Detections
Analytics
RHEL 9 : golang (Unpatched Vulnerability) (deprecated)
critical Nessus Plugin ID 195845
Synopsis
This plugin has been deprecated as it does not adhere to established standards for this style of check.Description
This plugin has been deprecated as it does not adhere to established standards for this style of check.Plugin Details
Severity: Critical
ID: 195845
File Name: redhat_unpatched-golang-rhel9.nasl
Version: 1.1
Type: local
Agent: unix
Family: Red Hat Local Security Checks
Published: 5/11/2024
Updated: 5/31/2024
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2023-24540
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:redhat:enterprise_linux:osbuild-composer, p-cpe:/a:redhat:enterprise_linux:conmon, p-cpe:/a:redhat:enterprise_linux:grafana, p-cpe:/a:redhat:enterprise_linux:redhat-certification-cnf, p-cpe:/a:redhat:enterprise_linux:butane, cpe:/o:redhat:enterprise_linux:9, p-cpe:/a:redhat:enterprise_linux:toolbox, p-cpe:/a:redhat:enterprise_linux:git-lfs, p-cpe:/a:redhat:enterprise_linux:redhat-certification-preflight, p-cpe:/a:redhat:enterprise_linux:grafana-pcp, p-cpe:/a:redhat:enterprise_linux:weldr-client, p-cpe:/a:redhat:enterprise_linux:containernetworking-plugins, p-cpe:/a:redhat:enterprise_linux:ignition, p-cpe:/a:redhat:enterprise_linux:skopeo, cpe:/o:redhat:enterprise_linux:8
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
Exploit Ease: No known exploits are available
Vulnerability Publication Date: 5/4/2023
Reference Information
CVE: CVE-2023-24539, CVE-2023-24540, CVE-2023-29400, CVE-2023-29409, CVE-2023-39318, CVE-2023-39319, CVE-2023-39321, CVE-2023-39322, CVE-2023-39326, CVE-2023-45287