular user can use the S/4 Hana dashboard to reveal systems and services which they would not normally be allowed to see.
Affected Versions:
SAP NetWeaver AS for ABAP, Versions - 701, 702, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 786
QID Detection Logic(s):
Scan initiates HTTP request on Web Server and determines version based on the Server Header.
Red Hat openshift container platform is Red Hat's cloud computing kubernetes application platform solution designed for on-premise or private cloud deployments.
Security Fix(es):Affected Products:
A vulnerability in the remote access SSL VPN features of Cisco Adaptive Security Appliance (ASA) Software
could allow an unauthenticated,
remote attacker to cause a denial of service (DoS) condition on an affected device.
Affected Products
Cisco products if they are running a vulnerable release of ASA Software
and have a vulnerable AnyConnect or WebVPN configuration.
Cisco
QID Detection Logic (Authenticated):
The check matches Cisco ASA OS version retrieved via Unix Auth using "version" command.
Customers are advised to refer to cisco-sa-asa-dos-tL4uA4AA for more information.
Affected Products:
openSUSE Leap 15.3:NonFree
Affected Products:
openSUSE Leap 15.4:NonFree
Affected OS:
Fedora 35
Foxit PhantomPDF is vulnerable to multiple vulnerabilities
Affected Version:
Foxit PhantomPDF versions 7.3.9.816 and earlier
QID Detection logic:
This QID checks for vulnerable file version of Foxit PhantomPDF Software
Foxit PhantomPDF is vulnerable to multiple vulnerabilities
Affected Version:
Foxit PhantomPDF versions 7.3.11.1122 and earlier
QID Detection logic:
This QID checks for vulnerable file version of Foxit PhantomPDF Software
Foxit PhantomPDF is vulnerable to multiple vulnerabilities
Affected Version:
Foxit PhantomPDF versions 7.3.13.421 and earlier
QID Detection logic:
This QID checks for vulnerable file version of Foxit PhantomPDF Software
The software logistics system of SAP NetWeaver AS ABAP and ABAP Platform versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756 allows a high privileged user who has access to transaction SM59 can read connection details stored with the destination for http calls.
Affected Versions:
SAP NetWeaver AS for ABAP, Versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756
QID Detection Logic(s):
Scan initiates HTTP request on Web Server and determines version based on the Server Header.
A URL filtering policy misconfiguration vulnerability exists in Palo Alto Networks PAN-OS, this could allow a network-based attacker to conduct reflected and amplified TCP denial-of-service (RDoS) attacks.
Affected Versions:
PAN-OS 10.2 versions earlier than PAN-OS 10.2.2-h2
PAN-OS 10.1 versions earlier than PAN-OS 10.1.6-h6
PAN-OS 10.0 versions earlier than PAN-OS 10.0.11-h1
PAN-OS 9.1 versions earlier than PAN-OS 9.1.14-h4
PAN-OS 9.0 versions earlier than PAN-OS 9.0.16-h3
PAN-OS 8.1 versions earlier than PAN-OS 8.1.23-h1
QID Detection Logic (Authenticated):
This QID looks for the vulnerable version of PAN-OS
Affected OS:
Fedora 35
Affected OS:
Fedora 36
the etcd packages provide a highly available key-value store for shared configuration.
Security Fix(es):Affected Products:
collectd plugin for gathering resource usage statistics from containers created with the libpod library.
Security Fix(es):Affected Products:
the etcd packages provide a highly available key-value store for shared configuration.
Security Fix(es):Affected Products:
collectd plugin for gathering resource usage statistics from containers created with the libpod library.
Security Fix(es):Affected Products:
.net is a managed-software framework.
It implements a subset of the .net framework apis and several new apis, and it includes a clr implementation.
Affected Products:
.net is a managed-software framework.
It implements a subset of the .net framework apis and several new apis, and it includes a clr implementation.
Affected Products:
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
Affected OS:
Fedora 35
Affected OS:
Fedora 36
Affected OS:
Fedora 35
Affected OS:
Fedora 36
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
Affected OS:
Fedora 35
Affected OS:
Fedora 35
Affected OS:
Fedora 35
Affected OS:
Fedora 36
Affected OS:
Fedora 35
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
Affected OS:
Fedora 36
Affected OS:
Fedora 35
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
CBL-Mariner has issued updated packages to fix this vulnerability. For more information about the vulnerability and obtaining patches, refer to the following CBL-Mariner security advisories:https://github.com/microsoft/CBL-Mariner/releases
Affected OS:
Fedora 36
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Patch is NOT available for the package.
Affected OS:
Fedora 35
Affected OS:
Fedora 36
Affected OS:
Fedora 36
AFFECTED PRODUCTS
The following versions of e-Design engineering software are affected:
e-Design: All versions prior to 1.12.2.0006
QID Detection Logic (Authenticated)
QID checks for the Vulnerable version using windows registry keys
Customers are advised to refer to CERT MITIGATIONS section ICSA-22-179-01 for affected packages and patching details.
Affected OS:
Fedora 36
Affected OS:
Fedora 36
Affected versions:
Foxit Reader version 8.1.4.1208 and earlier
Foxit PhantomPDF version 8.1.1.1115 and earlier
QID detection logic:(Authenticated)
This QID checks Windows Registry to get Foxit Reader and Foxit PhantomPDF installation path and then reads corresponding executable((FoxitReader.exe/FoxitPhantomPDF.exe)) to see if it's running a vulnerable version.
AFFECTED PRODUCTS
The following Siemens products are affected:
JT2GO: All versions prior to v13.3.0.3
Teamcenter Visualization v13.3: All versions prior to v13.3.0.3
Teamcenter Visualization v14.0: All versions prior to v14.0.0.1
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of Siemens using registry "HKLM\SOFTWARE\Siemens"
Customers are advised to refer to CERT MITIGATIONS section ICSA-22-132-09 for affected packages and patching details.
Patch is NOT available for the package.
Patch is NOT available for the package.
Affected versions:
Foxit Reader version 8.2.0.2051 and earlier
Foxit PhantomPDF version 8.2.0.2192 and earlier
QID detection logic:(Authenticated)
This QID checks Windows Registry to get Foxit Reader and Foxit PhantomPDF installation path and then reads corresponding executable((FoxitReader.exe/FoxitPhantomPDF.exe)) to see if it's running a vulnerable version.
Affected versions:
Foxit Reader version 8.2.1.6871 and earlier
Foxit PhantomPDF version 8.2.1.6871 and earlier
QID detection logic:(Authenticated)
This QID checks Windows Registry to get Foxit Reader and Foxit PhantomPDF installation path and then reads corresponding executable((FoxitReader.exe/FoxitPhantomPDF.exe)) to see if it's running a vulnerable version.
Affected versions:
Foxit Reader version 8.1.0.1013 and earlier
Foxit PhantomPDF version 8.1.0.1013 and earlier
QID detection logic:(Authenticated)
This QID checks Windows Registry to get Foxit Reader and Foxit PhantomPDF installation path and then reads corresponding executable((FoxitReader.exe/FoxitPhantomPDF.exe)) to see if it's running a vulnerable version.
