The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:4947 advisory.
– cri-o: memory exhaustion on the node when access to the kube api (CVE-2022-1708)
– credentials: Stored XSS vulnerabilities in jenkins plugin (CVE-2022-29036)
– subversion: Stored XSS vulnerabilities in Jenkins subversion plugin (CVE-2022-29046)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.Read More