The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. redhat-certification 7 does not properly restrict the number of recursive definitions of entities in XML documents, allowing an unauthenticated user to run a Billion Laugh Attack by replying to XMLRPC methods when getting the status of an host. (CVE-2018-10868) Note that Nessus relies on the presence of the package as reported by the…Read More