Oracle Linux 10 : vsftpd (ELSA-2026-0606)

The remote Oracle Linux 10 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2026-0606 advisory. - Fix CVE-2025-14242 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested fo...

CVE-2026-0606

creationtimestamp| type| source ---|---|--- 2026-01-06 00:03:31+00:00| published-proof-of-concept| Telegram/pBIBejJY22UGYFBeCviRWB0sbqSJQWVhrb4WN5JzMLlOPk 2026-01-06 01:03:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbpqzjkwae2r...

EUVD-2026-0606

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

Linux Distros Unpatched Vulnerability : CVE-2021-0606

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In drmsyncobjhandletofd of drmsyncobj.c, there is a possible use after free due to incorrect refcounting. This could lead to local escalation of privilege with...

CVE-2024-0606

An attacker could execute unauthorized script on a legitimate site through UXSS using window.open by opening a javascript URI leading to unauthorized actions within the user's loaded webpage. This vulnerability affects Focus for iOS 122...

CVE-2023-0606

Cross-site Scripting XSS - Reflected in GitHub repository ampache/ampache prior to 5.5.7...

CVE-2010-0606

Cross-site scripting XSS vulnerability in scp/ajax.php in osTicket before 1.6.0 Stable allows remote authenticated users to inject arbitrary web script or HTML via the f parameter, possibly related to an error message generated by scp/admin.php...

Photon OS 3.0: Nxtgn PHSA-2023-3.0-0606

An update of the nxtgn package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-3.0-0606. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 3.0: Linux PHSA-2023-3.0-0606

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-3.0-0606. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 3.0: Ntp PHSA-2023-3.0-0606

An update of the ntp package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-3.0-0606. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid20400...

RHEL 6 / 7 : rh-mariadb100-mariadb (RHSA-2016:1132)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:1132 advisory. MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL. MariaD...

Rocky Linux 8 : openssh (RLSA-2024:0606)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:0606 advisory. - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrit...

Oracle Linux 8 : openssh (ELSA-2024-0606)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0606 advisory. - Forbid shell metasymbols in username/hostname Resolves: CVE-2023-51385 Tenable has extracted the preceding description block directly from the Oracle...

RHEL 8 : openssh (RHSA-2024:0606)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0606 advisory. OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files...

CentOS 8 : openssh (CESA-2024:0606)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2024:0606 advisory. - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integri...

Malicious code in wlwz-2312-0606 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 818049c957c5cadbff2d6d48d542fe9c55fe27b37cadcea83f33a0f27cd429f1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-230 Malicious code in wlwz-2312-0606 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 818049c957c5cadbff2d6d48d542fe9c55fe27b37cadcea83f33a0f27cd429f1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-0606

creationtimestamp| type| source ---|---|--- 2024-01-22 20:26:24+00:00| seen| https://t.me/ctinow/171399 2024-02-16 10:11:33+00:00| seen| https://t.me/ctinow/186218...

CVE-2024-0606

An attacker could execute unauthorized script on a legitimate site through UXSS using window.open by opening a javascript URI leading to unauthorized actions within the user's loaded webpage. This vulnerability affects Focus for iOS 122...

CVE-2024-0606

CVE-2024-0606 affects Mozilla Focus for iOS before version 122. The issue is a UXSS vulnerability where an attacker can execute unauthorized scripts on a legitimate site by opening a javascript: URI via window.open(), leading to unauthorized actions within the user’s loaded webpage. Connected sou...