According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :

  - A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution     when processing a crafted awk pattern in the copyvar function. (CVE-2022-30065)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4371-1 advisory.

  - The add_probe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass     intended restrictions on loading kernel modules via a / (slash) character in a module name, as     demonstrated by an ifconfig /usbserial up command or a mount -t /snd_pcm none / command.
    (CVE-2014-9645)

  - A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution     when processing a crafted awk pattern in the copyvar function. (CVE-2022-30065)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4309-1 advisory.

  - A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution     when processing a crafted awk pattern in the copyvar function. (CVE-2022-30065)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of busybox installed on the remote host is prior to 1.34.1-1.15. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1786 advisory.

    A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution     when processing a crafted awk pattern in the copyvar function. (CVE-2022-30065)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES12 / SLES_SAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:4372-1 advisory.

  - A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution     when processing a crafted awk pattern in the copyvar function. (CVE-2022-30065)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

This plugin has been deprecated as it does not adhere to established standards for this style of check.

A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

ID	Name	Product	Family	Published	Updated	Severity
166832	EulerOS 2.0 SP10 : busybox (EulerOS-SA-2022-2675)	Nessus	Huawei Local Security Checks	11/2/2022	10/6/2023	high
168536	SUSE SLED15 / SLES15 Security Update : busybox (SUSE-SU-2022:4371-1)	Nessus	SuSE Local Security Checks	12/9/2022	7/14/2023	high
167409	EulerOS 2.0 SP9 : busybox (EulerOS-SA-2022-2720)	Nessus	Huawei Local Security Checks	11/14/2022	10/4/2023	high
168333	SUSE SLED15 / SLES15 Security Update : busybox (SUSE-SU-2022:4309-1)	Nessus	SuSE Local Security Checks	12/2/2022	7/14/2023	high
178503	Amazon Linux AMI : busybox (ALAS-2023-1786)	Nessus	Amazon Linux Local Security Checks	7/20/2023	12/11/2024	high
167355	EulerOS 2.0 SP9 : busybox (EulerOS-SA-2022-2755)	Nessus	Huawei Local Security Checks	11/14/2022	10/4/2023	high
166868	EulerOS 2.0 SP10 : busybox (EulerOS-SA-2022-2643)	Nessus	Huawei Local Security Checks	11/2/2022	10/5/2023	high
168543	SUSE SLES12 Security Update : busybox (SUSE-SU-2022:4372-1)	Nessus	SuSE Local Security Checks	12/9/2022	7/14/2023	high
195590	RHEL 6 : busybox (Unpatched Vulnerability) (deprecated)	Nessus	Red Hat Local Security Checks	5/11/2024	5/31/2024	critical
500987	Siemens SCALANCE XCM332 Use After Free (CVE-2022-30065)	Tenable OT Security	Tenable.ot	4/11/2023	9/4/2024	high

Detections

Analytics

Plugins Search

high

high

high

high

high

high

high

high

critical

high