AWS SDK for .NET V4 adopted defense in depth enhancement for region parameter value

This notification is related to the use of specific values for the region input field when calling AWS services. An actor with access to the environment in which the SDK is used could set the region input field to an invalid value. A defense-in-depth enhancement has been implemented in the AWS SD...

Description of the security update for SharePoint Server 2019 Language Pack: December 9, 2025 (KB5002802)

Description of the security update for SharePoint Server 2019 Language Pack: December 9, 2025 KB5002802 Summary Important: If you're running 2013-type workflows, you mustinstall the August 2025 update for SharePoint Workflow Manager to your farm before you install this cumulative update.​​​​​​​ I...

Photon OS 5.0: Linux PHSA-2025-5.0-0705

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0705. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2025-58478

Out-of-bounds write in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory...

CVE-2025-58477

Out-of-bounds write in parsing IFD tag in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory...

CVE-2025-58479

Out-of-bounds read in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory...

CVE-2025-58476

Out-of-bounds read vulnerability in bootloader prior to SMR Dec-2025 Release 1 allows physical attackers to access out-of-bounds memory...

Photon OS 5.0: Libpng PHSA-2025-5.0-0694

An update of the libpng package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0694. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 5.0: Linux PHSA-2025-5.0-0664

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0664. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

EUVD-2025-199551

A Looker user with a Developer role could cause Looker to execute a malicious command, due to insecure processing of Teradata driver parameters. Looker-hosted and Self-hosted were found to be vulnerable. This issue has already been mitigated for Looker-hosted instances. No user action is required...

Photon OS 4.0: Linux PHSA-2025-4.0-0907

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0907. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 5.0: Openjdk11 PHSA-2025-5.0-0676

An update of the openjdk11 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0676. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2025-21075

Out-of-bounds write in libimagecodec.quram.so prior to SMR Nov-2025 Release 1 allows remote attackers to access out-of-bounds memory...

CVE-2025-21071

Out-of-bounds write in handling opcode in fingerprint trustlet prior to SMR Nov-2025 Release 1 allows local privileged attackers to write out-of-bounds memory...

PT-2025-45072

Name of the Vulnerable Software and Affected Versions Samsung Secure Element versions prior to SMR Nov-2025 Release 1 Description An out-of-bounds write issue exists in the handling of opcodes within the fingerprint trustlet. This allows a local privileged attacker to write to memory outside of...

PT-2025-45075

Name of the Vulnerable Software and Affected Versions Qualcomm ImageCodec versions prior to SMR Nov-2025 Release 1 Description An out-of-bounds write issue exists in libimagecodec.quram.so. This allows remote attackers to access memory outside of the intended boundaries. Recommendations Update to...

SAMSUNG SMR 安全漏洞

SAMSUNG SMR is a system patch package from the South Korean company Samsung SAMSUNG. It provides patches for Samsung cell phone applications. A security vulnerability exists in versions prior to SAMSUNG SMR Nov-2025 Release 1, which originates from an out-of-bounds read and may result in access t...

Photon OS 4.0: Imagemagick PHSA-2025-4.0-0898

An update of the ImageMagick package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0898. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 4.0: Openjdk11 PHSA-2025-4.0-0896

An update of the openjdk11 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0896. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 4.0: Mysql PHSA-2025-4.0-0894

An update of the mysql package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0894. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...