The NPM package `braces`, versions prior to 3.0.3, fails to limit the number of characters it can handle, which could lead to Memory Exhaustion. In `lib/parse.js,` if a malicious user sends "imbalanced braces" as input, the parsing will enter a loop, which will cause the program to start allocating heap memory without freeing it at any moment of the loop. Eventually, the JavaScript heap limit is reached, and the program will crash.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3771-1 advisory.

    - CVE-2024-38355: Fixed socket.io: unhandled 'error' event (bsc#1226967)
    - CVE-2024-38998: Fixed requirejs: prototype pollution via function config (bsc#1227248)
    - CVE-2024-38999: Fixed requirejs: prototype pollution via function s.contexts._.configure (bsc#1227252)
    - CVE-2024-39338: Fixed axios: server-side request forgery due to requests for path relative URLs being     processed as protocol relative URLs in axios (bsc#1229423)
    - CVE-2024-4067: Fixed micromatch: vulnerable to Regular Expression Denial of Service (ReDoS)     (bsc#1224366)
    - CVE-2024-4068: Fixed braces: fails to limit the number of characters it can handle, which could lead to     Memory Exhaustion (bsc#1224295)
    - CVE-2024-43788: Fixed webpack: DOM clobbering gadget in AutoPublicPathRuntimeModule could lead to XSS     (bsc#1229861)
    - CVE-2024-48948: Fixed elliptic: ECDSA signature verification error due to leading zero may reject     legitimate transactions in elliptic (bsc#1231684)
    - CVE-2024-48949: Fixed elliptic: Missing Validation in Elliptic's EDDSA Signature Verification     (bsc#1231564)
    - CVE-2024-9014: Fixed OAuth2 issue that could lead to information leak (bsc#1230928)

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8077 advisory.

    Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly     application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.4.19 serves as a     replacement for Red Hat JBoss Enterprise Application Platform 7.4.18, and includes bug fixes and     enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.19 Release Notes for information     about the most significant bug fixes and enhancements included in this release.

    Security Fix(es):

    * braces: fails to limit the number of characters it can handle [eap-7.4.z] (CVE-2024-4068)

    * jose4j: denial of service via specially crafted JWE [eap-7.4.z] (CVE-2023-51775)

    * wildfly-domain-http: wildfly: No timeout for EAP management interface may lead to Denial of Service     (DoS) [eap-7.4.z] (CVE-2024-4029)

    * xalan: integer truncation issue in Xalan-J (JAXP, 8285407) [eap-7.4.z] (CVE-2022-34169)

    * org.jsoup/jsoup: The jsoup cleaner may incorrectly sanitize crafted XSS attempts if     SafeList.preserveRelativeLinks is enabled [eap-7.4.z] (CVE-2022-36033)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8075 advisory.

    Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly     application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.4.19 serves as a     replacement for Red Hat JBoss Enterprise Application Platform 7.4.18, and includes bug fixes and     enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.19 Release Notes for information     about the most significant bug fixes and enhancements included in this release.

    Security Fix(es):

    * braces: fails to limit the number of characters it can handle [eap-7.4.z] (CVE-2024-4068)

    * jose4j: denial of service via specially crafted JWE [eap-7.4.z] (CVE-2023-51775)

    * wildfly-domain-http: wildfly: No timeout for EAP management interface may lead to Denial of Service     (DoS) [eap-7.4.z] (CVE-2024-4029)

    * xalan: integer truncation issue in Xalan-J (JAXP, 8285407) [eap-7.4.z] (CVE-2022-34169)

    * org.jsoup/jsoup: The jsoup cleaner may incorrectly sanitize crafted XSS attempts if     SafeList.preserveRelativeLinks is enabled [eap-7.4.z] (CVE-2022-36033)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8076 advisory.

    Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly     application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.4.19 serves as a     replacement for Red Hat JBoss Enterprise Application Platform 7.4.18, and includes bug fixes and     enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.19 Release Notes for information     about the most significant bug fixes and enhancements included in this release.

    Security Fix(es):

    * braces: fails to limit the number of characters it can handle [eap-7.4.z] (CVE-2024-4068)

    * jose4j: denial of service via specially crafted JWE [eap-7.4.z] (CVE-2023-51775)

    * wildfly-domain-http: wildfly: No timeout for EAP management interface may lead to Denial of Service     (DoS) [eap-7.4.z] (CVE-2024-4029)

    * xalan: integer truncation issue in Xalan-J (JAXP, 8285407) [eap-7.4.z] (CVE-2022-34169)

    * org.jsoup/jsoup: The jsoup cleaner may incorrectly sanitize crafted XSS attempts if     SafeList.preserveRelativeLinks is enabled [eap-7.4.z] (CVE-2022-36033)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-9820d9491f advisory.

    Backport security fixes for CVE-2024-4216, CVE-2024-4068, CVE-2024-4067.

Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of reaper installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4068 advisory.

  - The NPM package `braces`, versions prior to 3.0.3, fails to limit the number of characters it can handle,     which could lead to Memory Exhaustion. In `lib/parse.js,` if a malicious user sends imbalanced braces as     input, the parsing will enter a loop, which will cause the program to start allocating heap memory without     freeing it at any moment of the loop. Eventually, the JavaScript heap limit is reached, and the program     will crash. (CVE-2024-4068)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched.

  - Mozilla: Type confusion for special arguments in IonMonkey (CVE-2020-15656)

  - Mozilla: Malicious Extension could obtain auth codes from OAuth login flows (CVE-2020-6823)

  - Mozilla Firefox through 27 sends HTTP Cookie headers without first validating that they have the required     character-set restrictions, which allows remote attackers to conduct the equivalent of a persistent Logout     CSRF attack via a crafted parameter that forces a web application to set a malformed cookie within an HTTP     response. (CVE-2013-6167)

Note that Nessus has not tested for these issues but has instead relied on the package manager's report that the package is installed.

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched.

  - pcs: Cross-Site Request Forgery in web UI (CVE-2016-0720)

  - Session fixation vulnerability in pcsd in pcs before 0.9.157. (CVE-2016-0721)

  - ClusterLabs pcs before version 0.9.157 is vulnerable to a cross-site scripting vulnerability due to     improper validation of Node name field when creating new cluster or adding existing cluster.
    (CVE-2017-2661)

Note that Nessus has not tested for these issues but has instead relied on the package manager's report that the package is installed.

ID	Name	Product	Family	Severity
209968	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : pgadmin4 (SUSE-SU-2024:3771-1)	Nessus	SuSE Local Security Checks	critical
209012	RHEL 9 : Red Hat JBoss Enterprise Application Platform 7.4.19 Security update (Important) (RHSA-2024:8077)	Nessus	Red Hat Local Security Checks	high
209009	RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.4.19 Security update (Important) (RHSA-2024:8075)	Nessus	Red Hat Local Security Checks	high
209008	RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.4.19 Security update (Important) (RHSA-2024:8076)	Nessus	Red Hat Local Security Checks	high
202327	Fedora 39 : pgadmin4 (2024-9820d9491f)	Nessus	Fedora Local Security Checks	high
201772	CBL Mariner 2.0 Security Update: reaper (CVE-2024-4068)	Nessus	MarinerOS Local Security Checks	high
200049	RHEL 6 : firefox (Unpatched Vulnerability)	Nessus	Red Hat Local Security Checks	critical
199124	RHEL 6 : pcs (Unpatched Vulnerability)	Nessus	Red Hat Local Security Checks	high

Detections

Analytics

CVE-2024-4068

high

Tenable Plugins

critical

high

high

high

high

high

critical

high