The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3109 advisory.

– An issue was discovered in OpenStack Nova before 17.0.12, 18.x before 18.2.2, and 19.x before 19.0.2. If an API request from an authenticated user ends in a fault condition due to an external exception, details of the underlying environment may be leaked in the response, and could include sensitive configuration or other data. (CVE-2019-14433)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.Read More