Please see this forum post for an explanation of the categories used in this report
ASL users
Summary: No update required, no new relevant vulnerabilities/CVEs for the platform.
Already protect against/Known Method/No update required
PHPIPAM v1.1.010 Multiple Vulnerabilities
CVE-2015-8398
CVE-2015-8399
Multiple Vulnerabilities in Simple PHP Polling System (SQL insertion injection, Persistent Cross Site Scripting, Password Reset)
Online Airline Booking System Authentication Bypass
Open Audit SQL Injection Vulnerability
QEMU send_control_msg Function Buffer Overflow Vulnerability
QEMU scsi_cdb_length Function Buffer Overflow Vulnerability
QEMU pcnet_receive Function Buffer Overflow Vulnerability
Not already protected against/New Method/Update Available
None.
Not already protected against/Doesnt protect against/Solution
None.
Potential Vulnerability/Solution
None.
Rules only users
Summary: Qemu versions prior to 2.4.0 have multiple vulnerabilities, install patch from vendor if you are using qemu.
Already protect against/Known Method/No update required
PHPIPAM v1.1.010 Multiple Vulnerabilities
CVE-2015-8398
CVE-2015-8399
Multiple Vulnerabilities in Simple PHP Polling System (SQL insertion injection, Persistent Cross Site Scripting, Password Reset)
Online Airline Booking System Authentication Bypass
Open Audit SQL Injection Vulnerability
Not already protected against/New Method/Update Available
None.
Not already protected against/Doesnt protect against/Solution
QEMU send_control_msg Function Buffer Overflow Vulnerability (QEMU versions 2.4.0 and prior are vulnerable.)
QEMU scsi_cdb_length Function Buffer Overflow Vulnerability (QEMU versions 2.4.0 and prior are vulnerable.)
QEMU pcnet_receive Function Buffer Overflow Vulnerability (QEMU versions 2.4.0 and prior are vulnerable.)
Potential Vulnerability/Solution
None.