The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2037-1 advisory. – CVE-2024-2756: Fixed bypass of security fix applied for CVE-2022-31629 that lead PHP to consider not secure cookies as secure (bsc#1222857) – CVE-2024-3096: Fixed bypass on null byte leading passwords checked via password_verify (bsc#1222858) – CVE-2024-5458: Fixed an issue that allows to bypass filters in filter_var FILTER_VALIDATE_URL. (bsc#1226073) Tenable has extracted the preceding description block directly from the SUSE security advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version…Read More