[Jan 31 03:07:21] INFO [localhost] vuls--build-20230130_082947_ [Jan 31 03:07:21] INFO [localhost] Validating config... [Jan 31 03:07:21] INFO [localhost] cveDict.type=sqlite3, cveDict.url=, cveDict.SQLite3Path=/vuls/cve.sqlite3 [Jan 31 03:07:21] INFO [localhost] ovalDict.type=sqlite3, ovalDict.url=, ovalDict.SQLite3Path=/vuls/oval.sqlite3 [Jan 31 03:07:21] INFO [localhost] gost.type=sqlite3, gost.url=, gost.SQLite3Path=/vuls/gost.sqlite3 [Jan 31 03:07:21] INFO [localhost] exploit.type=sqlite3, exploit.url=, exploit.SQLite3Path=/vuls/go-exploitdb.sqlite3 [Jan 31 03:07:21] INFO [localhost] metasploit.type=sqlite3, metasploit.url=, metasploit.SQLite3Path=/vuls/go-msfdb.sqlite3 [Jan 31 03:07:21] INFO [localhost] kevuln.type=sqlite3, kevuln.url=, kevuln.SQLite3Path=/vuls/go-kev.sqlite3 [Jan 31 03:07:21] INFO [localhost] cti.type=sqlite3, cti.url=, cti.SQLite3Path=/vuls/go-cti.sqlite3 [Jan 31 03:07:21] INFO [localhost] Loaded: /vuls/results/2023-01-31T03:05:35Z [Jan 31 03:07:21] INFO [localhost] OVAL redhat 7.9.2009 found. defs: 1461 [Jan 31 03:07:21] INFO [localhost] OVAL redhat 7.9.2009 is fresh. lastModified: 2023-01-31T02:11:10Z [Jan 31 03:07:21] INFO [localhost] [Reboot Required] worker: 4 CVEs are detected with OVAL [Jan 31 03:07:22] INFO [localhost] [Reboot Required] worker: 229 unfixed CVEs are detected with gost [Jan 31 03:07:22] INFO [localhost] [Reboot Required] worker: 0 CVEs are detected with CPE [Jan 31 03:07:23] INFO [localhost] [Reboot Required] worker: 0 PoC are detected [Jan 31 03:07:23] INFO [localhost] [Reboot Required] worker: 0 exploits are detected [Jan 31 03:07:23] INFO [localhost] [Reboot Required] worker: Known Exploited Vulnerabilities are detected for 0 CVEs [Jan 31 03:07:23] INFO [localhost] [Reboot Required] worker: Cyber Threat Intelligences are detected for 0 CVEs [Jan 31 03:07:23] INFO [localhost] [Reboot Required] worker: total 48 CVEs detected [Jan 31 03:07:23] INFO [localhost] [Reboot Required] worker: 0 CVEs filtered by --confidence-over=80 [Reboot Required] worker (centos7.9.2009) ========================================= Total: 48 (Critical:3 High:11 Medium:27 Low:7 ?:0) 4/48 Fixed, 14 poc, 0 exploits, cisa: 0, uscert: 0, jpcert: 0 alerts 562 installed +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-ID | CVSS | ATTACK | POC | ALERT | FIXED | PACKAGES | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2014-9939 | 9.8 | AV:L | | | unfixed | binutils | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2015-4042 | 9.8 | AV:L | POC | | unfixed | coreutils | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-37434 | 9.8 | AV:N | POC | | unfixed | zlib | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-42898 | 8.9 | AV:N | POC | | fixed | krb5-devel, krb5-libs, | | | | | | | | libkadm5 | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2023-22809 | 8.9 | AV:L | POC | | fixed | sudo | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2015-8982 | 8.1 | AV:L | | | unfixed | glibc | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2015-8983 | 8.1 | AV:L | | | unfixed | glibc | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2015-4041 | 7.8 | AV:L | POC | | unfixed | coreutils | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2009-5155 | 7.5 | AV:N | POC | | unfixed | glibc | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2014-0021 | 7.5 | AV:N | | | unfixed | chrony | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2016-4425 | 7.5 | AV:N | | | unfixed | jansson | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2021-22946 | 7.5 | AV:N | POC | | unfixed | curl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-2795 | 7.5 | AV:N | | | fixed | bind-export-libs, | | | | | | | | bind-libs-lite, bind-license | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2021-0146 | 7.1 | AV:P | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2021-25220 | 6.9 | AV:N | | | fixed | bind-export-libs, | | | | | | | | bind-libs-lite, bind-license | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2019-11135 | 6.5 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2019-17450 | 6.5 | AV:L | POC | | unfixed | binutils | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2021-0145 | 6.5 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2021-33117 | 6.5 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-21123 | 6.1 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2019-11139 | 6.0 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-21233 | 6.0 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2015-8984 | 5.9 | AV:L | | | unfixed | glibc | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2015-8985 | 5.9 | AV:L | | | unfixed | glibc | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2017-5715 | 5.6 | AV:L | POC | | unfixed | linux-firmware, microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2021-0127 | 5.6 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-21127 | 5.6 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2014-9637 | 5.5 | AV:L | | | unfixed | patch | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2015-3243 | 5.5 | AV:L | | | unfixed | rsyslog | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-21125 | 5.5 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-21131 | 5.5 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-21136 | 5.5 | AV:N | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-21151 | 5.5 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-21166 | 5.5 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2021-33120 | 5.4 | AV:L | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-3554 | 5.3 | AV:N | | | unfixed | libX11 | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2014-3619 | 5.0 | AV:N | | | unfixed | glusterfs | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2015-2808 | 5.0 | AV:N | | | unfixed | gnutls, nss, openssl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2015-6496 | 5.0 | AV:N | POC | | unfixed | conntrack-tools | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2015-4037 | 4.9 | AV:L | | | unfixed | qemu-guest-agent | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2022-0005 | 4.9 | AV:P | | | unfixed | microcode_ctl | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2021-36084 | 3.3 | AV:L | POC | | unfixed | libsepol | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2021-36085 | 3.3 | AV:L | POC | | unfixed | libsepol | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2021-36086 | 3.3 | AV:L | POC | | unfixed | libsepol | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2021-36087 | 3.3 | AV:L | POC | | unfixed | libsepol | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2014-3637 | 2.1 | AV:L | | | unfixed | dbus | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2014-3638 | 2.1 | AV:L | | | unfixed | dbus | +----------------+------+--------+-----+-----------+---------+--------------------------------+ | CVE-2014-3639 | 2.1 | AV:L | | | unfixed | dbus | +----------------+------+--------+-----+-----------+---------+--------------------------------+