| Reporter | Title | Published | Views | Family All 13 |
|---|---|---|---|---|
| CVE-2026-54786 | 1 Jul 202620:12 | – | attackerkb | |
| CVE-2026-54786 | 1 Jul 202620:12 | – | alpinelinux | |
| CVE-2026-54786 | 2 Jul 202612:53 | – | circl | |
| CVE-2026-54786 | 1 Jul 202620:12 | – | cve | |
| CVE-2026-54786 Wasmtime: Leak in WASIp1 `fd_renumber` implementation | 1 Jul 202620:12 | – | cvelist | |
| CVE-2026-54786 | 1 Jul 202620:12 | – | debiancve | |
| EUVD-2026-41136 | 1 Jul 202620:12 | – | euvd | |
| CVE-2026-54786 | 1 Jul 202621:17 | – | nvd | |
| DEBIAN-CVE-2026-54786 | 1 Jul 202621:17 | – | osv | |
| MINI-CX8G-CC87-9WCV | 3 Jul 202613:33 | – | osv |
| Source | Link |
|---|---|
| security-tracker | www.security-tracker.debian.org/tracker/CVE-2026-54786 |
| ubuntu | www.ubuntu.com/security/CVE-2026-54786 |
| cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(324892);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2026/07/06");
script_cve_id("CVE-2026-54786");
script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2026-54786");
script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.
- Wasmtime is a runtime for WebAssembly. All versions prior to 24.0.10; versions 25.0.0 through those before
36.0.11; versions 37.0.0 through those before 44.0.3; and versions 45.0.0 and 45.0.1 contain a native
implementation of WASIp1 which suffers from a leak in the fd_renumber function where the file descriptor
being renumbered to is not properly closed. Wasmtime's implementation erroneously only updated the table
of descriptors for WASIp1 and didn't update the underlying table of descriptors used by the host. This
behavior means that while fd_renumber works correctly from a guest's perspective it ends up leaking
resources in the host that aren't cleaned up until the corresponding Store is destroyed. In a loop, guests
can use fd_renumber to cause hosts to exhaust both resources and file descriptors. This bug only affects
the native implementation of WASIp1, meaning that only runtimes which load core wasm modules and expose
fd_renumber are affected. Runtimes are additionally only affected if they expose the ability to acquire a
file descriptor, such as opening a file. For runtimes that deny access to files they are unaffected. This
issue has been fixed in versions 24.0.10, 36.0.11, 44.0.3, and 45.0.2. (CVE-2026-54786)
Note that Nessus relies on the presence of the package as reported by the vendor.");
script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2026-54786");
script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/CVE-2026-54786");
script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
script_set_attribute(attribute:"agent", value:"unix");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:U/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:U/RC:C");
script_set_attribute(attribute:"cvss4_vector", value:"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L");
script_set_attribute(attribute:"cvss4_threat_vector", value:"CVSS:4.0/E:U");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2026-54786");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vendor_unpatched", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2026/07/01");
script_set_attribute(attribute:"plugin_publication_date", value:"2026/07/02");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:24.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:25.10");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:26.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:13.0");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:rust-wasmtime");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:rust-wasmtime");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
script_require_ports("Host/OS/Debian Linux-13", "Host/OS/Ubuntu Linux-24.04", "Host/OS/Ubuntu Linux-25.10", "Host/OS/Ubuntu Linux-26.04");
exit(0);
}
if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);
include('linux_unpatched.inc');
var distro_constraints_array = {
"Debian Linux-13": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "13",
"pkgs": [
{"reference": "librust-cranelift-dev"}
]
}
]
},
"Ubuntu Linux-24.04": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "24.04",
"pkgs": [
{"reference": "rust-wasmtime"}
]
}
]
},
"Ubuntu Linux-25.10": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "25.10",
"pkgs": [
{"reference": "rust-wasmtime"}
]
}
]
},
"Ubuntu Linux-26.04": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "26.04",
"pkgs": [
{"reference": "rust-wasmtime"}
]
}
]
}
};
var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);
if (!empty_or_null(report))
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : report
);
exit(0);
}
else
{
audit(AUDIT_HOST_NOT, 'affected');
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation