Amazon Linux 2 : golist, --advisory ALAS2-2026-3308 (ALAS-2026-3308)

The version of golist installed on the remote host is prior to 0.10.1-10. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3308 advisory. When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C memory and a...

Fedora 44 : mupdf (2026-0ebdbc98c5)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-0ebdbc98c5 advisory. fix CVE-2026-3308 rhbz2454361 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not test...

Debian dla-4540 : libmupdf-dev - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4540 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4540-1 [email protected] https://www.debian.org/lts/security/...

[SECURITY] [DSA 6218-1] mupdf security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6218-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 18, 2026 https://www.debian.org/security/faq -...

Fedora: Security Advisory (FEDORA-2026-7a9c0c8c04)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2026-b56fe1f040)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 43 : mupdf (2026-7a9c0c8c04)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-7a9c0c8c04 advisory. fix CVE-2026-3308 rhbz2454361 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not test...

Fedora 42 : mupdf (2026-b56fe1f040)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-b56fe1f040 advisory. fix CVE-2026-3308 rhbz2454360 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not test...

Fedora 45 : mupdf (2026-563f85e690)

The remote Fedora 45 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-563f85e690 advisory. Automatic update for mupdf-1.27.1-10.fc45. Changelog Thu Apr 2 2026 Michael J Gruber - 1.27.1-10 - fix CVE-2026-3308 rhbz2454361 Tenable has extracted the...

Linux Distros Unpatched Vulnerability : CVE-2026-3308

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow vulnerability in 'pdf-image.c' in Artifex's MuPDF version 1.27.0 allows an attacker to maliciously craft a PDF that can trigger an integer...

CVE-2026-3308

creationtimestamp| type| source ---|---|--- 2026-04-02 22:22:04+00:00| published-proof-of-concept| Telegram/23ZcvUWmnJsq-zA1xOv2ctyvywAVz8hRL5r96BcfYjQKx08...

10xscale-agentflow-cli (>=0.3.0 <=0.3.1), 3m (>=0.1.0 <=0.1.3) +2306 more potentially affected by CVE-2026-3308 via pymupdf (>=1.16.14 <=1.27.2.3)

pymupdf PYPI version =1.16.14, =0.3.0, =0.1.0, =0.1.1001, =1.1.0, =0.0.4.80, =3.4.6 - aait-store-cut-part-001 =0.0.1 - aait-store-cut-part-002 =0.0.1 - aait-store-cut-part-003 =0.0.1 - aait-store-cut-part-004 =0.0.1 - aait-store-cut-part-005 =0.0.1 - aait-store-cut-part-006 =0.0.1 -...

EUVD-2008-2017

Malware in sbrugna...

CVE-2023-3308

A vulnerability classified as problematic has been found in whaleal IceFrog 1.1.8. Affected is an unknown function of the component Aviator Template Engine. The manipulation leads to deserialization. The exploit has been disclosed to the public and may be used. The identifier of this vulnerabilit...

CVE-2025-3308

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /viewrequest.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely...

CVE-2025-3308

creationtimestamp| type| source ---|---|--- 2025-04-06 05:07:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lm4og3ayca2z 2025-04-06 07:00:18+00:00| published-proof-of-concept| Telegram/9mISy3C0OVP5bsb13VXBhSC10ZW0WZPnuAMTHMsll0javI 2025-04-06 07:37:34+00:00| seen|...

CVE-2025-3308 code-projects Blood Bank Management System viewrequest.php sql injection

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /viewrequest.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely...

CVE-2025-3308 code-projects Blood Bank Management System viewrequest.php sql injection

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /viewrequest.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely...

Linux Distros Unpatched Vulnerability : CVE-2015-3308

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Double free vulnerability in lib/x509/x509ext.c in GnuTLS before 3.3.14 allows remote attackers to cause a denial of service or possibly have unspecified other...

RHEL 7 : gnutls (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gnutls: certificate algorithm consistency checking issue CVE-2015-0294 - gnutls: use-after-free flaw in C...