Language:
Severity: High
ID: 210229
File Name: oraclelinux_ELSA-2024-12803.nasl
Version: 1.1
Type: local
Agent: unix
Published: 11/4/2024
Updated: 11/4/2024
Supported Sensors: Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus
Risk Factor: Medium
Score: 4.9
Risk Factor: High
Base Score: 7.5
Temporal Score: 5.9
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2024-42005
Risk Factor: High
Base Score: 7.3
Temporal Score: 6.6
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CPE: p-cpe:/a:oracle:linux:python3.11-certifi, p-cpe:/a:oracle:linux:python3.11-ansible-core, p-cpe:/a:oracle:linux:python3.11-importlib-metadata, p-cpe:/a:oracle:linux:python3.11-dateutil, p-cpe:/a:oracle:linux:ansible-collection-community-crypto, p-cpe:/a:oracle:linux:python3.11-pulp-glue, p-cpe:/a:oracle:linux:python3.11-drf-nested-routers, p-cpe:/a:oracle:linux:python3.11-pygments, p-cpe:/a:oracle:linux:python3.11-rich, p-cpe:/a:oracle:linux:python3.11-openpyxl, p-cpe:/a:oracle:linux:python3.11-redis, p-cpe:/a:oracle:linux:python3.11-async-timeout, p-cpe:/a:oracle:linux:python3.11-jmespath, p-cpe:/a:oracle:linux:ol-private-automation-hub-installer, p-cpe:/a:oracle:linux:python3.11-yamllint, p-cpe:/a:oracle:linux:python3.11-insights-analytics-collector, p-cpe:/a:oracle:linux:python3.11-pyproject_hooks, p-cpe:/a:oracle:linux:python3.11-wrapt, p-cpe:/a:oracle:linux:python3.11-build, p-cpe:/a:oracle:linux:python3.11-googleapis-common-protos, p-cpe:/a:oracle:linux:python3.11-inflection, p-cpe:/a:oracle:linux:python3.11-django-picklefield, p-cpe:/a:oracle:linux:python3.11-mccabe, p-cpe:/a:oracle:linux:python3.11-multidict, p-cpe:/a:oracle:linux:python3.11-xlwt, p-cpe:/a:oracle:linux:python3.11-gnupg, p-cpe:/a:oracle:linux:python3.11-diff-match-patch, p-cpe:/a:oracle:linux:python3.11-django-lifecycle, p-cpe:/a:oracle:linux:python3.11-ruamel.yaml.clib, p-cpe:/a:oracle:linux:python3.11-galaxy-ng, p-cpe:/a:oracle:linux:ansible-collection-mdellweg-filters, p-cpe:/a:oracle:linux:python3.11-webencodings, p-cpe:/a:oracle:linux:python3.11-boto3, p-cpe:/a:oracle:linux:python3.11-pipdeptree, p-cpe:/a:oracle:linux:python3.11-python3-openid, p-cpe:/a:oracle:linux:python3.11-opentelemetry_instrumentation_django, p-cpe:/a:oracle:linux:python3.11-opentelemetry_exporter_otlp_proto_http, p-cpe:/a:oracle:linux:python3.11-backoff, p-cpe:/a:oracle:linux:python3.11-galaxy-importer, p-cpe:/a:oracle:linux:python3.11-smmap, p-cpe:/a:oracle:linux:ansible-role-postgresql, p-cpe:/a:oracle:linux:python3.11-opentelemetry_exporter_otlp_proto_grpc, cpe:/a:oracle:linux:8::automation2, p-cpe:/a:oracle:linux:python3.11-yarl, p-cpe:/a:oracle:linux:python3.11-opentelemetry_exporter_otlp_proto_common, p-cpe:/a:oracle:linux:python3.11-pyjwt, p-cpe:/a:oracle:linux:python3.11-resolvelib, p-cpe:/a:oracle:linux:python3.11-semantic-version, p-cpe:/a:oracle:linux:python3.11-djangorestframework, p-cpe:/a:oracle:linux:python3.11-asgiref, p-cpe:/a:oracle:linux:python3.11-brotli, p-cpe:/a:oracle:linux:python3.11-dynaconf, p-cpe:/a:oracle:linux:python3.11-django-filter, p-cpe:/a:oracle:linux:python3.11-websockets, p-cpe:/a:oracle:linux:python3.11-asyncio-throttle, p-cpe:/a:oracle:linux:python3.11-django-prometheus, p-cpe:/a:oracle:linux:python-pip-tools-doc, p-cpe:/a:oracle:linux:python3.11-gitdb, p-cpe:/a:oracle:linux:python3.11-tablib, p-cpe:/a:oracle:linux:python3.11-gunicorn, p-cpe:/a:oracle:linux:python3.11-pyasn1_modules, p-cpe:/a:oracle:linux:python3.11-aiohttp, p-cpe:/a:oracle:linux:python3.11-django_guid, p-cpe:/a:oracle:linux:python3.11-bracex, p-cpe:/a:oracle:linux:python3.11-social-auth-app-django, p-cpe:/a:oracle:linux:python3.11-pycparser, p-cpe:/a:oracle:linux:python3.11-jinja2, p-cpe:/a:oracle:linux:python3.11-opentelemetry_instrumentation_wsgi, p-cpe:/a:oracle:linux:python3.11-url-normalize, p-cpe:/a:oracle:linux:python3.11-mdurl, p-cpe:/a:oracle:linux:python3.11-opentelemetry_proto, p-cpe:/a:oracle:linux:python3.11-pathspec, p-cpe:/a:oracle:linux:python3.11-filelock, p-cpe:/a:oracle:linux:python3.11-markupsafe, p-cpe:/a:oracle:linux:python3.11-drf-spectacular, p-cpe:/a:oracle:linux:python3.11-botocore, p-cpe:/a:oracle:linux:python3.11-ansible-builder, p-cpe:/a:oracle:linux:python3.11-parsley, p-cpe:/a:oracle:linux:python3.11-pycares, p-cpe:/a:oracle:linux:ol-automation-manager-cli, p-cpe:/a:oracle:linux:python3.11-xlrd, p-cpe:/a:oracle:linux:python3.11-pulpcore, cpe:/a:oracle:linux:8::automation, p-cpe:/a:oracle:linux:python3.11-naya, p-cpe:/a:oracle:linux:python3.11-pyyaml, p-cpe:/a:oracle:linux:python3.11-psycopg_c, p-cpe:/a:oracle:linux:python3.11-bleach, p-cpe:/a:oracle:linux:python3.11-uritemplate, p-cpe:/a:oracle:linux:python3.11-s3transfer, p-cpe:/a:oracle:linux:python3.11-typing-extensions, p-cpe:/a:oracle:linux:python3.11-urllib3, p-cpe:/a:oracle:linux:python3.11-pyasn1, p-cpe:/a:oracle:linux:supervisor, p-cpe:/a:oracle:linux:python3.11-defusedxml, p-cpe:/a:oracle:linux:python3.11-flake8, p-cpe:/a:oracle:linux:python3.11-pillow, cpe:/a:oracle:linux:8::automation2.2, p-cpe:/a:oracle:linux:python3.11-opentelemetry_sdk, p-cpe:/a:oracle:linux:python3.11-pycodestyle, p-cpe:/a:oracle:linux:python3.11-frozenlist, p-cpe:/a:oracle:linux:python-dateutil-doc, p-cpe:/a:oracle:linux:python3.11-cryptography, p-cpe:/a:oracle:linux:python3.11-attrs, cpe:/o:oracle:linux:8, p-cpe:/a:oracle:linux:ansible-collection-community-postgresql, p-cpe:/a:oracle:linux:python3.11-oauthlib, p-cpe:/a:oracle:linux:python3.11-click, p-cpe:/a:oracle:linux:python3.11-social-auth-core, p-cpe:/a:oracle:linux:python3.11-opentelemetry_api, p-cpe:/a:oracle:linux:python3.11-markuppy, p-cpe:/a:oracle:linux:python3.11-opentelemetry_semantic_conventions, p-cpe:/a:oracle:linux:python3.11-prometheus-client, p-cpe:/a:oracle:linux:python3.11-deprecated, p-cpe:/a:oracle:linux:python3.11-pulp-container, p-cpe:/a:oracle:linux:python3.11-aiosignal, p-cpe:/a:oracle:linux:python3.11-opentelemetry_exporter_otlp, p-cpe:/a:oracle:linux:python3.11-djangorestframework-queryfields, p-cpe:/a:oracle:linux:python3.11-pyflakes, p-cpe:/a:oracle:linux:python3.11-pyrsistent, p-cpe:/a:oracle:linux:python3.11-sqlparse, p-cpe:/a:oracle:linux:python3.11-uuid6, p-cpe:/a:oracle:linux:python3.11-pytz, p-cpe:/a:oracle:linux:python3.11-django-ipware, p-cpe:/a:oracle:linux:python3.11-django_import_export, p-cpe:/a:oracle:linux:python3.11-gitpython, p-cpe:/a:oracle:linux:python3.11-bleach-allowlist, p-cpe:/a:oracle:linux:python3.11-idna, p-cpe:/a:oracle:linux:ansible-collection-ansible-posix, p-cpe:/a:oracle:linux:python3.11-django-auth-ldap, p-cpe:/a:oracle:linux:python3.11-aiodns, p-cpe:/a:oracle:linux:python3.11-requests-oauthlib, p-cpe:/a:oracle:linux:python3.11-charset-normalizer, p-cpe:/a:oracle:linux:python3.11-colorama, p-cpe:/a:oracle:linux:python3.11-grpcio, p-cpe:/a:oracle:linux:python3.11-ansible-compat, p-cpe:/a:oracle:linux:python3.11-setproctitle, p-cpe:/a:oracle:linux:python3.11-drf-access-policy, p-cpe:/a:oracle:linux:python3.11-psycopg, p-cpe:/a:oracle:linux:python3.11-future, p-cpe:/a:oracle:linux:python3.11-platformdirs, p-cpe:/a:oracle:linux:python3.11-wcmatch, p-cpe:/a:oracle:linux:python3.11-async-lru, p-cpe:/a:oracle:linux:pulpcore-selinux, p-cpe:/a:oracle:linux:python3.11-bindep, p-cpe:/a:oracle:linux:python3.11-jsonschema, p-cpe:/a:oracle:linux:python3.11-opentelemetry_util_http, p-cpe:/a:oracle:linux:python3.11-pip-tools, p-cpe:/a:oracle:linux:python3.11-pyjwkest, p-cpe:/a:oracle:linux:python3.11-requests, p-cpe:/a:oracle:linux:python3.11-six, p-cpe:/a:oracle:linux:python3.11-setuptools_scm, p-cpe:/a:oracle:linux:python3.11-odfpy, p-cpe:/a:oracle:linux:python3.11-subprocess-tee, p-cpe:/a:oracle:linux:python3.11-pulp-ansible, p-cpe:/a:oracle:linux:python3.11-django, p-cpe:/a:oracle:linux:python3.11-awscrt, p-cpe:/a:oracle:linux:python3.11-opentelemetry_distro, p-cpe:/a:oracle:linux:python3.11-ruamel.yaml, p-cpe:/a:oracle:linux:python3.11-tomli, p-cpe:/a:oracle:linux:python3.11-distro, p-cpe:/a:oracle:linux:python3.11-markdown, p-cpe:/a:oracle:linux:python3.11-markdown-it-py, p-cpe:/a:oracle:linux:python3.11-pbr, p-cpe:/a:oracle:linux:dumb-init, p-cpe:/a:oracle:linux:python3.11-et-xmlfile, p-cpe:/a:oracle:linux:ol-automation-manager, cpe:/a:oracle:linux:8::developer_epel, p-cpe:/a:oracle:linux:python3.11-black, p-cpe:/a:oracle:linux:python3.11-pygtrie, p-cpe:/a:oracle:linux:python3.11-pycryptodomex, p-cpe:/a:oracle:linux:python3.11-pyparsing, p-cpe:/a:oracle:linux:receptor, p-cpe:/a:oracle:linux:python3.11-ansible-lint, p-cpe:/a:oracle:linux:python3.11-protobuf, p-cpe:/a:oracle:linux:ansible-collection-pulp-pulp_installer, p-cpe:/a:oracle:linux:python3.11-psycopg_pool, p-cpe:/a:oracle:linux:python3.11-mypy_extensions, p-cpe:/a:oracle:linux:python3.11-whitenoise, p-cpe:/a:oracle:linux:python3.11-opentelemetry_instrumentation, p-cpe:/a:oracle:linux:python311-olamkit, p-cpe:/a:oracle:linux:python3.11-marshmallow, p-cpe:/a:oracle:linux:python3.11-requirements-parser, p-cpe:/a:oracle:linux:python3.11-aiofiles, p-cpe:/a:oracle:linux:python3.11-ldap, p-cpe:/a:oracle:linux:python3.11-zipp, p-cpe:/a:oracle:linux:python3.11-types-setuptools, p-cpe:/a:oracle:linux:python3.11-packaging, p-cpe:/a:oracle:linux:python3.11-types-cryptography, p-cpe:/a:oracle:linux:python3.11-cffi
Required KB Items: Host/OracleLinux, Host/RedHat/release, Host/RedHat/rpm-list, Host/local_checks_enabled
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 10/31/2024
Vulnerability Publication Date: 2/6/2024