Fedora 42 : musescore (2026-2e5626418f)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-2e5626418f advisory. Rebuilt with patched drwav to fix CVE-2026-29022. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

Fedora 43 : musescore (2026-c571483404)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-c571483404 advisory. Rebuilt with updated drwav to fix CVE-2026-29022. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

Fedora: Security Advisory (FEDORA-2026-2e5626418f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2026-c571483404)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 44 : musescore (2026-390ce5262d)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-390ce5262d advisory. Rebuilt with updated drwav to fix CVE-2026-29022. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

Fedora: Security Advisory (FEDORA-2026-2350c6fd8c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 42 : easyrpg-player (2026-8ad39e4a3f)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-8ad39e4a3f advisory. Rebuilt with updated drwav to fix CVE-2026-29022 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

Fedora 43 : easyrpg-player (2026-63c5e7d076)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-63c5e7d076 advisory. Rebuilt with updated drwav to fix CVE-2026-29022 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

Fedora: Security Advisory (FEDORA-2026-8ad39e4a3f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2026-d1d665c9d5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 44 : easyrpg-player (2026-f96e9bd006)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-f96e9bd006 advisory. Rebuilt with updated drwav to fix CVE-2026-29022 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

Linux Distros Unpatched Vulnerability : CVE-2026-29022

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drlibs drwav.h version 0.14.4 and earlier fixed in commit 8a7258c contain a heap buffer overflow vulnerability in the drwavreadsmpltometadataobj function of...

CVE-2026-29022

A flaw was found in drlibs. A remote attacker can exploit this heap buffer overflow vulnerability by providing a specially crafted WAV file. This occurs due to a mismatch in sampleLoopCount validation, allowing memory corruption and potentially leading to arbitrary code execution or denial of...

CVE-2025-29022

creationtimestamp| type| source ---|---|--- 2025-12-11 04:29:45+00:00| seen| https://gist.github.com/gugugu1364/76a5b46953118e1fb8f88f767b0e0dbe...

CVE-2021-29022

In InvoicePlane 1.5.11, the upload feature discloses the full path of the file upload directory...

Debian: Security Advisory (DLA-4136-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-29022 Session Hijacking via XSS attack in header and session grid in Xibo CMS

Xibo is an Open Source Digital Signage platform with a web content management system and Windows display player software. In affected versions some request headers are not correctly sanitised when stored in the session and display tables. These headers can be used to inject a malicious script int...

Rockwell ArmorStart Improper Input Validation (CVE-2023-29022)

A cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially cause...

CVE-2023-29022

creationtimestamp| type| source ---|---|--- 2023-05-11 22:20:38+00:00| seen| https://t.me/cibsecurity/63913...

CVE-2023-29022 Rockwell Automation ArmorStart ST Vulnerable to Cross-Site Scripting Attack

A cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially cause...