link管理
链接快照平台
- 输入网页链接,自动生成快照
- 标签化管理网页链接
相关文章推荐
|
直爽的饭盒 · 美客多平台自发货全攻略-CoGoLinks结 ...· 2 周前 · |
|
|
内向的树叶 · 美客多上传产品的限制-CoGoLinks结行 ...· 2 周前 · |
|
|
失眠的玉米 · linux中configure命令加调试 ...· 4 月前 · |
|
|
阳光的蟠桃 · 肯德基等洋快餐风光不再 中式快餐发力追赶-搜狐财经· 5 月前 · |
|
|
寂寞的哑铃 · 青岛“顶流”网红小麦岛入岛桥开建!停车场、公 ...· 5 月前 · |
|
|
无邪的梨子 · 有没有办法让安卓BottomNavigati ...· 6 月前 · |
|
|
坚韧的马克杯 · 独家村 - 抖音百科· 7 月前 · |
Detections
- Plugins
- Overview
- Plugins Pipeline
- Release Notes
- Newest
- Updated
- Search
- Nessus Families
- WAS Families
- NNM Families
- LCE Families
- Tenable OT Security Families
- About Plugin Families
- Audits
- Overview
- Newest
- Updated
- Search Audit Files
- Search Items
- References
- Authorities
- Documentation
- Download All Audit Files
- Policies
- Indicators
Analytics
Amazon Linux 2023 : perl-Cpanel-JSON-XS (ALAS2023-2024-556)
critical Nessus Plugin ID 191601
Synopsis
The remote Amazon Linux 2023 host is missing a security update.Description
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-556 advisory.- The Cpanel::JSON::XS package before 4.33 for Perl performs out-of-bounds accesses in a way that allows attackers to obtain sensitive information or cause a denial of service. (CVE-2022-48623)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Run 'dnf update perl-Cpanel-JSON-XS --releasever 2023.3.20240304' to update your system.See Also
https://alas.aws.amazon.com/AL2023/ALAS-2024-556.html
Plugin Details
Severity : Critical
ID : 191601
File Name : al2023_ALAS2023-2024-556.nasl
Version : 1.0
Type : local
Agent : unix
Family : Amazon Linux Local Security Checks
Published : 3/6/2024
Updated : 3/6/2024
Supported Sensors : Agentless Assessment , Frictionless Assessment Agent , Frictionless Assessment AWS , Nessus Agent , Nessus
Risk Information
VPR
Risk Factor : Medium
Score : 5.2
CVSS v2
Risk Factor : Medium
Base Score : 6.4
Temporal Score : 4.7
Vector : CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P
CVSS Score Source : CVE-2022-48623
CVSS v3
Risk Factor : Critical
Base Score : 9.1
Temporal Score : 7.9
Vector : CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Temporal Vector : CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE : p-cpe:/a:amazon:linux:perl-cpanel-json-xs , p-cpe:/a:amazon:linux:perl-cpanel-json-xs-debuginfo , p-cpe:/a:amazon:linux:perl-cpanel-json-xs-debugsource , cpe:/o:amazon:linux:2023
Required KB Items : Host/local_checks_enabled , Host/AmazonLinux/release , Host/AmazonLinux/rpm-list
Exploit Ease : No known exploits are available
Patch Publication Date : 2/29/2024
Vulnerability Publication Date : 2/13/2024
Reference Information
CVE : CVE-2022-48623
推荐文章
|
|
直爽的饭盒 · 美客多平台自发货全攻略-CoGoLinks结行国际官网 2 周前 |
|
|
内向的树叶 · 美客多上传产品的限制-CoGoLinks结行国际官网 2 周前 |
|
|
阳光的蟠桃 · 肯德基等洋快餐风光不再 中式快餐发力追赶-搜狐财经 5 月前 |
|
|
坚韧的马克杯 · 独家村 - 抖音百科 7 月前 |