| Local Linux script | 0.17 | Online Linux script | 0.18 |
|---|---|---|---|
| Minimum recommended Linux script | 0.18 | Released | 2026-06-22 |
| Feed URL | https://www.scantide.com/helpfiles/ScantideLAN-version.json | ||
| Host | scantide | Distro | Ubuntu 24.04.4 LTS |
|---|---|---|---|
| Kernel | 6.8.0-124-generic | Architecture | x86_64 |
| Root | Yes | Deep scan | false |
| Platform | VMware Virtual Machine | Primary role | Likely SaaS / Web Platform (High) |
| Script version | 0.17 | Version feed status | older |
linuxLocalCheckUrl and a SHA256 value, the Linux runner can use those fields for safe update/download workflows.| Item | Value |
|---|---|
| local_script_version | 0.17 |
| version_feed_url | https://www.scantide.com/helpfiles/ScantideLAN-version.json |
| status | older |
| message | A newer Scantide family version is available. Use --update support when the feed exposes linuxLocalCheckUrl, or download the latest published Linux script manually. |
| remote_version | 3.5.224 |
| released | 2026-06-22 |
| product | Scantide Local Check |
| family | Scantide Auditor |
| critical | False |
| breaking | False |
| localCheckUrl | https://www.scantide.com/helpfiles/ScantideLocalCheck.ps1 |
| linuxLocalCheckUrl | https://www.scantide.com/helpfiles/scantide-linux-localcheck.sh |
| linuxLocalCheckSha256 | b34f19bd9214fd5a3f8da5d20180d9fe6babc70771db008c4215f6a8da784142 |
| serverLifecycleApiVersion | 1.3.x |
| lifecycleApiUrl | https://www.scantide.com/lifecycle_api.php |
| Priority | Action | Reason |
|---|---|---|
| 2 | Redis protected-mode is not clearly enabled | Enable protected-mode and restrict bind/listen addresses. |
| 2 | SSH root login is enabled | Set PermitRootLogin no and use named admin accounts with sudo. |
| 3 | iptables INPUT policy is ACCEPT | Use explicit firewall policy or document external firewall dependency. |
| 3 | Redis authentication is not clearly configured | Configure Redis ACLs/authentication and limit network exposure. |
| 3 | SSH password authentication is enabled | Prefer SSH keys and set PasswordAuthentication no where practical. |
| 3 | UFW is inactive | Enable UFW or verify that an upstream firewall intentionally provides filtering. |
| 4 | Review lifecycle for VMware Tools 13.0.0.0 | Keep VMware Tools/open-vm-tools updated through VMware/Broadcom packages or the Linux distribution package channel. Treat guest tools as platform support software, not as the server's primary role. |
| Likely role | Confidence | Evidence |
|---|---|---|
| Likely SaaS / Web Platform | High | Combined application stack detected: web server + PHP + supporting service such as Redis/HAProxy/Postfix. |
| Proxy / Cache / Load Balancer | High | Detected proxy/load-balancer components: Squid; HAProxy; Ports: TCP/80 listening; TCP/443 listening; TCP/3128 listening; |
| Web / Application Server | High | Detected web/runtime components: Apache HTTP Server; PHP; Ports: TCP/80 listening; TCP/443 listening; |
| Database / Cache Server | High | Detected data services: Redis; Ports: TCP/6379 listening; |
| DNS / DHCP Server | High | Detected DNS/DHCP components: dnsmasq; Ports: TCP/53 listening; |
| Mail Server | High | Detected mail components: Postfix; Ports: TCP/25 listening; |
| VPN Server | Medium | Detected VPN components: OpenVPN; |
| platform_label | VMware Virtual Machine |
|---|---|
| virtualization | vmware |
| evidence | systemd-detect-virt=vmware; VMware Tools/open-vm-tools detected: 13.0.0.0 (build-24696409) |
| Category | Count | Meaning |
|---|---|---|
| Web/Application | 2 | Web servers, PHP/runtime or web admin apps. |
| 1 | SMTP/IMAP/POP components. | |
| Database/Cache | 1 | Databases, caches and message/search services. |
| Proxy/Load Balancer | 2 | Proxy, cache or load-balancing components. |
| DNS/DHCP | 1 | Network name/addressing services. |
| VPN | 1 | VPN/tunnel components. |
| Security/Monitoring | 2 | Security agents and local monitoring components. |
| Containers | 0 | Container runtime/orchestration components. |
| Admin/Monitoring UI | 0 | Web or agent-based admin/monitoring tools. |
| Virtualization/Guest Tools | 1 | Hypervisor, virtualization or guest-agent tooling. |
| Score | 35 | Penalty | 65 |
|---|---|---|---|
| Critical | 0 | High | 2 |
| Medium | 4 | Low | 0 |
| Lifecycle review items | 1 | Containers | 0 |
Architecture: x86_64 CPU op-mode(s): 32-bit, 64-bit Address sizes: 45 bits physical, 48 bits virtual Byte Order: Little Endian CPU(s): 8 On-line CPU(s) list: 0-7 Vendor ID: GenuineIntel BIOS Vendor ID: GenuineIntel Model name: Intel(R) Xeon(R) Silver 4110 CPU @ 2.10GHz BIOS Model name: Intel(R) Xeon(R) Silver 4110 CPU @ 2.10GHz CPU @ 2.1GHz BIOS CPU family: 2 CPU family: 6 Model: 79 Thread(s) per core: 1 Core(s) per socket: 1 Socket(s): 8 Stepping: 0 BogoMIPS: 4190.15 Flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ss syscall nx pdpe1gb rdtscp lm constant_tsc arch_perfmon nopl xtopology tsc_reliable nonstop_tsc cpuid tsc_known_freq pni pclmulqdq vmx ssse3 fma cx16 pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm abm 3dnowprefetch cpuid_fault pti ssbd ibrs ibpb stibp tpr_shadow ept vpid fsgsbase tsc_adjust bmi1 avx2 smep bmi2 invpcid rdseed adx smap xsaveopt arat vnmi md_clear flush_l1d arch_capabilities Virtualization: VT-x Hypervisor vendor: VMware Virtualization type: full L1d cache: 256 KiB (8 instances) L1i cache: 256 KiB (8 instances) L2 cache: 8 MiB (8 instances) L3 cache: 88 MiB (8 instances) NUMA node(s): 1 NUMA node0 CPU(s): 0-7 Vulnerability Gather data sampling: Not affected Vulnerability Indirect target selection: Mitigation; Aligned branch/return thunks Vulnerability Itlb multihit: KVM: Mitigation: VMX disabled Vulnerability L1tf: Mitigation; PTE Inversion; VMX flush not necessary, SMT disabled Vulnerability Mds: Mitigation; Clear CPU buffers; SMT Host state unknown Vulnerability Meltdown: Mitigation; PTI Vulnerability Mmio stale data: Mitigation; Clear CPU buffers; SMT Host state unknown Vulnerability Reg file data sampling: Not affected Vulnerability Retbleed: Mitigation; IBRS Vulnerability Spec rstack overflow: Not affected Vulnerability Spec store bypass: Mitigation; Speculative Store Bypass disabled via prctl Vulnerability Spectre v1: Mitigation; usercopy/swapgs barriers and __user pointer sanitization Vulnerability Spectre v2: Mitigation; IBRS; IBPB conditional; STIBP disabled; RSB filling; PBRSB-eIBRS Not affected; BHI SW loop, KVM SW loop Vulnerability Srbds: Not affected Vulnerability Tsa: Not affected Vulnerability Tsx async abort: Not affected Vulnerability Vmscape: Not affected
total used free shared buff/cache available Mem: 31Gi 1.7Gi 24Gi 47Mi 5.9Gi 29Gi Swap: 3.8Gi 0B 3.8Gi
Filesystem Size Used Avail Use% Mounted on tmpfs 3.2G 2.9M 3.2G 1% /run /dev/sda2 196G 23G 164G 12% / tmpfs 16G 2.1M 16G 1% /dev/shm tmpfs 5.0M 0 5.0M 0% /run/lock tmpfs 3.2G 96K 3.2G 1% /run/user/130 tmpfs 3.2G 80K 3.2G 1% /run/user/0
| Severity | Area | Finding / Evidence | Recommendation |
|---|---|---|---|
| Medium | Firewall | UFW is inactive Host firewall is not active according to ufw. | Enable UFW or verify that an upstream firewall intentionally provides filtering. |
| Medium | Firewall | iptables INPUT policy is ACCEPT Default INPUT policy accepts traffic. | Use explicit firewall policy or document external firewall dependency. |
| High | SSH Hardening | SSH root login is enabled PermitRootLogin yes | Set PermitRootLogin no and use named admin accounts with sudo. |
| Medium | SSH Hardening | SSH password authentication is enabled PasswordAuthentication yes | Prefer SSH keys and set PasswordAuthentication no where practical. |
| High | Redis Hardening | Redis protected-mode is not clearly enabled protected-mode yes was not found. | Enable protected-mode and restrict bind/listen addresses. |
| Medium | Redis Hardening | Redis authentication is not clearly configured No requirepass or aclfile setting found in redis.conf highlights. | Configure Redis ACLs/authentication and limit network exposure. |
| Product | Version | Source |
|---|---|---|
| Linux kernel | 6.8.0 | uname -r |
| Apache HTTP Server | 2.4.68 | apache2 -v |
| PHP | 8.3.6 | php -v |
| OpenSSL | 3.0.13 | openssl version |
| OpenSSH | 9.6 | ssh -V |
| Postfix | 3.8.6 | postconf mail_version |
| Redis | 8.8.0 | redis-server --version |
| dnsmasq | 2.90 | dnsmasq --version |
| HAProxy | 2.9.15 | haproxy -v |
| Squid | 6.14 | squid -v |
| VMware Tools | 13.0.0.0 | vmware-toolbox-cmd -v |
| Python | 3.12.3 | python3 --version |
| Perl | 5.38.2 | perl version |
| OpenVPN | 2.6.19 | openvpn --version |
| Fail2ban | 1.0.2 | fail2ban-client version |
| ClamAV | 1.4.4 | clamscan --version |
| Product | Version | CVE Review | Evidence status | Highest risk | Top CVEs / candidates | Scantide CVE |
|---|---|---|---|---|---|---|
| Linux kernel | 6.8.0 | UNKNOWN | Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific. match_status=no_version_match |
LOW 0 | None | Review |
| Apache HTTP Server | 2.4.68 | REVIEW | Product recognized, but no confirmed CVE range/exact-version match was found for version 2.4.68. Other versions have 20 documented CVEs, so treat this as a review item rather than clean. match_status=no_version_match |
LOW 0 | None | Review |
| PHP | 8.3.6 | REVIEW | Product recognized, but version 8.3.6 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result. match_status=no_version_match |
LOW 0 | None | Review |
| OpenSSL | 3.0.13 | REVIEW | Product recognized, but version 3.0.13 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result. match_status=no_version_match |
LOW 0 | None | Review |
| OpenSSH | 9.6 | Review-only candidate (2) | Review only: service/version match needs distro advisory confirmation match_status=product_range_match |
HIGH 8.1 | CVE-2024-6387 (HIGH 8.1) CVE-2025-26466 (HIGH 7.5) |
Review |
| Postfix | 3.8.6 | REVIEW | Product recognized, but version 3.8.6 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result. match_status=no_version_match |
LOW 0 | None | Review |
| Redis | 8.8.0 | REVIEW | Product recognized, but version 8.8.0 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result. match_status=no_version_match |
LOW 0 | None | Review |
| dnsmasq | 2.90 | Review-only candidate (1) | Review only: service/version match needs distro advisory confirmation match_status=product_range_match |
CRITICAL 9.8 | CVE-2017-14491 (CRITICAL 9.8) | Review |
| HAProxy | 2.9.15 | HIGH | Legacy/version review: exact version 2.9.15 was not matched, but this recognized product has 20 documented CVEs in other versions. Verify manually before treating as clean. match_status=no_version_match |
LOW 0 | None | Review |
| Squid | 6.14 | UNKNOWN | Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific. match_status=no_version_match |
LOW 0 | None | Review |
| VMware Tools | 13.0.0.0 | UNKNOWN | Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific. match_status=no_version_match |
LOW 0 | None | Review |
| Python | 3.12.3 | Review-only candidate (2) | Review only: service/version match needs distro advisory confirmation match_status=product_range_match |
HIGH 7.5 | CVE-2005-2491 (HIGH 7.5) CVE-2006-4980 (HIGH 7.5) |
Review |
| Perl | 5.38.2 | Review-only candidate (2) | Review only: service/version match needs distro advisory confirmation match_status=exact_or_range_match |
CRITICAL 10 | CVE-1999-0509 (CRITICAL 10) CVE-1999-0150 (HIGH 7.5) |
Review |
| OpenVPN | 2.6.19 | UNKNOWN | Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific. match_status=no_version_match |
LOW 0 | None | Review |
| Fail2ban | 1.0.2 | UNKNOWN | Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific. match_status=no_version_match |
LOW 0 | None | Review |
| ClamAV | 1.4.4 | UNKNOWN | Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific. match_status=no_version_match |
LOW 0 | None | Review |
platform=linux, so the API loads the Linux lifecycle catalog instead of the Windows/user-app catalog.| Product | Installed | Matched product | Category | Status | Severity | Latest / EOL | Evidence | Recommendation | Source |
|---|---|---|---|---|---|---|---|---|---|
| Ubuntu | 24.04 | Ubuntu | Operating system | Current / no lifecycle finding current |
Info | Ubuntu matched the lifecycle catalog and no outdated/EOL condition was detected. | Run a supported Ubuntu LTS release or enable Ubuntu Pro/ESM where appropriate. | Ubuntu release cycle high confidence |
|
| Linux kernel | 6.8.0 | Linux kernel | Kernel | Current / no lifecycle finding current |
Info | Linux kernel matched the lifecycle catalog and no outdated/EOL condition was detected. | Evaluate kernel support against the Linux distribution first. Upstream kernel EOL is a review signal, not final proof for distro kernels. | kernel.org releases high confidence |
|
| Apache HTTP Server | 2.4.68 | Apache HTTP Server | Web server | Current / no lifecycle finding current |
Info | Apache HTTP Server matched the lifecycle catalog and no outdated/EOL condition was detected. | Keep Apache updated via distro/vendor packages; validate backported security fixes before judging by upstream version. | linux-service-runtime-lifecycle medium confidence |
|
| PHP | 8.3.6 | PHP | Runtime | Current / no lifecycle finding current |
Info | PHP matched the lifecycle catalog and no outdated/EOL condition was detected. | Use a supported PHP branch. PHP 7.x and older should be treated as unsupported unless vendor extended support exists. | linux-service-runtime-lifecycle medium confidence |
|
| OpenSSL | 3.0.13 | OpenSSL | TLS/Crypto | Current / no lifecycle finding current |
Info | OpenSSL matched the lifecycle catalog and no outdated/EOL condition was detected. | OpenSSL should be evaluated by distro/vendor package status; OpenSSL 1.1.1 and older require review. | linux-service-runtime-lifecycle medium confidence |
|
| OpenSSH | 9.6 | OpenSSH | Remote admin | Current / no lifecycle finding current |
Info | OpenSSH matched the lifecycle catalog and no outdated/EOL condition was detected. | Keep OpenSSH updated through OS packages; older major versions should be reviewed for distro backports. | linux-service-runtime-lifecycle medium confidence |
|
| Postfix | 3.8.6 | Postfix | Mail/SMTP | Current / no lifecycle finding current |
Info | Postfix matched the lifecycle catalog and no outdated/EOL condition was detected. | Keep Postfix updated via distro/vendor packages. | linux-service-runtime-lifecycle medium confidence |
|
| Redis | 8.8.0 | Redis | Database/Cache | Current / no lifecycle finding current |
Info | Redis matched the lifecycle catalog and no outdated/EOL condition was detected. | Keep Redis updated; restrict network exposure and require authentication. | linux-service-runtime-lifecycle medium confidence |
|
| dnsmasq | 2.90 | dnsmasq | DNS/DHCP | Current / no lifecycle finding current |
Info | dnsmasq matched the lifecycle catalog and no outdated/EOL condition was detected. | Keep dnsmasq updated. | linux-service-runtime-lifecycle medium confidence |
|
| HAProxy | 2.9.15 | HAProxy | Proxy/Load balancer | Current / no lifecycle finding current |
Info | HAProxy matched the lifecycle catalog and no outdated/EOL condition was detected. | Keep HAProxy on a supported branch, preferably distro/vendor LTS. | linux-service-runtime-lifecycle medium confidence |
|
| Squid | 6.14 | Squid | Proxy | Current / no lifecycle finding current |
Info | Squid matched the lifecycle catalog and no outdated/EOL condition was detected. | Keep Squid updated and review proxy exposure. | linux-service-runtime-lifecycle medium confidence |
|
| VMware Tools | 13.0.0.0 | VMware Tools / open-vm-tools | Virtualization/Guest Tools | Update available update_available |
Info | Latest: 13.1.0 | VMware Tools / open-vm-tools installed version 13.0.0.0 is older than latest known version 13.1.0. | Keep VMware Tools/open-vm-tools updated through VMware/Broadcom packages or the Linux distribution package channel. Treat guest tools as platform support software, not as the server's primary role. | Broadcom VMware Tools build numbers and versions high confidence |
| Python | 3.12.3 | Python | Runtime | Current / no lifecycle finding current |
Info | Python matched the lifecycle catalog and no outdated/EOL condition was detected. | Use supported Python 3 branches; Python 2 is end-of-support. | linux-service-runtime-lifecycle medium confidence |
|
| Perl | 5.38.2 | Perl | Runtime | Current / no lifecycle finding current |
Info | Perl matched the lifecycle catalog and no outdated/EOL condition was detected. | Keep Perl updated through OS packages. | linux-service-runtime-lifecycle medium confidence |
|
| OpenVPN | 2.6.19 | OpenVPN | VPN | Current / no lifecycle finding current |
Info | OpenVPN matched the lifecycle catalog and no outdated/EOL condition was detected. | Keep OpenVPN updated and review cipher/auth settings. | linux-service-runtime-lifecycle medium confidence |
|
| Fail2ban | 1.0.2 | Fail2ban | Security | Current / no lifecycle finding current |
Info | Fail2ban matched the lifecycle catalog and no outdated/EOL condition was detected. | Keep Fail2ban updated. | linux-service-runtime-lifecycle medium confidence |
|
| ClamAV | 1.4.4 | ClamAV | Security/AV | Current / no lifecycle finding current |
Info | ClamAV matched the lifecycle catalog and no outdated/EOL condition was detected. | Keep ClamAV and signatures updated. | linux-service-runtime-lifecycle medium confidence |
| Proto | Address | Port | Process | PID | User/UID | Comment |
|---|---|---|---|---|---|---|
| udp | 127.0.0.54 | 53 | systemd-resolve | 1314 | 101 | Expected/unknown |
| udp | 127.0.0.53%lo | 53 | systemd-resolve | 1314 | 101 | Expected/unknown |
| udp | 192.168.99.198 | 123 | ntpd | 2019 | 138 | Expected/unknown |
| udp | 127.0.0.1 | 123 | ntpd | 2019 | Expected/unknown | |
| udp | 0.0.0.0 | 123 | ntpd | 2019 | Expected/unknown | |
| udp | 0.0.0.0 | 35192 | avahi-daemon | 1614 | 120 | Expected/unknown |
| udp | 0.0.0.0 | 5353 | avahi-daemon | 1614 | 120 | Expected/unknown |
| udp | 0.0.0.0 | 45413 | squid | 9305 | 13 | Expected/unknown |
| udp | fe80::250:56ff:feb2:c2b9]%ens192 | 123 | ntpd | 2019 | Expected/unknown | |
| udp | ::1 | 123 | ntpd | 2019 | Expected/unknown | |
| udp | :: | 123 | ntpd | 2019 | Expected/unknown | |
| udp | :: | 5353 | avahi-daemon | 1614 | 120 | Expected/unknown |
| udp | :: | 44181 | avahi-daemon | 1614 | 120 | Expected/unknown |
| udp | 0.0.0.0 | 46128 | squid | 9305 | 13 | Expected/unknown |
| tcp | 127.0.0.54 | 53 | systemd-resolve | 1314 | 101 | Expected/unknown |
| tcp | 127.0.0.53%lo | 53 | systemd-resolve | 1314 | 101 | Expected/unknown |
| tcp | 127.0.0.1 | 6379 | redis-server | 62259 | 140 | Review exposure: service is commonly sensitive or abused if Internet-facing. |
| tcp | 0.0.0.0 | 22 | sshd | 2223 | SSH: expected on many servers, but should be restricted and hardened. | Expected/unknown |
| tcp | 192.168.99.198 | 6379 | redis-server | 62259 | 140 | Review exposure: service is commonly sensitive or abused if Internet-facing. |
| tcp | 127.0.0.1 | 18890 | wsgsbd | 1988 | 13 | Expected/unknown |
| tcp | 127.0.0.1 | 18891 | wsytgd | 1997 | 13 | Expected/unknown |
| tcp | 127.0.0.1 | 631 | cupsd | 100915 | Expected/unknown | |
| tcp | 127.0.0.1 | 25 | master | 3052 | Review exposure: service is commonly sensitive or abused if Internet-facing. | Expected/unknown |
| tcp | ::1 | 25 | master | 3052 | Review exposure: service is commonly sensitive or abused if Internet-facing. | Expected/unknown |
| tcp | ::1 | 631 | cupsd | 100915 | Expected/unknown | |
| tcp | ::1 | 6379 | redis-server | 62259 | 140 | Review exposure: service is commonly sensitive or abused if Internet-facing. |
| tcp | 0.0.0.0 | 80 | apache2 | 102763 | Web service: verify TLS, headers, exposure and patching. | Expected/unknown |
| tcp | :: | 22 | sshd | 2223 | SSH: expected on many servers, but should be restricted and hardened. | Expected/unknown |
| tcp | 0.0.0.0 | 443 | apache2 | 102763 | Web service: verify TLS, headers, exposure and patching. | Expected/unknown |
| tcp | 0.0.0.0 | 3128 | squid | 9305 | Expected/unknown |
No Docker or Podman container inventory captured.
Status: inactive
table ip filter {
}
table ip6 filter {
}Chain INPUT (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination
#Port 22 PermitRootLogin yes #PasswordAuthentication yes #PermitEmptyPasswords no # PasswordAuthentication. Depending on your PAM configuration, # the setting of "PermitRootLogin yes # PAM authentication, then enable this but set PasswordAuthentication #GatewayPorts no X11Forwarding yes # X11Forwarding no PasswordAuthentication yes
### UFW status Command: ufw status verbose Status: inactive ### iptables policy Command: iptables -L -n Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination ### SSH hardening highlights Command: grep sshd_config #Port 22 PermitRootLogin yes #PubkeyAuthentication yes #PasswordAuthentication yes #PermitEmptyPasswords no # PasswordAuthentication. Depending on your PAM configuration, # the setting of "PermitRootLogin yes # PAM authentication, then enable this but set PasswordAuthentication #GatewayPorts no X11Forwarding yes # X11Forwarding no PasswordAuthentication yes ### Apache runtime config Command: /usr/sbin/apache2ctl -t -D DUMP_RUN_CFG AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 192.168.99.198. Set the 'ServerName' directive globally to suppress this message ServerRoot: "/etc/apache2" Main DocumentRoot: "/var/www/html" Main ErrorLog: "/var/log/apache2/error.log" Mutex watchdog-callback: using_defaults Mutex rewrite-map: using_defaults Mutex ssl-stapling-refresh: using_defaults Mutex ssl-stapling: using_defaults Mutex proxy: using_defaults Mutex ssl-cache: using_defaults Mutex default: dir="/var/run/apache2/" mechanism=default PidFile: "/var/run/apache2/apache2.pid" Define: DUMP_RUN_CFG User: name="www-data" id=33 Group: name="www-data" id=33 ### Redis config highlights Command: grep redis.conf bind 127.0.0.1 -::1 192.168.99.198 protected-mode no port 6379
{
"version": "3.5.224",
"released": "2026-06-22",
"critical": false,
"breaking": false,
"product": "Scantide Local Check",
"family": "Scantide Auditor",
"downloadUrl": "https://www.scantide.com/helpfiles/Scantide_Full_Local_Files_3.5.216.zip",
"launcherUrl": "https://www.scantide.com/helpfiles/ScantideLauncher.ps1",
"localCheckUrl": "https://www.scantide.com/helpfiles/ScantideLocalCheck.ps1",
"linuxLocalCheckVersion": "0.18",
"minimumRecommendedLinuxLocalCheckVersion": "0.18",
"linuxLocalCheckUrl": "https://www.scantide.com/helpfiles/scantide-linux-localcheck.sh",
"linuxBootstrapUrl": "https://www.scantide.com/helpfiles/install-scantide-linux.sh",
"linuxSha256Url": "https://www.scantide.com/helpfiles/scantide-linux-localcheck.sha256",
"serverLifecycleApiVersion": "1.3.x",
"lifecycleApiUrl": "https://www.scantide.com/lifecycle_api.php",
"minimumRecommendedLauncherVersion": "3.5.224",
"minimumRecommendedLocalCheckVersion": "3.5.224",
"requiresServerUpdate": false,
"notes": "Scantide Auditor provides agentless LAN, endpoint, infrastructure and software assessment. Windows local checks are handled by Scantide Auditor PowerShell. Linux local checks are now available through Scantide Auditor Linux, with service inventory, CVE review, lifecycle review, hardening checks, role detection and HTML reporting.",
"changes": [
"Added lifecycle API authenticated lookups.",
"Added community-driven lifecycle intelligence platform.",
"Added latest observed version reporting.",
"Added lifecycle source and confidence reporting.",
"Added software update review highlighting.",
"Added lifecycle branch-aware version comparison.",
"Added local software CVE false positive exclusions.",
"Added 12-hour lifecycle and CVE cache handling.",
"Improved PowerShell version and channel comparison.",
"Improved lifecycle report visibility.",
"Improved lifecycle-to-CVE matching.",
"Improved report filtering and update review workflows.",
"Added support for Scantide Local Software Watch.",
"Added Scantide Auditor Linux local check preview.",
"Added Linux service/runtime inventory for Apache, PHP, OpenSSL, OpenSSH, Redis, Postfix, Squid, HAProxy, dnsmasq, VMware Tools and common runtimes.",
"Added Linux CVE review using the Scantide CVE API.",
"Added Linux lifecycle review using software_lifecycle_linux.json.",
"Added Linux role detection, virtualization context, hardening checks, listening-port review and expandable evidence sections.",
"Added Linux startup version-feed check."
],
"relatedProducts": [
{
"name": "Scantide Local Software Watch",
"version": "1.0.8",
"description": "Lightweight software inventory, CVE review and lifecycle monitoring.",
"downloadUrl": "https://www.scantide.com/helpfiles/Scantide_Local_Software_Watch_1.0.8.zip"
},
{
"name": "Scantide Auditor Linux",
"version": "0.18",
"description": "Agentless Linux local server posture, service inventory, CVE and lifecycle assessment.",
"downloadUrl": "https://www.scantide.com/helpfiles/scantide-linux-localcheck.sh",
"bootstrapUrl": "https://www.scantide.com/helpfiles/install-scantide-linux.sh",
"sha256": "b34f19bd9214fd5a3f8da5d20180d9fe6babc70771db008c4215f6a8da784142"
}
],
"scantideFamily": [
{
"name": "Scantide Auditor PowerShell",
"type": "Full LAN and local Windows assessment",
"description": "Agentless network, endpoint, infrastructure and software assessment."
},
{
"name": "Scantide Auditor Linux",
"type": "Linux local server assessment",
"description": "Agentless Linux service inventory, CVE review, lifecycle review, hardening checks and HTML reporting."
},
{
"name": "Scantide Local Software Watch",
"type": "Software inventory, CVE and lifecycle monitoring",
"description": "Lightweight software-focused edition."
},
{
"name": "Scantide Observe Browser",
"type": "Browser security and privacy review",
"description": "Browser extension for website and privacy assessment."
},
{
"name": "Scantide Observe Mobile",
"type": "Android network and website assessment",
"description": "Mobile edition for local network and website review."
},
{
"name": "Scantide Online",
"type": "External infrastructure assessment",
"description": "External domain, SSL, DNS and exposure analysis."
}
],
"serverChangesAvailable": {
"version": "1.3.x",
"changes": [
"Community-driven lifecycle intelligence.",
"Authenticated lifecycle API.",
"Lifecycle confidence and source reporting.",
"Improved version normalization and matching.",
"Lifecycle catalog validation.",
"Redis-backed lifecycle observations.",
"Linux-aware lifecycle catalog loading.",
"Linux OS, kernel and service lifecycle matching."
]
},
"sha256": {
"zip": "",
"launcher": "",
"localCheck": "",
"linuxLocalCheck": "b34f19bd9214fd5a3f8da5d20180d9fe6babc70771db008c4215f6a8da784142",
"linuxBootstrap": ""
}
}
HTTP Status: 200
Payload:
{"api_key":"04797a7314594cdb380fb6535f029fe5","email":"helpdesk@redcloud.se","allow_remote_nvd":true,"mode":"local_batch","client_mode":"local_batch","source":"linux-local-service-inventory","os":"Ubuntu 24.04.4 LTS","host":"scantide","queries":[{"product":"Linux kernel","version":"6.8.0"},{"product":"Apache HTTP Server","version":"2.4.68"},{"product":"PHP","version":"8.3.6"},{"product":"OpenSSL","version":"3.0.13"},{"product":"OpenSSH","version":"9.6"},{"product":"Postfix","version":"3.8.6"},{"product":"Redis","version":"8.8.0"},{"product":"dnsmasq","version":"2.90"},{"product":"HAProxy","version":"2.9.15"},{"product":"Squid","version":"6.14"},{"product":"VMware Tools","version":"13.0.0.0"},{"product":"Python","version":"3.12.3"},{"product":"Perl","version":"5.38.2"},{"product":"OpenVPN","version":"2.6.19"},{"product":"Fail2ban","version":"1.0.2"},{"product":"ClamAV","version":"1.4.4"}]}
Response:
{
"success": true,
"authenticated": true,
"authorized": true,
"product": "auditor",
"version": "3.4.7",
"api_build": "3.5.5-bulk-cache-first",
"script_version": "1.0",
"total_requests": 16,
"total_results": 16,
"processing_time": "0s",
"cache_stats": {
"mode": "bulk_cache_first",
"unique_product_versions": 16,
"redis_positive_hits": 16,
"redis_fast_negative_hits": 0,
"special_case_hits": 0,
"feed_bulk_hits": 0,
"misses_after_cache": 0,
"fast_negative_created": 0,
"legacy_online_lookups": 0,
"hits": 16,
"misses": 0,
"hit_rate": 100,
"remote_nvd_requests": 0,
"processing_ms": 2
},
"user": {
"email": "helpdesk@redcloud.se",
"name": null
},
"results": [
{
"success": true,
"product": "Linux kernel",
"version": "6.8.0",
"input_was_normalized": false,
"input_original_product": "Linux kernel",
"input_original_version": "6.8.0",
"canonical_product": "linux kernel",
"canonical_version": "6.8.0",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "Apache HTTP Server",
"version": "2.4.68",
"input_was_normalized": false,
"input_original_product": "Apache HTTP Server",
"input_original_version": "2.4.68",
"canonical_product": "apache",
"canonical_version": "2.4.68",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_NO_VERSION_MATCH",
"message": "Product recognized, but no confirmed CVE range\/exact-version match was found for version 2.4.68. Other versions have 20 documented CVEs, so treat this as a review item rather than clean.",
"tracked": true,
"other_versions_cve_count": 20,
"warning_level": "REVIEW",
"confidence": "MEDIUM"
},
"remote_nvd_used": true,
"remote_nvd_requests": 11
},
{
"success": true,
"product": "PHP",
"version": "8.3.6",
"input_was_normalized": false,
"input_original_product": "PHP",
"input_original_version": "8.3.6",
"canonical_product": "php",
"canonical_version": "8.3.6",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_EXACT_VERSION_NOT_LISTED",
"message": "Product recognized, but version 8.3.6 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result.",
"tracked": true,
"other_versions_cve_count": 0,
"warning_level": "REVIEW",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 5
},
{
"success": true,
"product": "OpenSSL",
"version": "3.0.13",
"input_was_normalized": false,
"input_original_product": "OpenSSL",
"input_original_version": "3.0.13",
"canonical_product": "openssl",
"canonical_version": "3.0.13",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_EXACT_VERSION_NOT_LISTED",
"message": "Product recognized, but version 3.0.13 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result.",
"tracked": true,
"other_versions_cve_count": 0,
"warning_level": "REVIEW",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 5
},
{
"success": true,
"product": "OpenSSH",
"version": "9.6",
"input_was_normalized": false,
"input_original_product": "OpenSSH",
"input_original_version": "9.6",
"canonical_product": "openssh",
"canonical_version": "9.6",
"total_cves": 2,
"highest_severity": "HIGH",
"highest_score": 8.1,
"cve_breakdown": {
"critical": 0,
"high": 2,
"medium": 0,
"low": 0
},
"top_cves": [
{
"cve_id": "CVE-2024-6387",
"description": "OpenSSH sshd signal-handler race condition (regreSSHion). Affects Portable OpenSSH before 4.4p1 and 8.5p1 through before 9.8p1 on glibc-based Linux systems unless vendor backports apply.",
"cvss_score": 8.1,
"score": 8.1,
"severity": "HIGH",
"published_date": "2024-07-01",
"fixed_in": "OpenSSH 9.8p1 or vendor-backported package",
"affected_versions": "< 4.4p1; >= 8.5p1 < 9.8p1",
"affected_ranges": [
"< 4.4p1",
">= 8.5p1 < 9.8p1"
],
"source": "CURATED-RANGE",
"match_note": "Curated OpenSSH affected-version range. Confirm OS\/vendor backport status."
},
{
"cve_id": "CVE-2025-26466",
"description": "OpenSSH sshd memory\/CPU denial-of-service related to SSH2_MSG_PING handling. Affects OpenSSH 9.5p1 through 9.9p1; fixed in 9.9p2 or vendor-backported packages.",
"cvss_score": 7.5,
"score": 7.5,
"severity": "HIGH",
"published_date": "2025-02-18",
"fixed_in": "OpenSSH 9.9p2 or vendor-backported package",
"affected_versions": ">= 9.5p1 <= 9.9p1",
"affected_ranges": [
">= 9.5p1 < 9.9p2"
],
"source": "CURATED-RANGE",
"match_note": "Curated OpenSSH affected-version range. Confirm vendor package patch\/backport status."
}
],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "product_range_match",
"filtering_stats": {
"unfiltered_count": 2,
"filtered_count": 2
},
"software_status": null,
"remote_nvd_used": true,
"remote_nvd_requests": 6
},
{
"success": true,
"product": "Postfix",
"version": "3.8.6",
"input_was_normalized": false,
"input_original_product": "Postfix",
"input_original_version": "3.8.6",
"canonical_product": "postfix",
"canonical_version": "3.8.6",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_EXACT_VERSION_NOT_LISTED",
"message": "Product recognized, but version 3.8.6 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result.",
"tracked": true,
"other_versions_cve_count": 0,
"warning_level": "REVIEW",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 5
},
{
"success": true,
"product": "Redis",
"version": "8.8.0",
"input_was_normalized": false,
"input_original_product": "Redis",
"input_original_version": "8.8.0",
"canonical_product": "redis",
"canonical_version": "8.8.0",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_EXACT_VERSION_NOT_LISTED",
"message": "Product recognized, but version 8.8.0 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result.",
"tracked": true,
"other_versions_cve_count": 0,
"warning_level": "REVIEW",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 5
},
{
"success": true,
"product": "dnsmasq",
"version": "2.90",
"input_was_normalized": false,
"input_original_product": "dnsmasq",
"input_original_version": "2.90",
"canonical_product": "dnsmasq",
"canonical_version": "2.90",
"total_cves": 1,
"highest_severity": "CRITICAL",
"highest_score": 9.8,
"cve_breakdown": {
"critical": 1,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [
{
"cve_id": "CVE-2017-14491",
"description": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.",
"cvss_score": 9.8,
"score": 9.8,
"severity": "CRITICAL",
"published_date": "2017-10-04T01:29:02.870",
"fixed_in": null,
"affected_versions": "<= 2.77; 6.0; 7.0; 12.04; 14.04; 16.04; 17.04; 7.1; 8.0; 9.0; 42.2; 42.3; 11; 12; < r21.6; < r24.2.2; >= 3.0 < 3.10.0.55; < jimmy-al00ac00b135; <= 4.15; >= 4.16 < 4.16.13m; >= 4.17 < 4.17.8m; >= 4.18 <= 4.18.4.2f; < 5.0; < 6.5.1.5; >= 6.3.1 < 6.3.1.25; >= 6.4.4.0 < 6.4.4.16; >= 6.5.0.0 < 6.5.1.9; >= 6.5.3.0 < 6.5.3.3; >= 6.5.4.0 < 6.5.4.2; >= 8.1.0.0 < 8.1.0.4; 1.1; 5.2; 6.1",
"affected_ranges": [
"<= 2.77",
"6.0",
"7.0",
"12.04",
"14.04",
"16.04",
"17.04",
"7.1",
"8.0",
"9.0",
"42.2",
"42.3",
"11",
"12",
"< r21.6",
"< r24.2.2",
">= 3.0 < 3.10.0.55",
"< jimmy-al00ac00b135",
"<= 4.15",
">= 4.16 < 4.16.13m",
">= 4.17 < 4.17.8m",
">= 4.18 <= 4.18.4.2f",
"< 5.0",
"< 6.5.1.5",
">= 6.3.1 < 6.3.1.25",
">= 6.4.4.0 < 6.4.4.16",
">= 6.5.0.0 < 6.5.1.9",
">= 6.5.3.0 < 6.5.3.3",
">= 6.5.4.0 < 6.5.4.2",
">= 8.1.0.0 < 8.1.0.4",
"1.1",
"5.2",
"6.1"
],
"source": "NVD-PRODUCT-RANGE",
"match_note": "Matched product-level NVD affected-version range."
}
],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "product_range_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 1
},
"software_status": null,
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "HAProxy",
"version": "2.9.15",
"input_was_normalized": false,
"input_original_product": "HAProxy",
"input_original_version": "2.9.15",
"canonical_product": "haproxy",
"canonical_version": "2.9.15",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 0
},
"software_status": {
"status": "ANCIENT_VERSION",
"message": "Legacy\/version review: exact version 2.9.15 was not matched, but this recognized product has 20 documented CVEs in other versions. Verify manually before treating as clean.",
"tracked": true,
"other_versions_cve_count": 20,
"warning_level": "HIGH",
"confidence": "MEDIUM"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "Squid",
"version": "6.14",
"input_was_normalized": false,
"input_original_product": "Squid",
"input_original_version": "6.14",
"canonical_product": "squid",
"canonical_version": "6.14",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "VMware Tools",
"version": "13.0.0.0",
"input_was_normalized": false,
"input_original_product": "VMware Tools",
"input_original_version": "13.0.0.0",
"canonical_product": "vmware tools",
"canonical_version": "13.0.0.0",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "Python",
"version": "3.12.3",
"input_was_normalized": false,
"input_original_product": "Python",
"input_original_version": "3.12.3",
"canonical_product": "python",
"canonical_version": "3.12.3",
"total_cves": 2,
"highest_severity": "HIGH",
"highest_score": 7.5,
"cve_breakdown": {
"critical": 0,
"high": 2,
"medium": 0,
"low": 0
},
"top_cves": [
{
"cve_id": "CVE-2005-2491",
"description": "Integer overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products such as Python, Ethereal, and PHP, allows attackers to execute arbitrary code ...",
"cvss_score": 7.5,
"score": 7.5,
"severity": "HIGH",
"published_date": "2005-08-23T04:00:00.000",
"fixed_in": null,
"affected_versions": "5.0; 6.0; 6.1",
"affected_ranges": [
"5.0",
"6.0",
"6.1"
],
"source": "NVD-PRODUCT-RANGE",
"match_note": "Matched version range wording in CVE\/advisory description."
},
{
"cve_id": "CVE-2006-4980",
"description": "Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide char...",
"cvss_score": 7.5,
"score": 7.5,
"severity": "HIGH",
"published_date": "2006-10-10T04:06:00.000",
"fixed_in": null,
"affected_versions": "< 2.3.6; >= 2.4.0 < 2.4.4",
"affected_ranges": [
"< 2.3.6",
">= 2.4.0 < 2.4.4"
],
"source": "NVD-PRODUCT-RANGE",
"match_note": "Matched version range wording in CVE\/advisory description."
}
],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "product_range_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 2
},
"software_status": null,
"remote_nvd_used": true,
"remote_nvd_requests": 7
},
{
"success": true,
"product": "Perl",
"version": "5.38.2",
"input_was_normalized": false,
"input_original_product": "Perl",
"input_original_version": "5.38.2",
"canonical_product": "perl",
"canonical_version": "5.38.2",
"total_cves": 2,
"highest_severity": "CRITICAL",
"highest_score": 10,
"cve_breakdown": {
"critical": 1,
"high": 1,
"medium": 0,
"low": 0
},
"top_cves": [
{
"cve_id": "CVE-1999-0509",
"description": "Perl, sh, csh, or other shell interpreters are installed in the cgi-bin directory on a WWW site, which allows remote attackers to execute arbitrary commands.",
"cvss_score": 10,
"score": 10,
"severity": "CRITICAL",
"published_date": "1996-05-29T04:00:00.000",
"fixed_in": null,
"affected_versions": null,
"affected_ranges": [],
"source": "NVD"
},
{
"cve_id": "CVE-1999-0150",
"description": "The Perl fingerd program allows arbitrary command execution from remote users.",
"cvss_score": 7.5,
"score": 7.5,
"severity": "HIGH",
"published_date": "1997-07-01T04:00:00.000",
"fixed_in": null,
"affected_versions": null,
"affected_ranges": [],
"source": "NVD"
}
],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "exact_or_range_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 2
},
"software_status": null,
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "OpenVPN",
"version": "2.6.19",
"input_was_normalized": false,
"input_original_product": "OpenVPN",
"input_original_version": "2.6.19",
"canonical_product": "openvpn",
"canonical_version": "2.6.19",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "Fail2ban",
"version": "1.0.2",
"input_was_normalized": false,
"input_original_product": "Fail2ban",
"input_original_version": "1.0.2",
"canonical_product": "fail2ban",
"canonical_version": "1.0.2",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "ClamAV",
"version": "1.4.4",
"input_was_normalized": false,
"input_original_product": "ClamAV",
"input_original_version": "1.4.4",
"canonical_product": "clamav",
"canonical_version": "1.4.4",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
}
],
"items": [
{
"success": true,
"product": "Linux kernel",
"version": "6.8.0",
"input_was_normalized": false,
"input_original_product": "Linux kernel",
"input_original_version": "6.8.0",
"canonical_product": "linux kernel",
"canonical_version": "6.8.0",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "Apache HTTP Server",
"version": "2.4.68",
"input_was_normalized": false,
"input_original_product": "Apache HTTP Server",
"input_original_version": "2.4.68",
"canonical_product": "apache",
"canonical_version": "2.4.68",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_NO_VERSION_MATCH",
"message": "Product recognized, but no confirmed CVE range\/exact-version match was found for version 2.4.68. Other versions have 20 documented CVEs, so treat this as a review item rather than clean.",
"tracked": true,
"other_versions_cve_count": 20,
"warning_level": "REVIEW",
"confidence": "MEDIUM"
},
"remote_nvd_used": true,
"remote_nvd_requests": 11
},
{
"success": true,
"product": "PHP",
"version": "8.3.6",
"input_was_normalized": false,
"input_original_product": "PHP",
"input_original_version": "8.3.6",
"canonical_product": "php",
"canonical_version": "8.3.6",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_EXACT_VERSION_NOT_LISTED",
"message": "Product recognized, but version 8.3.6 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result.",
"tracked": true,
"other_versions_cve_count": 0,
"warning_level": "REVIEW",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 5
},
{
"success": true,
"product": "OpenSSL",
"version": "3.0.13",
"input_was_normalized": false,
"input_original_product": "OpenSSL",
"input_original_version": "3.0.13",
"canonical_product": "openssl",
"canonical_version": "3.0.13",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_EXACT_VERSION_NOT_LISTED",
"message": "Product recognized, but version 3.0.13 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result.",
"tracked": true,
"other_versions_cve_count": 0,
"warning_level": "REVIEW",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 5
},
{
"success": true,
"product": "OpenSSH",
"version": "9.6",
"input_was_normalized": false,
"input_original_product": "OpenSSH",
"input_original_version": "9.6",
"canonical_product": "openssh",
"canonical_version": "9.6",
"total_cves": 2,
"highest_severity": "HIGH",
"highest_score": 8.1,
"cve_breakdown": {
"critical": 0,
"high": 2,
"medium": 0,
"low": 0
},
"top_cves": [
{
"cve_id": "CVE-2024-6387",
"description": "OpenSSH sshd signal-handler race condition (regreSSHion). Affects Portable OpenSSH before 4.4p1 and 8.5p1 through before 9.8p1 on glibc-based Linux systems unless vendor backports apply.",
"cvss_score": 8.1,
"score": 8.1,
"severity": "HIGH",
"published_date": "2024-07-01",
"fixed_in": "OpenSSH 9.8p1 or vendor-backported package",
"affected_versions": "< 4.4p1; >= 8.5p1 < 9.8p1",
"affected_ranges": [
"< 4.4p1",
">= 8.5p1 < 9.8p1"
],
"source": "CURATED-RANGE",
"match_note": "Curated OpenSSH affected-version range. Confirm OS\/vendor backport status."
},
{
"cve_id": "CVE-2025-26466",
"description": "OpenSSH sshd memory\/CPU denial-of-service related to SSH2_MSG_PING handling. Affects OpenSSH 9.5p1 through 9.9p1; fixed in 9.9p2 or vendor-backported packages.",
"cvss_score": 7.5,
"score": 7.5,
"severity": "HIGH",
"published_date": "2025-02-18",
"fixed_in": "OpenSSH 9.9p2 or vendor-backported package",
"affected_versions": ">= 9.5p1 <= 9.9p1",
"affected_ranges": [
">= 9.5p1 < 9.9p2"
],
"source": "CURATED-RANGE",
"match_note": "Curated OpenSSH affected-version range. Confirm vendor package patch\/backport status."
}
],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "product_range_match",
"filtering_stats": {
"unfiltered_count": 2,
"filtered_count": 2
},
"software_status": null,
"remote_nvd_used": true,
"remote_nvd_requests": 6
},
{
"success": true,
"product": "Postfix",
"version": "3.8.6",
"input_was_normalized": false,
"input_original_product": "Postfix",
"input_original_version": "3.8.6",
"canonical_product": "postfix",
"canonical_version": "3.8.6",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_EXACT_VERSION_NOT_LISTED",
"message": "Product recognized, but version 3.8.6 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result.",
"tracked": true,
"other_versions_cve_count": 0,
"warning_level": "REVIEW",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 5
},
{
"success": true,
"product": "Redis",
"version": "8.8.0",
"input_was_normalized": false,
"input_original_product": "Redis",
"input_original_version": "8.8.0",
"canonical_product": "redis",
"canonical_version": "8.8.0",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_EXACT_VERSION_NOT_LISTED",
"message": "Product recognized, but version 8.8.0 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result.",
"tracked": true,
"other_versions_cve_count": 0,
"warning_level": "REVIEW",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 5
},
{
"success": true,
"product": "dnsmasq",
"version": "2.90",
"input_was_normalized": false,
"input_original_product": "dnsmasq",
"input_original_version": "2.90",
"canonical_product": "dnsmasq",
"canonical_version": "2.90",
"total_cves": 1,
"highest_severity": "CRITICAL",
"highest_score": 9.8,
"cve_breakdown": {
"critical": 1,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [
{
"cve_id": "CVE-2017-14491",
"description": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.",
"cvss_score": 9.8,
"score": 9.8,
"severity": "CRITICAL",
"published_date": "2017-10-04T01:29:02.870",
"fixed_in": null,
"affected_versions": "<= 2.77; 6.0; 7.0; 12.04; 14.04; 16.04; 17.04; 7.1; 8.0; 9.0; 42.2; 42.3; 11; 12; < r21.6; < r24.2.2; >= 3.0 < 3.10.0.55; < jimmy-al00ac00b135; <= 4.15; >= 4.16 < 4.16.13m; >= 4.17 < 4.17.8m; >= 4.18 <= 4.18.4.2f; < 5.0; < 6.5.1.5; >= 6.3.1 < 6.3.1.25; >= 6.4.4.0 < 6.4.4.16; >= 6.5.0.0 < 6.5.1.9; >= 6.5.3.0 < 6.5.3.3; >= 6.5.4.0 < 6.5.4.2; >= 8.1.0.0 < 8.1.0.4; 1.1; 5.2; 6.1",
"affected_ranges": [
"<= 2.77",
"6.0",
"7.0",
"12.04",
"14.04",
"16.04",
"17.04",
"7.1",
"8.0",
"9.0",
"42.2",
"42.3",
"11",
"12",
"< r21.6",
"< r24.2.2",
">= 3.0 < 3.10.0.55",
"< jimmy-al00ac00b135",
"<= 4.15",
">= 4.16 < 4.16.13m",
">= 4.17 < 4.17.8m",
">= 4.18 <= 4.18.4.2f",
"< 5.0",
"< 6.5.1.5",
">= 6.3.1 < 6.3.1.25",
">= 6.4.4.0 < 6.4.4.16",
">= 6.5.0.0 < 6.5.1.9",
">= 6.5.3.0 < 6.5.3.3",
">= 6.5.4.0 < 6.5.4.2",
">= 8.1.0.0 < 8.1.0.4",
"1.1",
"5.2",
"6.1"
],
"source": "NVD-PRODUCT-RANGE",
"match_note": "Matched product-level NVD affected-version range."
}
],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "product_range_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 1
},
"software_status": null,
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "HAProxy",
"version": "2.9.15",
"input_was_normalized": false,
"input_original_product": "HAProxy",
"input_original_version": "2.9.15",
"canonical_product": "haproxy",
"canonical_version": "2.9.15",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 0
},
"software_status": {
"status": "ANCIENT_VERSION",
"message": "Legacy\/version review: exact version 2.9.15 was not matched, but this recognized product has 20 documented CVEs in other versions. Verify manually before treating as clean.",
"tracked": true,
"other_versions_cve_count": 20,
"warning_level": "HIGH",
"confidence": "MEDIUM"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "Squid",
"version": "6.14",
"input_was_normalized": false,
"input_original_product": "Squid",
"input_original_version": "6.14",
"canonical_product": "squid",
"canonical_version": "6.14",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "VMware Tools",
"version": "13.0.0.0",
"input_was_normalized": false,
"input_original_product": "VMware Tools",
"input_original_version": "13.0.0.0",
"canonical_product": "vmware tools",
"canonical_version": "13.0.0.0",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "Python",
"version": "3.12.3",
"input_was_normalized": false,
"input_original_product": "Python",
"input_original_version": "3.12.3",
"canonical_product": "python",
"canonical_version": "3.12.3",
"total_cves": 2,
"highest_severity": "HIGH",
"highest_score": 7.5,
"cve_breakdown": {
"critical": 0,
"high": 2,
"medium": 0,
"low": 0
},
"top_cves": [
{
"cve_id": "CVE-2005-2491",
"description": "Integer overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products such as Python, Ethereal, and PHP, allows attackers to execute arbitrary code ...",
"cvss_score": 7.5,
"score": 7.5,
"severity": "HIGH",
"published_date": "2005-08-23T04:00:00.000",
"fixed_in": null,
"affected_versions": "5.0; 6.0; 6.1",
"affected_ranges": [
"5.0",
"6.0",
"6.1"
],
"source": "NVD-PRODUCT-RANGE",
"match_note": "Matched version range wording in CVE\/advisory description."
},
{
"cve_id": "CVE-2006-4980",
"description": "Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide char...",
"cvss_score": 7.5,
"score": 7.5,
"severity": "HIGH",
"published_date": "2006-10-10T04:06:00.000",
"fixed_in": null,
"affected_versions": "< 2.3.6; >= 2.4.0 < 2.4.4",
"affected_ranges": [
"< 2.3.6",
">= 2.4.0 < 2.4.4"
],
"source": "NVD-PRODUCT-RANGE",
"match_note": "Matched version range wording in CVE\/advisory description."
}
],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "product_range_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 2
},
"software_status": null,
"remote_nvd_used": true,
"remote_nvd_requests": 7
},
{
"success": true,
"product": "Perl",
"version": "5.38.2",
"input_was_normalized": false,
"input_original_product": "Perl",
"input_original_version": "5.38.2",
"canonical_product": "perl",
"canonical_version": "5.38.2",
"total_cves": 2,
"highest_severity": "CRITICAL",
"highest_score": 10,
"cve_breakdown": {
"critical": 1,
"high": 1,
"medium": 0,
"low": 0
},
"top_cves": [
{
"cve_id": "CVE-1999-0509",
"description": "Perl, sh, csh, or other shell interpreters are installed in the cgi-bin directory on a WWW site, which allows remote attackers to execute arbitrary commands.",
"cvss_score": 10,
"score": 10,
"severity": "CRITICAL",
"published_date": "1996-05-29T04:00:00.000",
"fixed_in": null,
"affected_versions": null,
"affected_ranges": [],
"source": "NVD"
},
{
"cve_id": "CVE-1999-0150",
"description": "The Perl fingerd program allows arbitrary command execution from remote users.",
"cvss_score": 7.5,
"score": 7.5,
"severity": "HIGH",
"published_date": "1997-07-01T04:00:00.000",
"fixed_in": null,
"affected_versions": null,
"affected_ranges": [],
"source": "NVD"
}
],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "exact_or_range_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 2
},
"software_status": null,
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "OpenVPN",
"version": "2.6.19",
"input_was_normalized": false,
"input_original_product": "OpenVPN",
"input_original_version": "2.6.19",
"canonical_product": "openvpn",
"canonical_version": "2.6.19",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "Fail2ban",
"version": "1.0.2",
"input_was_normalized": false,
"input_original_product": "Fail2ban",
"input_original_version": "1.0.2",
"canonical_product": "fail2ban",
"canonical_version": "1.0.2",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "ClamAV",
"version": "1.4.4",
"input_was_normalized": false,
"input_original_product": "ClamAV",
"input_original_version": "1.4.4",
"canonical_product": "clamav",
"canonical_version": "1.4.4",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
}
],
"data": [
{
"success": true,
"product": "Linux kernel",
"version": "6.8.0",
"input_was_normalized": false,
"input_original_product": "Linux kernel",
"input_original_version": "6.8.0",
"canonical_product": "linux kernel",
"canonical_version": "6.8.0",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "Apache HTTP Server",
"version": "2.4.68",
"input_was_normalized": false,
"input_original_product": "Apache HTTP Server",
"input_original_version": "2.4.68",
"canonical_product": "apache",
"canonical_version": "2.4.68",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_NO_VERSION_MATCH",
"message": "Product recognized, but no confirmed CVE range\/exact-version match was found for version 2.4.68. Other versions have 20 documented CVEs, so treat this as a review item rather than clean.",
"tracked": true,
"other_versions_cve_count": 20,
"warning_level": "REVIEW",
"confidence": "MEDIUM"
},
"remote_nvd_used": true,
"remote_nvd_requests": 11
},
{
"success": true,
"product": "PHP",
"version": "8.3.6",
"input_was_normalized": false,
"input_original_product": "PHP",
"input_original_version": "8.3.6",
"canonical_product": "php",
"canonical_version": "8.3.6",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_EXACT_VERSION_NOT_LISTED",
"message": "Product recognized, but version 8.3.6 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result.",
"tracked": true,
"other_versions_cve_count": 0,
"warning_level": "REVIEW",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 5
},
{
"success": true,
"product": "OpenSSL",
"version": "3.0.13",
"input_was_normalized": false,
"input_original_product": "OpenSSL",
"input_original_version": "3.0.13",
"canonical_product": "openssl",
"canonical_version": "3.0.13",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_EXACT_VERSION_NOT_LISTED",
"message": "Product recognized, but version 3.0.13 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result.",
"tracked": true,
"other_versions_cve_count": 0,
"warning_level": "REVIEW",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 5
},
{
"success": true,
"product": "OpenSSH",
"version": "9.6",
"input_was_normalized": false,
"input_original_product": "OpenSSH",
"input_original_version": "9.6",
"canonical_product": "openssh",
"canonical_version": "9.6",
"total_cves": 2,
"highest_severity": "HIGH",
"highest_score": 8.1,
"cve_breakdown": {
"critical": 0,
"high": 2,
"medium": 0,
"low": 0
},
"top_cves": [
{
"cve_id": "CVE-2024-6387",
"description": "OpenSSH sshd signal-handler race condition (regreSSHion). Affects Portable OpenSSH before 4.4p1 and 8.5p1 through before 9.8p1 on glibc-based Linux systems unless vendor backports apply.",
"cvss_score": 8.1,
"score": 8.1,
"severity": "HIGH",
"published_date": "2024-07-01",
"fixed_in": "OpenSSH 9.8p1 or vendor-backported package",
"affected_versions": "< 4.4p1; >= 8.5p1 < 9.8p1",
"affected_ranges": [
"< 4.4p1",
">= 8.5p1 < 9.8p1"
],
"source": "CURATED-RANGE",
"match_note": "Curated OpenSSH affected-version range. Confirm OS\/vendor backport status."
},
{
"cve_id": "CVE-2025-26466",
"description": "OpenSSH sshd memory\/CPU denial-of-service related to SSH2_MSG_PING handling. Affects OpenSSH 9.5p1 through 9.9p1; fixed in 9.9p2 or vendor-backported packages.",
"cvss_score": 7.5,
"score": 7.5,
"severity": "HIGH",
"published_date": "2025-02-18",
"fixed_in": "OpenSSH 9.9p2 or vendor-backported package",
"affected_versions": ">= 9.5p1 <= 9.9p1",
"affected_ranges": [
">= 9.5p1 < 9.9p2"
],
"source": "CURATED-RANGE",
"match_note": "Curated OpenSSH affected-version range. Confirm vendor package patch\/backport status."
}
],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "product_range_match",
"filtering_stats": {
"unfiltered_count": 2,
"filtered_count": 2
},
"software_status": null,
"remote_nvd_used": true,
"remote_nvd_requests": 6
},
{
"success": true,
"product": "Postfix",
"version": "3.8.6",
"input_was_normalized": false,
"input_original_product": "Postfix",
"input_original_version": "3.8.6",
"canonical_product": "postfix",
"canonical_version": "3.8.6",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_EXACT_VERSION_NOT_LISTED",
"message": "Product recognized, but version 3.8.6 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result.",
"tracked": true,
"other_versions_cve_count": 0,
"warning_level": "REVIEW",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 5
},
{
"success": true,
"product": "Redis",
"version": "8.8.0",
"input_was_normalized": false,
"input_original_product": "Redis",
"input_original_version": "8.8.0",
"canonical_product": "redis",
"canonical_version": "8.8.0",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "PRODUCT_KNOWN_EXACT_VERSION_NOT_LISTED",
"message": "Product recognized, but version 8.8.0 was not listed in the CVE source and no reliable affected-version match was found. This is a data gap, not a clean result.",
"tracked": true,
"other_versions_cve_count": 0,
"warning_level": "REVIEW",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 5
},
{
"success": true,
"product": "dnsmasq",
"version": "2.90",
"input_was_normalized": false,
"input_original_product": "dnsmasq",
"input_original_version": "2.90",
"canonical_product": "dnsmasq",
"canonical_version": "2.90",
"total_cves": 1,
"highest_severity": "CRITICAL",
"highest_score": 9.8,
"cve_breakdown": {
"critical": 1,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [
{
"cve_id": "CVE-2017-14491",
"description": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.",
"cvss_score": 9.8,
"score": 9.8,
"severity": "CRITICAL",
"published_date": "2017-10-04T01:29:02.870",
"fixed_in": null,
"affected_versions": "<= 2.77; 6.0; 7.0; 12.04; 14.04; 16.04; 17.04; 7.1; 8.0; 9.0; 42.2; 42.3; 11; 12; < r21.6; < r24.2.2; >= 3.0 < 3.10.0.55; < jimmy-al00ac00b135; <= 4.15; >= 4.16 < 4.16.13m; >= 4.17 < 4.17.8m; >= 4.18 <= 4.18.4.2f; < 5.0; < 6.5.1.5; >= 6.3.1 < 6.3.1.25; >= 6.4.4.0 < 6.4.4.16; >= 6.5.0.0 < 6.5.1.9; >= 6.5.3.0 < 6.5.3.3; >= 6.5.4.0 < 6.5.4.2; >= 8.1.0.0 < 8.1.0.4; 1.1; 5.2; 6.1",
"affected_ranges": [
"<= 2.77",
"6.0",
"7.0",
"12.04",
"14.04",
"16.04",
"17.04",
"7.1",
"8.0",
"9.0",
"42.2",
"42.3",
"11",
"12",
"< r21.6",
"< r24.2.2",
">= 3.0 < 3.10.0.55",
"< jimmy-al00ac00b135",
"<= 4.15",
">= 4.16 < 4.16.13m",
">= 4.17 < 4.17.8m",
">= 4.18 <= 4.18.4.2f",
"< 5.0",
"< 6.5.1.5",
">= 6.3.1 < 6.3.1.25",
">= 6.4.4.0 < 6.4.4.16",
">= 6.5.0.0 < 6.5.1.9",
">= 6.5.3.0 < 6.5.3.3",
">= 6.5.4.0 < 6.5.4.2",
">= 8.1.0.0 < 8.1.0.4",
"1.1",
"5.2",
"6.1"
],
"source": "NVD-PRODUCT-RANGE",
"match_note": "Matched product-level NVD affected-version range."
}
],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": true,
"match_status": "product_range_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 1
},
"software_status": null,
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "HAProxy",
"version": "2.9.15",
"input_was_normalized": false,
"input_original_product": "HAProxy",
"input_original_version": "2.9.15",
"canonical_product": "haproxy",
"canonical_version": "2.9.15",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 20,
"filtered_count": 0
},
"software_status": {
"status": "ANCIENT_VERSION",
"message": "Legacy\/version review: exact version 2.9.15 was not matched, but this recognized product has 20 documented CVEs in other versions. Verify manually before treating as clean.",
"tracked": true,
"other_versions_cve_count": 20,
"warning_level": "HIGH",
"confidence": "MEDIUM"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "Squid",
"version": "6.14",
"input_was_normalized": false,
"input_original_product": "Squid",
"input_original_version": "6.14",
"canonical_product": "squid",
"canonical_version": "6.14",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "VMware Tools",
"version": "13.0.0.0",
"input_was_normalized": false,
"input_original_product": "VMware Tools",
"input_original_version": "13.0.0.0",
"canonical_product": "vmware tools",
"canonical_version": "13.0.0.0",
"total_cves": 0,
"highest_severity": "LOW",
"highest_score": 0,
"cve_breakdown": {
"critical": 0,
"high": 0,
"medium": 0,
"low": 0
},
"top_cves": [],
"cached": true,
"cache_source": "redis_positive_mget",
"version_filtered": false,
"match_status": "no_version_match",
"filtering_stats": {
"unfiltered_count": 0,
"filtered_count": 0
},
"software_status": {
"status": "NOT_TRACKED",
"message": "Unmapped product: no reliable CVE product mapping was found for this banner. It may be proprietary, renamed, embedded, or device-specific.",
"tracked": false,
"other_versions_cve_count": 0,
"warning_level": "UNKNOWN",
"confidence": "LOW"
},
"remote_nvd_used": true,
"remote_nvd_requests": 3
},
{
"success": true,
"product": "Python",
"version": "3.12.3",
"input_was_normalized": false,
"input_original_product": "Python",
"input_original_version": "3.12.3",
"canonical_product": "python",
"canonical_version": "3.12.3",
"total_cves": 2,
"highest_severity": "HIGH",
"highest_score": 7.5,
"cve_breakdown": {
"critical": 0,
"high": 2,
"medium": 0,
"low": 0
},
"top_cves": [
{
"cve_id": "CVE-2005-2491",
"description": "Integer overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products such as Python, Ethereal, and PHP, allows attackers to execute arbitrary code ...",
"cvss_score": 7.5,
"score": 7.5,
"severity": "HIGH",
"published_date": "2005-08-23T04:00:00.000",
"fixed_in": null,
"affected_versions": "5.0; 6.0; 6.1",
"affected_ranges": [
"5.0",
"6.0",
"6.1"
],
"source": "NVD-PRODUCT-RANGE",
"match_note": "Matched version range wording in CVE\/advisory description."
},
HTTP Status: 200
Payload:
{"api_key":"04797a7314594cdb380fb6535f029fe5","email":"helpdesk@redcloud.se","platform":"linux","os_family":"linux","source":"linux-local-service-inventory","os":"Ubuntu 24.04.4 LTS","distro_id":"ubuntu","host":"scantide","items":[{"product":"Ubuntu","version":"24.04","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"/etc/os-release"},{"product":"Linux kernel","version":"6.8.0","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"uname -r"},{"product":"Apache HTTP Server","version":"2.4.68","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"apache2 -v"},{"product":"PHP","version":"8.3.6","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"php -v"},{"product":"OpenSSL","version":"3.0.13","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"openssl version"},{"product":"OpenSSH","version":"9.6","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"ssh -V"},{"product":"Postfix","version":"3.8.6","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"postconf mail_version"},{"product":"Redis","version":"8.8.0","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"redis-server --version"},{"product":"dnsmasq","version":"2.90","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"dnsmasq --version"},{"product":"HAProxy","version":"2.9.15","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"haproxy -v"},{"product":"Squid","version":"6.14","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"squid -v"},{"product":"VMware Tools","version":"13.0.0.0","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"vmware-toolbox-cmd -v"},{"product":"Python","version":"3.12.3","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"python3 --version"},{"product":"Perl","version":"5.38.2","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"perl version"},{"product":"OpenVPN","version":"2.6.19","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"openvpn --version"},{"product":"Fail2ban","version":"1.0.2","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"fail2ban-client version"},{"product":"ClamAV","version":"1.4.4","platform":"linux","os":"Ubuntu 24.04.4 LTS","source":"clamscan --version"}]}
Response:
{
"success": true,
"api_version": "1.3.3-linux-aware",
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"generated_at": "2026-06-23T11:59:35Z",
"catalog_product_count": 81,
"catalog_files": [
"software_lifecycle_linux.json"
],
"platform_selected": "linux",
"summary": {
"total": 17,
"matched": 17,
"unknown": 0,
"current": 16,
"update_available": 1,
"end_of_support": 0,
"unsupported_major_version": 0,
"monitored": 0,
"findings": 1
},
"community_observations": {
"enabled": true,
"stored": 0,
"skipped": 0,
"updated_latest": 0,
"consent": false
},
"results": [
{
"success": true,
"product": "Ubuntu",
"installed_version": "24.04",
"normalized_version": "24.04",
"publisher": "",
"matched": true,
"matched_product_id": "ubuntu",
"matched_product": "Ubuntu",
"category": "Operating system",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Run a supported Ubuntu LTS release or enable Ubuntu Pro/ESM where appropriate.",
"evidence": "Ubuntu matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "vendor-lifecycle",
"source_label": "Ubuntu release cycle",
"source_confidence": "high",
"source_url": "https://ubuntu.com/about/release-cycle",
"source_detail": "Ubuntu release cycle (high) | Ubuntu releases (high)",
"sources": [
{
"type": "vendor",
"label": "Ubuntu release cycle",
"confidence": "high",
"url": "https://ubuntu.com/about/release-cycle",
"package_id": "",
"latest_version": "",
"last_checked": ""
},
{
"type": "vendor",
"label": "Ubuntu releases",
"confidence": "high",
"url": "https://releases.ubuntu.com/",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Ubuntu matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Linux kernel",
"installed_version": "6.8.0",
"normalized_version": "6.8.0",
"publisher": "",
"matched": true,
"matched_product_id": "linux_kernel",
"matched_product": "Linux kernel",
"category": "Kernel",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Evaluate kernel support against the Linux distribution first. Upstream kernel EOL is a review signal, not final proof for distro kernels.",
"evidence": "Linux kernel matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "kernel-and-distro-lifecycle",
"source_label": "kernel.org releases",
"source_confidence": "high",
"source_url": "https://www.kernel.org/",
"source_detail": "kernel.org releases (high) | Linux kernel lifecycle overview (medium)",
"sources": [
{
"type": "vendor",
"label": "kernel.org releases",
"confidence": "high",
"url": "https://www.kernel.org/",
"package_id": "",
"latest_version": "",
"last_checked": ""
},
{
"type": "reference",
"label": "Linux kernel lifecycle overview",
"confidence": "medium",
"url": "https://endoflife.date/linux",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Linux kernel matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Apache HTTP Server",
"installed_version": "2.4.68",
"normalized_version": "2.4.68",
"publisher": "",
"matched": true,
"matched_product_id": "apache_http_server",
"matched_product": "Apache HTTP Server",
"category": "Web server",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Apache updated via distro/vendor packages; validate backported security fixes before judging by upstream version.",
"evidence": "Apache HTTP Server matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Apache HTTP Server matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "PHP",
"installed_version": "8.3.6",
"normalized_version": "8.3.6",
"publisher": "",
"matched": true,
"matched_product_id": "php",
"matched_product": "PHP",
"category": "Runtime",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Use a supported PHP branch. PHP 7.x and older should be treated as unsupported unless vendor extended support exists.",
"evidence": "PHP matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "PHP matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "OpenSSL",
"installed_version": "3.0.13",
"normalized_version": "3.0.13",
"publisher": "",
"matched": true,
"matched_product_id": "openssl",
"matched_product": "OpenSSL",
"category": "TLS/Crypto",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "OpenSSL should be evaluated by distro/vendor package status; OpenSSL 1.1.1 and older require review.",
"evidence": "OpenSSL matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "OpenSSL matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "OpenSSH",
"installed_version": "9.6",
"normalized_version": "9.6",
"publisher": "",
"matched": true,
"matched_product_id": "openssh",
"matched_product": "OpenSSH",
"category": "Remote admin",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep OpenSSH updated through OS packages; older major versions should be reviewed for distro backports.",
"evidence": "OpenSSH matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "OpenSSH matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Postfix",
"installed_version": "3.8.6",
"normalized_version": "3.8.6",
"publisher": "",
"matched": true,
"matched_product_id": "postfix",
"matched_product": "Postfix",
"category": "Mail/SMTP",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Postfix updated via distro/vendor packages.",
"evidence": "Postfix matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Postfix matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Redis",
"installed_version": "8.8.0",
"normalized_version": "8.8.0",
"publisher": "",
"matched": true,
"matched_product_id": "redis",
"matched_product": "Redis",
"category": "Database/Cache",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Redis updated; restrict network exposure and require authentication.",
"evidence": "Redis matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Redis matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "dnsmasq",
"installed_version": "2.90",
"normalized_version": "2.90",
"publisher": "",
"matched": true,
"matched_product_id": "dnsmasq",
"matched_product": "dnsmasq",
"category": "DNS/DHCP",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep dnsmasq updated.",
"evidence": "dnsmasq matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "dnsmasq matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "HAProxy",
"installed_version": "2.9.15",
"normalized_version": "2.9.15",
"publisher": "",
"matched": true,
"matched_product_id": "haproxy",
"matched_product": "HAProxy",
"category": "Proxy/Load balancer",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep HAProxy on a supported branch, preferably distro/vendor LTS.",
"evidence": "HAProxy matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "HAProxy matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Squid",
"installed_version": "6.14",
"normalized_version": "6.14",
"publisher": "",
"matched": true,
"matched_product_id": "squid",
"matched_product": "Squid",
"category": "Proxy",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Squid updated and review proxy exposure.",
"evidence": "Squid matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Squid matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "VMware Tools",
"installed_version": "13.0.0.0",
"normalized_version": "13.0.0.0",
"publisher": "",
"matched": true,
"matched_product_id": "vmware_tools",
"matched_product": "VMware Tools / open-vm-tools",
"category": "Virtualization/Guest Tools",
"status": "update_available",
"status_label": "Update available",
"severity": "Info",
"latest_version": "13.1.0",
"eol_date": "",
"recommended_action": "Keep VMware Tools/open-vm-tools updated through VMware/Broadcom packages or the Linux distribution package channel. Treat guest tools as platform support software, not as the server's primary role.",
"evidence": "VMware Tools / open-vm-tools installed version 13.0.0.0 is older than latest known version 13.1.0.",
"source_strategy": "vendor-and-distro-lifecycle",
"source_label": "Broadcom VMware Tools build numbers and versions",
"source_confidence": "high",
"source_url": "https://knowledge.broadcom.com/external/article/304809/build-numbers-and-versions-of-vmware-too.html",
"source_detail": "Broadcom VMware Tools build numbers and versions 13.1.0 (high) | VMware open-vm-tools releases 13.1.0 (medium)",
"sources": [
{
"type": "vendor",
"label": "Broadcom VMware Tools build numbers and versions",
"confidence": "high",
"url": "https://knowledge.broadcom.com/external/article/304809/build-numbers-and-versions-of-vmware-too.html",
"package_id": "",
"latest_version": "13.1.0",
"last_checked": ""
},
{
"type": "upstream",
"label": "VMware open-vm-tools releases",
"confidence": "medium",
"url": "https://github.com/vmware/open-vm-tools/releases",
"package_id": "",
"latest_version": "13.1.0",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "update_available",
"status_label": "Update available",
"severity": "Info",
"evidence": "VMware Tools / open-vm-tools installed version 13.0.0.0 is older than latest known version 13.1.0.",
"latest_version": "13.1.0",
"eol_date": ""
}
]
},
{
"success": true,
"product": "Python",
"installed_version": "3.12.3",
"normalized_version": "3.12.3",
"publisher": "",
"matched": true,
"matched_product_id": "python",
"matched_product": "Python",
"category": "Runtime",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Use supported Python 3 branches; Python 2 is end-of-support.",
"evidence": "Python matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Python matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Perl",
"installed_version": "5.38.2",
"normalized_version": "5.38.2",
"publisher": "",
"matched": true,
"matched_product_id": "perl",
"matched_product": "Perl",
"category": "Runtime",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Perl updated through OS packages.",
"evidence": "Perl matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Perl matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "OpenVPN",
"installed_version": "2.6.19",
"normalized_version": "2.6.19",
"publisher": "",
"matched": true,
"matched_product_id": "openvpn",
"matched_product": "OpenVPN",
"category": "VPN",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep OpenVPN updated and review cipher/auth settings.",
"evidence": "OpenVPN matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "OpenVPN matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Fail2ban",
"installed_version": "1.0.2",
"normalized_version": "1.0.2",
"publisher": "",
"matched": true,
"matched_product_id": "fail2ban",
"matched_product": "Fail2ban",
"category": "Security",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Fail2ban updated.",
"evidence": "Fail2ban matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Fail2ban matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "ClamAV",
"installed_version": "1.4.4",
"normalized_version": "1.4.4",
"publisher": "",
"matched": true,
"matched_product_id": "clamav",
"matched_product": "ClamAV",
"category": "Security/AV",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep ClamAV and signatures updated.",
"evidence": "ClamAV matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "ClamAV matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
}
],
"items": [
{
"success": true,
"product": "Ubuntu",
"installed_version": "24.04",
"normalized_version": "24.04",
"publisher": "",
"matched": true,
"matched_product_id": "ubuntu",
"matched_product": "Ubuntu",
"category": "Operating system",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Run a supported Ubuntu LTS release or enable Ubuntu Pro/ESM where appropriate.",
"evidence": "Ubuntu matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "vendor-lifecycle",
"source_label": "Ubuntu release cycle",
"source_confidence": "high",
"source_url": "https://ubuntu.com/about/release-cycle",
"source_detail": "Ubuntu release cycle (high) | Ubuntu releases (high)",
"sources": [
{
"type": "vendor",
"label": "Ubuntu release cycle",
"confidence": "high",
"url": "https://ubuntu.com/about/release-cycle",
"package_id": "",
"latest_version": "",
"last_checked": ""
},
{
"type": "vendor",
"label": "Ubuntu releases",
"confidence": "high",
"url": "https://releases.ubuntu.com/",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Ubuntu matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Linux kernel",
"installed_version": "6.8.0",
"normalized_version": "6.8.0",
"publisher": "",
"matched": true,
"matched_product_id": "linux_kernel",
"matched_product": "Linux kernel",
"category": "Kernel",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Evaluate kernel support against the Linux distribution first. Upstream kernel EOL is a review signal, not final proof for distro kernels.",
"evidence": "Linux kernel matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "kernel-and-distro-lifecycle",
"source_label": "kernel.org releases",
"source_confidence": "high",
"source_url": "https://www.kernel.org/",
"source_detail": "kernel.org releases (high) | Linux kernel lifecycle overview (medium)",
"sources": [
{
"type": "vendor",
"label": "kernel.org releases",
"confidence": "high",
"url": "https://www.kernel.org/",
"package_id": "",
"latest_version": "",
"last_checked": ""
},
{
"type": "reference",
"label": "Linux kernel lifecycle overview",
"confidence": "medium",
"url": "https://endoflife.date/linux",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Linux kernel matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Apache HTTP Server",
"installed_version": "2.4.68",
"normalized_version": "2.4.68",
"publisher": "",
"matched": true,
"matched_product_id": "apache_http_server",
"matched_product": "Apache HTTP Server",
"category": "Web server",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Apache updated via distro/vendor packages; validate backported security fixes before judging by upstream version.",
"evidence": "Apache HTTP Server matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Apache HTTP Server matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "PHP",
"installed_version": "8.3.6",
"normalized_version": "8.3.6",
"publisher": "",
"matched": true,
"matched_product_id": "php",
"matched_product": "PHP",
"category": "Runtime",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Use a supported PHP branch. PHP 7.x and older should be treated as unsupported unless vendor extended support exists.",
"evidence": "PHP matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "PHP matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "OpenSSL",
"installed_version": "3.0.13",
"normalized_version": "3.0.13",
"publisher": "",
"matched": true,
"matched_product_id": "openssl",
"matched_product": "OpenSSL",
"category": "TLS/Crypto",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "OpenSSL should be evaluated by distro/vendor package status; OpenSSL 1.1.1 and older require review.",
"evidence": "OpenSSL matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "OpenSSL matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "OpenSSH",
"installed_version": "9.6",
"normalized_version": "9.6",
"publisher": "",
"matched": true,
"matched_product_id": "openssh",
"matched_product": "OpenSSH",
"category": "Remote admin",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep OpenSSH updated through OS packages; older major versions should be reviewed for distro backports.",
"evidence": "OpenSSH matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "OpenSSH matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Postfix",
"installed_version": "3.8.6",
"normalized_version": "3.8.6",
"publisher": "",
"matched": true,
"matched_product_id": "postfix",
"matched_product": "Postfix",
"category": "Mail/SMTP",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Postfix updated via distro/vendor packages.",
"evidence": "Postfix matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Postfix matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Redis",
"installed_version": "8.8.0",
"normalized_version": "8.8.0",
"publisher": "",
"matched": true,
"matched_product_id": "redis",
"matched_product": "Redis",
"category": "Database/Cache",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Redis updated; restrict network exposure and require authentication.",
"evidence": "Redis matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Redis matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "dnsmasq",
"installed_version": "2.90",
"normalized_version": "2.90",
"publisher": "",
"matched": true,
"matched_product_id": "dnsmasq",
"matched_product": "dnsmasq",
"category": "DNS/DHCP",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep dnsmasq updated.",
"evidence": "dnsmasq matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "dnsmasq matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "HAProxy",
"installed_version": "2.9.15",
"normalized_version": "2.9.15",
"publisher": "",
"matched": true,
"matched_product_id": "haproxy",
"matched_product": "HAProxy",
"category": "Proxy/Load balancer",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep HAProxy on a supported branch, preferably distro/vendor LTS.",
"evidence": "HAProxy matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "HAProxy matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Squid",
"installed_version": "6.14",
"normalized_version": "6.14",
"publisher": "",
"matched": true,
"matched_product_id": "squid",
"matched_product": "Squid",
"category": "Proxy",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Squid updated and review proxy exposure.",
"evidence": "Squid matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Squid matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "VMware Tools",
"installed_version": "13.0.0.0",
"normalized_version": "13.0.0.0",
"publisher": "",
"matched": true,
"matched_product_id": "vmware_tools",
"matched_product": "VMware Tools / open-vm-tools",
"category": "Virtualization/Guest Tools",
"status": "update_available",
"status_label": "Update available",
"severity": "Info",
"latest_version": "13.1.0",
"eol_date": "",
"recommended_action": "Keep VMware Tools/open-vm-tools updated through VMware/Broadcom packages or the Linux distribution package channel. Treat guest tools as platform support software, not as the server's primary role.",
"evidence": "VMware Tools / open-vm-tools installed version 13.0.0.0 is older than latest known version 13.1.0.",
"source_strategy": "vendor-and-distro-lifecycle",
"source_label": "Broadcom VMware Tools build numbers and versions",
"source_confidence": "high",
"source_url": "https://knowledge.broadcom.com/external/article/304809/build-numbers-and-versions-of-vmware-too.html",
"source_detail": "Broadcom VMware Tools build numbers and versions 13.1.0 (high) | VMware open-vm-tools releases 13.1.0 (medium)",
"sources": [
{
"type": "vendor",
"label": "Broadcom VMware Tools build numbers and versions",
"confidence": "high",
"url": "https://knowledge.broadcom.com/external/article/304809/build-numbers-and-versions-of-vmware-too.html",
"package_id": "",
"latest_version": "13.1.0",
"last_checked": ""
},
{
"type": "upstream",
"label": "VMware open-vm-tools releases",
"confidence": "medium",
"url": "https://github.com/vmware/open-vm-tools/releases",
"package_id": "",
"latest_version": "13.1.0",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "update_available",
"status_label": "Update available",
"severity": "Info",
"evidence": "VMware Tools / open-vm-tools installed version 13.0.0.0 is older than latest known version 13.1.0.",
"latest_version": "13.1.0",
"eol_date": ""
}
]
},
{
"success": true,
"product": "Python",
"installed_version": "3.12.3",
"normalized_version": "3.12.3",
"publisher": "",
"matched": true,
"matched_product_id": "python",
"matched_product": "Python",
"category": "Runtime",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Use supported Python 3 branches; Python 2 is end-of-support.",
"evidence": "Python matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Python matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Perl",
"installed_version": "5.38.2",
"normalized_version": "5.38.2",
"publisher": "",
"matched": true,
"matched_product_id": "perl",
"matched_product": "Perl",
"category": "Runtime",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Perl updated through OS packages.",
"evidence": "Perl matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Perl matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "OpenVPN",
"installed_version": "2.6.19",
"normalized_version": "2.6.19",
"publisher": "",
"matched": true,
"matched_product_id": "openvpn",
"matched_product": "OpenVPN",
"category": "VPN",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep OpenVPN updated and review cipher/auth settings.",
"evidence": "OpenVPN matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "OpenVPN matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Fail2ban",
"installed_version": "1.0.2",
"normalized_version": "1.0.2",
"publisher": "",
"matched": true,
"matched_product_id": "fail2ban",
"matched_product": "Fail2ban",
"category": "Security",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Fail2ban updated.",
"evidence": "Fail2ban matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Fail2ban matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "ClamAV",
"installed_version": "1.4.4",
"normalized_version": "1.4.4",
"publisher": "",
"matched": true,
"matched_product_id": "clamav",
"matched_product": "ClamAV",
"category": "Security/AV",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep ClamAV and signatures updated.",
"evidence": "ClamAV matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "ClamAV matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
}
],
"data": [
{
"success": true,
"product": "Ubuntu",
"installed_version": "24.04",
"normalized_version": "24.04",
"publisher": "",
"matched": true,
"matched_product_id": "ubuntu",
"matched_product": "Ubuntu",
"category": "Operating system",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Run a supported Ubuntu LTS release or enable Ubuntu Pro/ESM where appropriate.",
"evidence": "Ubuntu matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "vendor-lifecycle",
"source_label": "Ubuntu release cycle",
"source_confidence": "high",
"source_url": "https://ubuntu.com/about/release-cycle",
"source_detail": "Ubuntu release cycle (high) | Ubuntu releases (high)",
"sources": [
{
"type": "vendor",
"label": "Ubuntu release cycle",
"confidence": "high",
"url": "https://ubuntu.com/about/release-cycle",
"package_id": "",
"latest_version": "",
"last_checked": ""
},
{
"type": "vendor",
"label": "Ubuntu releases",
"confidence": "high",
"url": "https://releases.ubuntu.com/",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Ubuntu matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Linux kernel",
"installed_version": "6.8.0",
"normalized_version": "6.8.0",
"publisher": "",
"matched": true,
"matched_product_id": "linux_kernel",
"matched_product": "Linux kernel",
"category": "Kernel",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Evaluate kernel support against the Linux distribution first. Upstream kernel EOL is a review signal, not final proof for distro kernels.",
"evidence": "Linux kernel matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "kernel-and-distro-lifecycle",
"source_label": "kernel.org releases",
"source_confidence": "high",
"source_url": "https://www.kernel.org/",
"source_detail": "kernel.org releases (high) | Linux kernel lifecycle overview (medium)",
"sources": [
{
"type": "vendor",
"label": "kernel.org releases",
"confidence": "high",
"url": "https://www.kernel.org/",
"package_id": "",
"latest_version": "",
"last_checked": ""
},
{
"type": "reference",
"label": "Linux kernel lifecycle overview",
"confidence": "medium",
"url": "https://endoflife.date/linux",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Linux kernel matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Apache HTTP Server",
"installed_version": "2.4.68",
"normalized_version": "2.4.68",
"publisher": "",
"matched": true,
"matched_product_id": "apache_http_server",
"matched_product": "Apache HTTP Server",
"category": "Web server",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Apache updated via distro/vendor packages; validate backported security fixes before judging by upstream version.",
"evidence": "Apache HTTP Server matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Apache HTTP Server matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "PHP",
"installed_version": "8.3.6",
"normalized_version": "8.3.6",
"publisher": "",
"matched": true,
"matched_product_id": "php",
"matched_product": "PHP",
"category": "Runtime",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Use a supported PHP branch. PHP 7.x and older should be treated as unsupported unless vendor extended support exists.",
"evidence": "PHP matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "PHP matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "OpenSSL",
"installed_version": "3.0.13",
"normalized_version": "3.0.13",
"publisher": "",
"matched": true,
"matched_product_id": "openssl",
"matched_product": "OpenSSL",
"category": "TLS/Crypto",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "OpenSSL should be evaluated by distro/vendor package status; OpenSSL 1.1.1 and older require review.",
"evidence": "OpenSSL matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "OpenSSL matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "OpenSSH",
"installed_version": "9.6",
"normalized_version": "9.6",
"publisher": "",
"matched": true,
"matched_product_id": "openssh",
"matched_product": "OpenSSH",
"category": "Remote admin",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep OpenSSH updated through OS packages; older major versions should be reviewed for distro backports.",
"evidence": "OpenSSH matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "OpenSSH matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Postfix",
"installed_version": "3.8.6",
"normalized_version": "3.8.6",
"publisher": "",
"matched": true,
"matched_product_id": "postfix",
"matched_product": "Postfix",
"category": "Mail/SMTP",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Postfix updated via distro/vendor packages.",
"evidence": "Postfix matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Postfix matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "Redis",
"installed_version": "8.8.0",
"normalized_version": "8.8.0",
"publisher": "",
"matched": true,
"matched_product_id": "redis",
"matched_product": "Redis",
"category": "Database/Cache",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep Redis updated; restrict network exposure and require authentication.",
"evidence": "Redis matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "Redis matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "dnsmasq",
"installed_version": "2.90",
"normalized_version": "2.90",
"publisher": "",
"matched": true,
"matched_product_id": "dnsmasq",
"matched_product": "dnsmasq",
"category": "DNS/DHCP",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep dnsmasq updated.",
"evidence": "dnsmasq matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"evidence": "dnsmasq matched the lifecycle catalog and no outdated/EOL condition was detected."
}
]
},
{
"success": true,
"product": "HAProxy",
"installed_version": "2.9.15",
"normalized_version": "2.9.15",
"publisher": "",
"matched": true,
"matched_product_id": "haproxy",
"matched_product": "HAProxy",
"category": "Proxy/Load balancer",
"status": "current",
"status_label": "Current / no lifecycle finding",
"severity": "Info",
"latest_version": null,
"eol_date": null,
"recommended_action": "Keep HAProxy on a supported branch, preferably distro/vendor LTS.",
"evidence": "HAProxy matched the lifecycle catalog and no outdated/EOL condition was detected.",
"source_strategy": "linux-service-runtime-lifecycle",
"source_label": "linux-service-runtime-lifecycle",
"source_confidence": "medium",
"source_url": "",
"source_detail": "linux-service-runtime-lifecycle (medium)",
"sources": [
{
"type": "linux-service-runtime-lifecycle",
"label": "linux-service-runtime-lifecycle",
"confidence": "medium",
"url": "",
"package_id": "",
"latest_version": "",
"last_checked": ""
}
],
"catalog_version": "1.0.1-linux-os-kernel-services-vmware-tools",
"all_findings": [
{
proto local_address port process pid user risk_note udp 127.0.0.54 53 systemd-resolve 1314 101 udp 127.0.0.53%lo 53 systemd-resolve 1314 101 udp 192.168.99.198 123 ntpd 2019 138 udp 127.0.0.1 123 ntpd 2019 udp 0.0.0.0 123 ntpd 2019 udp 0.0.0.0 35192 avahi-daemon 1614 120 udp 0.0.0.0 5353 avahi-daemon 1614 120 udp 0.0.0.0 45413 squid 9305 13 udp fe80::250:56ff:feb2:c2b9]%ens192 123 ntpd 2019 udp ::1 123 ntpd 2019 udp :: 123 ntpd 2019 udp :: 5353 avahi-daemon 1614 120 udp :: 44181 avahi-daemon 1614 120 udp 0.0.0.0 46128 squid 9305 13 tcp 127.0.0.54 53 systemd-resolve 1314 101 tcp 127.0.0.53%lo 53 systemd-resolve 1314 101 tcp 127.0.0.1 6379 redis-server 62259 140 Review exposure: service is commonly sensitive or abused if Internet-facing. tcp 0.0.0.0 22 sshd 2223 SSH: expected on many servers, but should be restricted and hardened. tcp 192.168.99.198 6379 redis-server 62259 140 Review exposure: service is commonly sensitive or abused if Internet-facing. tcp 127.0.0.1 18890 wsgsbd 1988 13 tcp 127.0.0.1 18891 wsytgd 1997 13 tcp 127.0.0.1 631 cupsd 100915 tcp 127.0.0.1 25 master 3052 Review exposure: service is commonly sensitive or abused if Internet-facing. tcp ::1 25 master 3052 Review exposure: service is commonly sensitive or abused if Internet-facing. tcp ::1 631 cupsd 100915 tcp ::1 6379 redis-server 62259 140 Review exposure: service is commonly sensitive or abused if Internet-facing. tcp 0.0.0.0 80 apache2 102763 Web service: verify TLS, headers, exposure and patching. tcp :: 22 sshd 2223 SSH: expected on many servers, but should be restricted and hardened. tcp 0.0.0.0 443 apache2 102763 Web service: verify TLS, headers, exposure and patching. tcp 0.0.0.0 3128 squid 9305
accountsservice 23.13.9-2ubuntu6 acl 2.3.2-1build1.1 adduser 3.137ubuntu1 adwaita-icon-theme 46.0-1 adwaita-icon-theme-full 41.0-1ubuntu1 alsa-base 1.0.25+dfsg-0ubuntu7 alsa-topology-conf 1.2.5.1-2 alsa-ucm-conf 1.2.10-1ubuntu5.11 alsa-utils 1.2.9-1ubuntu5 amd64-microcode 3.20250311.1ubuntu0.24.04.1 anacron 2.3-39ubuntu2 apache2 2.4.68-1~deb13u1+ubuntu24.04.1+deb.sury.org+1 apache2-bin 2.4.68-1~deb13u1+ubuntu24.04.1+deb.sury.org+1 apache2-data 2.4.68-1~deb13u1+ubuntu24.04.1+deb.sury.org+1 apache2-utils 2.4.68-1~deb13u1+ubuntu24.04.1+deb.sury.org+1 apg 2.2.3.dfsg.1-5build3 apparmor 4.0.1really4.0.1-0ubuntu0.24.04.7 apport 2.28.1-0ubuntu3.8 apport-core-dump-handler 2.28.1-0ubuntu3.8 apport-gtk 2.28.1-0ubuntu3.8 apport-symptoms 0.25 appstream 1.0.2-1build6 apt 2.8.3 apt-config-icons 1.0.2-1build6 apt-config-icons-hidpi 1.0.2-1build6 apt-utils 2.8.3 aptdaemon 1.1.1+bzr982-0ubuntu44 aptdaemon-data 1.1.1+bzr982-0ubuntu44 aspell 0.60.8.1-1build1 aspell-en 2020.12.07-0-1 at 3.2.5-1ubuntu1 at-spi2-common 2.52.0-1build1 at-spi2-core 2.52.0-1build1 augeas-lenses 1.14.1-1build2 avahi-daemon 0.8-13ubuntu6.2 baobab 46.0-1build1 base-files 13ubuntu10.4 base-passwd 3.6.3build1 bash 5.2.21-2ubuntu4 bash-completion 1:2.11-8 bc 1.07.1-3ubuntu4 bcache-tools 1.0.8-5build1 bind9-dnsutils 1:9.18.39-0ubuntu0.24.04.5 bind9-host 1:9.18.39-0ubuntu0.24.04.5 bind9-libs:amd64 1:9.18.39-0ubuntu0.24.04.5 binutils 2.42-4ubuntu2.10 binutils-common:amd64 2.42-4ubuntu2.10 binutils-x86-64-linux-gnu 2.42-4ubuntu2.10 bluez 5.72-0ubuntu5.5 bluez-cups 5.72-0ubuntu5.5 bluez-obexd 5.72-0ubuntu5.5 bolt 0.9.7-1 bpfcc-tools 0.29.1+ds-1ubuntu7 bpftrace 0.20.2-1ubuntu4.3 brltty 6.6-4ubuntu5 bsdextrautils 2.39.3-9ubuntu6.5 bsdutils 1:2.39.3-9ubuntu6.5 btrfs-progs 6.6.3-1.1build2 bubblewrap 0.9.0-1ubuntu0.1 build-essential 12.10ubuntu1 busybox-initramfs 1:1.36.1-6ubuntu3.1 busybox-static 1:1.36.1-6ubuntu3.1 byobu 6.11-0ubuntu1 bzip2 1.0.8-5.1build0.1 bzip2-doc 1.0.8-5.1build0.1 ca-certificates 20260601~24.04.1 certbot 2.9.0-1 clamav 1.4.4+dfsg-0ubuntu0.24.04.1 clamav-base 1.4.4+dfsg-0ubuntu0.24.04.1 clamav-daemon 1.4.4+dfsg-0ubuntu0.24.04.1 clamav-freshclam 1.4.4+dfsg-0ubuntu0.24.04.1 clamdscan 1.4.4+dfsg-0ubuntu0.24.04.1 cloud-guest-utils 0.33-1 cloud-init 26.1-0ubuntu1~24.04.1 cloud-initramfs-copymods 0.49~24.04.1 cloud-initramfs-dyn-netconf 0.49~24.04.1 colord 1.4.7-1build2 colord-data 1.4.7-1build2 command-not-found 23.04.0 composer 2.7.1-2 console-setup 1.226ubuntu1 console-setup-linux 1.226ubuntu1 coreutils 9.4-3ubuntu6.2 cpio 2.15+dfsg-1ubuntu2 cpp 4:13.2.0-7ubuntu1 cpp-11 11.5.0-1ubuntu1~24.04.1 cpp-13 13.3.0-6ubuntu2~24.04.1 cpp-13-x86-64-linux-gnu 13.3.0-6ubuntu2~24.04.1 cpp-9 9.5.0-6ubuntu2.1 cpp-x86-64-linux-gnu 4:13.2.0-7ubuntu1 cracklib-runtime 2.9.6-5.1build2 cron 3.0pl1-184ubuntu2 cron-daemon-common 3.0pl1-184ubuntu2 cryptsetup 2:2.7.0-1ubuntu4.2 cryptsetup-bin 2:2.7.0-1ubuntu4.2 cryptsetup-initramfs 2:2.7.0-1ubuntu4.2 cups 2.4.7-1.2ubuntu7.14 cups-browsed 2.0.0-0ubuntu10.3 cups-bsd 2.4.7-1.2ubuntu7.14 cups-client 2.4.7-1.2ubuntu7.14 cups-common 2.4.7-1.2ubuntu7.14 cups-core-drivers 2.4.7-1.2ubuntu7.14 cups-daemon 2.4.7-1.2ubuntu7.14 cups-filters 2.0.0-0ubuntu4.1 cups-filters-core-drivers 2.0.0-0ubuntu4.1 cups-ipp-utils 2.4.7-1.2ubuntu7.14 cups-pk-helper 0.2.6-1ubuntu8 cups-ppdc 2.4.7-1.2ubuntu7.14 cups-server-common 2.4.7-1.2ubuntu7.14 curl 8.5.0-2ubuntu10.9 dash 0.5.12-6ubuntu5 dbus 1.14.10-4ubuntu4.1 dbus-bin 1.14.10-4ubuntu4.1 dbus-daemon 1.14.10-4ubuntu4.1 dbus-session-bus-common 1.14.10-4ubuntu4.1 dbus-system-bus-common 1.14.10-4ubuntu4.1 dbus-user-session 1.14.10-4ubuntu4.1 dbus-x11 1.14.10-4ubuntu4.1 dc 1.07.1-3ubuntu4 dconf-cli 0.40.0-4ubuntu0.1 dconf-gsettings-backend:amd64 0.40.0-4ubuntu0.1 dconf-service 0.40.0-4ubuntu0.1 debconf 1.5.86ubuntu1 debconf-i18n 1.5.86ubuntu1 debianutils 5.17build1 deja-dup 45.2-1build2 desktop-file-utils 0.27-2build1 dhcpcd-base 1:10.0.6-1ubuntu3.2 dictionaries-common 1.29.7 diffutils 1:3.10-1build1 dirmngr 2.4.4-2ubuntu17.4 distro-info 1.7build1 distro-info-data 0.60ubuntu0.6 dmeventd 2:1.02.185-3ubuntu3.2 dmidecode 3.5-3ubuntu0.1 dmsetup 2:1.02.185-3ubuntu3.2 dmz-cursor-theme 0.4.5ubuntu1 dns-root-data 2024071801~ubuntu0.24.04.1 dnsmasq-base 2.90-2ubuntu0.3 docbook-xml 4.5-12 dosfstools 4.2-1.1build1 dpkg 1.22.6ubuntu6.6 dpkg-dev 1.22.6ubuntu6.6 dracut-install 060+5-1ubuntu3.3 duplicity 2.1.4-3ubuntu2 e2fsprogs 1.47.0-2.4~exp1ubuntu4.1 eatmydata 131-1ubuntu1 ed 1.20.1-1 eject 2.39.3-9ubuntu6.5 emacsen-common 3.0.5 enchant-2 2.3.3-2build2 eog 45.3-1ubuntu2 espeak-ng-data:amd64 1.51+dfsg-12build1 ethtool 1:6.7-1build1 evince 46.3.1-0ubuntu1.1 evince-common 46.3.1-0ubuntu1.1 evolution-data-server 3.52.3-0ubuntu1.2 evolution-data-server-common 3.52.3-0ubuntu1.2 fail2ban 1.0.2-3ubuntu0.1 fakeroot 1.33-1 fdisk 2.39.3-9ubuntu6.5 file 1:5.45-3build1 file-roller 44.3-0ubuntu2 finalrd 9build1 findutils 4.9.0-5build1 firefox 1:1snap1-0ubuntu5 firmware-sof-signed 2023.12.1-1ubuntu1.11 fontconfig 2.15.0-1.1ubuntu2 fontconfig-config 2.15.0-1.1ubuntu2 fonts-cantarell 0.303.1-1 fonts-dejavu-core 2.37-8 fonts-dejavu-mono 2.37-8 fonts-droid-fallback 1:6.0.1r16-1.1build1 fonts-freefont-ttf 20211204+svn4273-2 fonts-liberation 1:2.1.5-3 fonts-liberation-sans-narrow 1:1.07.6-4 fonts-noto-cjk 1:20230817+repack1-3 fonts-noto-color-emoji 2.047-0ubuntu0.24.04.1 fonts-noto-core 20201225-2 fonts-noto-mono 20201225-2 fonts-ubuntu 0.869+git20240321-0ubuntu1 fonts-ubuntu-console 0.869+git20240321-0ubuntu1 fonts-urw-base35 20200910-8 foomatic-db-compressed-ppds 20230202-1 fprintd 1.94.3-1 friendly-recovery 0.2.42 ftp 20230507-2build3 fuse 2.9.9-3 fuse3 3.14.0-5build1 fwupd 2.0.20-1ubuntu2~24.04.1 fwupd-signed 1.52+1.4-1 g++ 4:13.2.0-7ubuntu1 g++-13 13.3.0-6ubuntu2~24.04.1 g++-13-x86-64-linux-gnu 13.3.0-6ubuntu2~24.04.1 g++-x86-64-linux-gnu 4:13.2.0-7ubuntu1 gamemode 1.8.1-2build1 gamemode-daemon 1.8.1-2build1 gawk 1:5.2.1-2build3 gcc 4:13.2.0-7ubuntu1 gcc-11 11.5.0-1ubuntu1~24.04.1 gcc-11-base:amd64 11.5.0-1ubuntu1~24.04.1 gcc-13 13.3.0-6ubuntu2~24.04.1 gcc-13-base:amd64 13.3.0-6ubuntu2~24.04.1 gcc-13-x86-64-linux-gnu 13.3.0-6ubuntu2~24.04.1 gcc-14-base:amd64 14.2.0-4ubuntu2~24.04.1 gcc-9 9.5.0-6ubuntu2.1 gcc-9-base:amd64 9.5.0-6ubuntu2.1 gcc-x86-64-linux-gnu 4:13.2.0-7ubuntu1 gcr 3.41.2-1build3 gcr4 4.2.0-5 gdb 15.1-1ubuntu1~24.04.1 gdisk 1.0.10-1build1 gdm3 46.2-1ubuntu1~24.04.9 geoclue-2.0 2.7.0-3ubuntu7 geocode-glib-common 3.26.3-6build3 gettext-base 0.21-14ubuntu2 ghostscript 10.02.1~dfsg1-0ubuntu7.8 gir1.2-accountsservice-1.0:amd64 23.13.9-2ubuntu6 gir1.2-adw-1:amd64 1.5.0-1ubuntu2 gir1.2-atk-1.0:amd64 2.52.0-1build1 gir1.2-atspi-2.0:amd64 2.52.0-1build1 gir1.2-dbusmenu-glib-0.4:amd64 18.10.20180917~bzr492+repack1-3.1ubuntu5 gir1.2-dee-1.0:amd64 1.2.7+17.10.20170616-7build5 gir1.2-freedesktop:amd64 1.80.1-1 gir1.2-gck-2:amd64 4.2.0-5 gir1.2-gcr-4:amd64 4.2.0-5 gir1.2-gdesktopenums-3.0:amd64 46.1-0ubuntu1 gir1.2-gdkpixbuf-2.0:amd64 2.42.10+dfsg-3ubuntu3.3 gir1.2-gdm-1.0 46.2-1ubuntu1~24.04.9 gir1.2-geoclue-2.0:amd64 2.7.0-3ubuntu7 gir1.2-girepository-2.0:amd64 1.80.1-1 gir1.2-glib-2.0:amd64 2.80.0-6ubuntu3.8 gir1.2-gmenu-3.0:amd64 3.36.0-1.1ubuntu3 gir1.2-gnomeautoar-0.1:amd64 0.4.4-2build4 gir1.2-gnomebg-4.0:amd64 44.0-5build2 gir1.2-gnomebluetooth-3.0:amd64 46.0-1ubuntu1 gir1.2-gnomedesktop-3.0:amd64 44.0-5build2 gir1.2-gnomedesktop-4.0:amd64 44.0-5build2 gir1.2-graphene-1.0:amd64 1.10.8-3build2 gir1.2-gst-plugins-base-1.0:amd64 1.24.2-1ubuntu0.4 gir1.2-gstreamer-1.0:amd64 1.24.2-1ubuntu0.1 gir1.2-gtk-3.0:amd64 3.24.41-4ubuntu1.3 gir1.2-gtk-4.0:amd64 4.14.5+ds-0ubuntu0.10 gir1.2-gudev-1.0:amd64 1:238-5ubuntu1 gir1.2-gweather-4.0:amd64 4.4.2-1build1 gir1.2-handy-1:amd64 1.8.3-1build2 gir1.2-harfbuzz-0.0:amd64 8.3.0-2build2 gir1.2-ibus-1.0:amd64 1.5.29-2 gir1.2-javascriptcoregtk-4.1:amd64 2.52.3-0ubuntu0.24.04.1 gir1.2-javascriptcoregtk-6.0:amd64 2.52.3-0ubuntu0.24.04.1 gir1.2-mutter-14:amd64 46.2-1ubuntu0.24.04.15 gir1.2-nm-1.0:amd64 1.46.0-1ubuntu2.7 gir1.2-nma4-1.0:amd64 1.10.6-3build2 gir1.2-notify-0.7:amd64 0.8.3-1build2 gir1.2-packagekitglib-1.0 1.2.8-2ubuntu1.5 gir1.2-pango-1.0:amd64 1.52.1+ds-1build1 gir1.2-peas-1.0:amd64 1.36.0-3build4 gir1.2-polkit-1.0 124-2ubuntu1.24.04.3 gir1.2-rb-3.0:amd64 3.4.7-2ubuntu6 gir1.2-rsvg-2.0:amd64 2.58.0+dfsg-1build1 gir1.2-secret-1:amd64 0.21.4-1build3 gir1.2-snapd-2:amd64 1.64-0ubuntu5 gir1.2-soup-3.0:amd64 3.4.4-5ubuntu0.7 gir1.2-totem-1.0:amd64 43.0-2ubuntu4 gir1.2-totemplparser-1.0:amd64 3.26.6-1build5 gir1.2-udisks-2.0:amd64 2.10.1-6ubuntu1.3 gir1.2-unity-7.0:amd64 7.1.4+19.04.20190319-6build4 gir1.2-upowerglib-1.0:amd64 1.90.3-1 gir1.2-vte-2.91:amd64 0.76.0-1ubuntu0.1 gir1.2-webkit-6.0:amd64 2.52.3-0ubuntu0.24.04.1 gir1.2-webkit2-4.1:amd64 2.52.3-0ubuntu0.24.04.1 gir1.2-wnck-3.0:amd64 43.0-3build4 git 1:2.43.0-1ubuntu7.3 git-man 1:2.43.0-1ubuntu7.3 gjs 1.80.2-1build2 gkbd-capplet 3.28.1-1build3 glib-networking:amd64 2.80.0-1build1 glib-networking-common 2.80.0-1build1 glib-networking-services 2.80.0-1build1 gnome-accessibility-themes 3.28-2ubuntu5 gnome-bluetooth-3-common 46.0-1ubuntu1 gnome-bluetooth-sendto 46.0-1ubuntu1 gnome-calculator 1:46.3-0ubuntu0.1 gnome-calendar 46.1-0ubuntu2 gnome-characters 46.0-1build1 gnome-clocks 46.0-1build1 gnome-control-center 1:46.7-0ubuntu0.24.04.4 gnome-control-center-data 1:46.7-0ubuntu0.24.04.4 gnome-control-center-faces 1:46.7-0ubuntu0.24.04.4 gnome-desktop3-data 44.0-5build2 gnome-disk-utility 46.0-1ubuntu3 gnome-font-viewer 46.0-1build1 gnome-initial-setup 46.3-1ubuntu3~24.04.2 gnome-keyring 46.1-2ubuntu0.2 gnome-keyring-pkcs11:amd64 46.1-2ubuntu0.2 gnome-logs 45.0-1build1 gnome-menus 3.36.0-1.1ubuntu3 gnome-online-accounts 3.50.4-0ubuntu2 gnome-power-manager 43.0-2build2 gnome-remote-desktop 46.3-0ubuntu1.2 gnome-session 46.0-1ubuntu4 gnome-session-bin 46.0-1ubuntu4 gnome-session-canberra 0.30-10ubuntu10 gnome-session-common 46.0-1ubuntu4 gnome-settings-daemon 46.0-1ubuntu1.24.04.1 gnome-settings-daemon-common 46.0-1ubuntu1.24.04.1 gnome-shell 46.0-0ubuntu6~24.04.14 gnome-shell-common 46.0-0ubuntu6~24.04.14 gnome-shell-extension-appindicator 58-1ubuntu24.04.1 gnome-shell-extension-desktop-icons-ng 46+really47.0.9-1ubuntu5 gnome-shell-extension-ubuntu-dock 90ubuntu3 gnome-shell-extension-ubuntu-tiling-assistant 46-1ubuntu1.1 gnome-snapshot 46.2-1ubuntu2 gnome-startup-applications 46.0-1ubuntu4 gnome-system-monitor 46.0-1build1 gnome-terminal 3.52.0-1ubuntu2 gnome-terminal-data 3.52.0-1ubuntu2 gnome-text-editor 46.3-0ubuntu2 gnome-themes-extra:amd64 3.28-2ubuntu5 gnome-themes-extra-data 3.28-2ubuntu5 gnome-user-docs 46.0-1ubuntu1 gnupg 2.4.4-2ubuntu17.4 gnupg-l10n 2.4.4-2ubuntu17.4 gnupg-utils 2.4.4-2ubuntu17.4 golang-1.22-go 1.22.2-2ubuntu0.4 golang-1.22-src 1.22.2-2ubuntu0.4 golang-go:amd64 2:1.22~2build1 golang-src 2:1.22~2build1 gpg 2.4.4-2ubuntu17.4 gpg-agent 2.4.4-2ubuntu17.4 gpg-wks-client 2.4.4-2ubuntu17.4 gpgconf 2.4.4-2ubuntu17.4 gpgsm 2.4.4-2ubuntu17.4 gpgv 2.4.4-2ubuntu17.4 grep 3.11-4build1 grilo-plugins-0.3-base:amd64 0.3.16-1.1ubuntu6.1~24.04.1 groff-base 1.23.0-3build2 grub-common 2.12-1ubuntu7.3 grub-gfxpayload-lists 0.7build2 grub-pc 2.12-1ubuntu7.3 grub-pc-bin 2.12-1ubuntu7.3 grub2-common 2.12-1ubuntu7.3 gsasl-common 2.2.1-1willsync1ubuntu0.1 gsettings-desktop-schemas 46.1-0ubuntu1 gsettings-ubuntu-schemas 0.0.7+21.10.20210712-0ubuntu3 gstreamer1.0-alsa:amd64 1.24.2-1ubuntu0.4 gstreamer1.0-gl:amd64 1.24.2-1ubuntu0.4 gstreamer1.0-gtk3:amd64 1.24.2-1ubuntu1.4 gstreamer1.0-libcamera:amd64 0.2.0-3fakesync1build6 gstreamer1.0-packagekit 1.2.8-2ubuntu1.5 gstreamer1.0-pipewire:amd64 1.0.5-1ubuntu3.2 gstreamer1.0-plugins-base:amd64 1.24.2-1ubuntu0.4 gstreamer1.0-plugins-base-apps 1.24.2-1ubuntu0.4 gstreamer1.0-plugins-good:amd64 1.24.2-1ubuntu1.4 gstreamer1.0-tools 1.24.2-1ubuntu0.1 gstreamer1.0-x:amd64 1.24.2-1ubuntu0.4 gtk-update-icon-cache 3.24.41-4ubuntu1.3 gtk2-engines-murrine:amd64 0.98.2-4 gtk2-engines-pixbuf:amd64 2.24.33-4ubuntu1.1 guile-3.0-libs:amd64 3.0.9-1build2 gvfs:amd64 1.54.4-0ubuntu1~24.04.2 gvfs-backends 1.54.4-0ubuntu1~24.04.2 gvfs-common 1.54.4-0ubuntu1~24.04.2 gvfs-daemons 1.54.4-0ubuntu1~24.04.2 gvfs-fuse 1.54.4-0ubuntu1~24.04.2 gvfs-libs:amd64 1.54.4-0ubuntu1~24.04.2 gzip 1.12-1ubuntu3.1 haproxy 2.9.15-1ppa1~focal hdparm 9.65+ds-1build1 heif-gdk-pixbuf:amd64 1.17.6-1ubuntu4.4 heif-thumbnailer 1.17.6-1ubuntu4.4 hicolor-icon-theme 0.17-2 hostname 3.23+nmu2ubuntu2 hplip 3.23.12+dfsg0-0ubuntu5 hplip-data 3.23.12+dfsg0-0ubuntu5 htop 3.3.0-4build1 humanity-icon-theme 0.6.16 hunspell-en-us 1:2020.12.07-2 hwdata 0.379-1 ibus 1.5.29-2 ibus-data 1.5.29-2 ibus-gtk:amd64 1.5.29-2 ibus-gtk3:amd64 1.5.29-2 ibus-gtk4:amd64 1.5.29-2 ibus-table 1.17.4-2 ibverbs-providers:amd64 50.0-2ubuntu0.2 ieee-data 20220827.1 iio-sensor-proxy 3.5-1build2 im-config 0.57-2 inetutils-telnet 2:2.5-3ubuntu4.2 info 7.1-3build2 init 1.66ubuntu1 init-system-helpers 1.66ubuntu1 initramfs-tools 0.142ubuntu25.8 initramfs-tools-bin 0.142ubuntu25.8 initramfs-tools-core 0.142ubuntu25.8 inputattach 1:1.8.1-2build1 install-info 7.1-3build2 intel-microcode 3.20260210.0ubuntu0.24.04.1 ipp-usb 0.9.24-0ubuntu3.3 iproute2 6.1.0-1ubuntu6.3 iptables 1.8.10-3ubuntu2 iputils-ping 3:20240117-1ubuntu0.1 iputils-tracepath 3:20240117-1ubuntu0.1 iso-codes 4.16.0-1 iucode-tool 2.3.1-3build1 java-common 0.72build2 javascript-common 11+nmu1 jq 1.7.1-3ubuntu0.24.04.2 jsonlint 1.10.2-1 kbd 2.6.4-2ubuntu2 kerneloops 0.12+git20140509-6ubuntu8 keyboard-configuration 1.226ubuntu1 keyboxd 2.4.4-2ubuntu17.4 klibc-utils 2.0.13-4ubuntu0.2 kmod 31+20240202-2ubuntu7.2 kpartx 0.9.4-5ubuntu8.1 krb5-config 2.7 krb5-locales 1.20.1-6ubuntu2.6 krb5-user 1.20.1-6ubuntu2.6 landscape-common 24.02-0ubuntu5.7 language-selector-common 0.225 language-selector-gnome 0.225 laptop-detect 0.16 ldap-utils 2.6.10+dfsg-0ubuntu0.24.04.1 less 590-2ubuntu2.1 libaa1:amd64 1.4p5-51.1 libabsl20220623t64:amd64 20220623.1-3.1ubuntu3.2 libaccountsservice0:amd64 23.13.9-2ubuntu6 libacl1:amd64 2.3.2-1build1.1 libadwaita-1-0:amd64 1.5.0-1ubuntu2 libaio1t64:amd64 0.3.113-6build1.1 libalgorithm-diff-perl 1.201-1 libalgorithm-diff-xs-perl:amd64 0.04-8build3 libalgorithm-merge-perl 0.08-5 libao-common 1.2.2+20180113-1.1ubuntu4 libao4:amd64 1.2.2+20180113-1.1ubuntu4 libaom3:amd64 3.8.2-2ubuntu0.1 libapache2-mod-php 2:8.3+93ubuntu2 libapache2-mod-php8.3 8.3.6-0ubuntu0.24.04.9 libapache2-mod-wsgi-py3 5.0.0-1build2 libapparmor1:amd64 4.0.1really4.0.1-0ubuntu0.24.04.7 libappstream5:amd64 1.0.2-1build6 libapr1t64:amd64 1.7.2-3.1ubuntu0.1 libaprutil1-dbd-sqlite3:amd64 1.6.3-1.1ubuntu7 libaprutil1-ldap:amd64 1.6.3-1.1ubuntu7 libaprutil1t64:amd64 1.6.3-1.1ubuntu7 libapt-pkg6.0t64:amd64 2.8.3 libarchive13t64:amd64 3.7.2-2ubuntu0.7 libargon2-1:amd64 0~20190702+dfsg-4build1 libasan5:amd64 9.5.0-6ubuntu2.1 libasan6:amd64 11.5.0-1ubuntu1~24.04.1 libasan8:amd64 14.2.0-4ubuntu2~24.04.1 libasound2-data 1.2.11-1ubuntu0.2 libasound2t64:amd64 1.2.11-1ubuntu0.2 libaspell15:amd64 0.60.8.1-1build1 libassuan0:amd64 2.5.6-1build1 libasyncns0:amd64 0.8-6build4 libatasmart4:amd64 0.19-5build3 libatk-adaptor:amd64 2.52.0-1build1 libatk-bridge2.0-0t64:amd64 2.52.0-1build1 libatk1.0-0t64:amd64 2.52.0-1build1 libatm1t64:amd64 1:2.5.1-5.1build1 libatomic1:amd64 14.2.0-4ubuntu2~24.04.1 libatopology2t64:amd64 1.2.11-1ubuntu0.2 libatspi2.0-0t64:amd64 2.52.0-1build1 libattr1:amd64 1:2.5.2-1build1.1 libaudit-common 1:3.1.2-2.1build1.1 libaudit1:amd64 1:3.1.2-2.1build1.1 libaugeas0:amd64 1.14.1-1build2 libauthen-sasl-perl 2.1700-1 libavahi-client3:amd64 0.8-13ubuntu6.2 libavahi-common-data:amd64 0.8-13ubuntu6.2 libavahi-common3:amd64 0.8-13ubuntu6.2 libavahi-core7:amd64 0.8-13ubuntu6.2 libavahi-glib1:amd64 0.8-13ubuntu6.2 libavahi-ui-gtk3-0:amd64 0.8-13ubuntu6.2 libavc1394-0:amd64 0.5.4-5build3 libayatana-appindicator3-1 0.5.93-1build3 libayatana-ido3-0.4-0:amd64 0.10.1-1build2 libayatana-indicator3-7:amd64 0.9.4-1build1 libbabeltrace1:amd64 1.5.11-3build3 libbasicobjects0t64:amd64 0.6.2-2.1build1 libbinutils:amd64 2.42-4ubuntu2.10 libblkid1:amd64 2.39.3-9ubuntu6.5 libblockdev-crypto3:amd64 3.1.1-1ubuntu0.1 libblockdev-fs3:amd64 3.1.1-1ubuntu0.1 libblockdev-loop3:amd64 3.1.1-1ubuntu0.1 libblockdev-mdraid3:amd64 3.1.1-1ubuntu0.1 libblockdev-nvme3:amd64 3.1.1-1ubuntu0.1 libblockdev-part3:amd64 3.1.1-1ubuntu0.1 libblockdev-swap3:amd64 3.1.1-1ubuntu0.1 libblockdev-utils3:amd64 3.1.1-1ubuntu0.1 libblockdev3:amd64 3.1.1-1ubuntu0.1 libbluetooth3:amd64 5.72-0ubuntu5.5 libbpf1:amd64 1:1.3.0-2build2 libbpfcc:amd64 0.29.1+ds-1ubuntu7 libbrlapi0.8:amd64 6.6-4ubuntu5 libbrotli1:amd64 1.1.0-2build2 libbsd0:amd64 0.12.1-1build1.1
/usr/bin/newgrp /usr/bin/fusermount3 /usr/bin/gpasswd /usr/bin/umount /usr/bin/pkexec /usr/bin/chsh /usr/bin/ksu.mit /usr/bin/su /usr/bin/mount /usr/bin/sudo /usr/bin/chfn /usr/bin/passwd /usr/sbin/pppd