Unity Linux 20.1070e Security Update: shadow (UTSA-2026-016733)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016733 advisory. shadow: TOCTOU time-of-check time-of-use race condition when copying and removing directory trees Tenable has extracted the preceding description block directly from...

AlmaLinux 9 : nginx:1.26 (ALSA-2026:4235)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:4235 advisory. nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections CVE-2026-1642 Tenable has extracted the preceding description block directly...

EUVD-2026-4235

A vulnerability exists in the Aptsys POS Platform Web Services module thru 2025-05-28, which exposes internal API testing tools to unauthenticated users. By accessing specific URLs, an attacker is presented with a directory-style index listing all available backend services and POS web services,...

Siemens SIMATIC S7-1500 Time-of-check Time-of-use (TOCTOU) Race Condition (CVE-2013-4235)

shadow: TOCTOU time-of-check time-of-use race condition when copying and removing directory trees This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...

CVE-2021-4235 affecting package podman for versions less than 5.6.1-2

CVE-2021-4235 affecting package podman for versions less than 5.6.1-2. An upgraded version of the package is available that resolves this issue...

CVE-2021-4235 affecting package buildah for versions less than 1.41.4-2

CVE-2021-4235 affecting package buildah for versions less than 1.41.4-2. An upgraded version of the package is available that resolves this issue...

Linux Distros Unpatched Vulnerability : CVE-2021-4235

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be...

RHSA-2024:4235

creationtimestamp| type| source ---|---|--- 2025-07-05 03:15:11+00:00| seen| Telegram/xz2mmH5nmIWrLJp0VXaeukJpqyU7ikcVL-1Te4VH0IBdQ0 2025-08-03 06:50:40+00:00| seen| Telegram/kR0M1VfOWtTJanh-8ZUzu0Y5NJjZYBx0dZa5c6WLbE9rw4...

TencentOS Server 3: ostree (TSSA-2023:0103)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0103 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

SUSE: Security Advisory (SUSE-SU-2024:2630-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-4235

A vulnerability classified as problematic was found in Netgear DG834Gv5 1.6.01.34. This vulnerability affects unknown code of the component Web Management Interface. The manipulation leads to cleartext storage of sensitive information. The attack can be initiated remotely. The exploit has been...

CVE-2022-4235

RushBet version 2022.23.1-b490616d allows a remote attacker to steal customer accounts via use of a malicious application. This is possible because the application exposes an activity and does not properly validate the data it receives...

CVE-2010-4235

Format string vulnerability in RealNetworks Helix Server 12.x, 13.x, and 14.x before 14.2, and Helix Mobile Server 12.x, 13.x, and 14.x before 14.2, allows remote attackers to execute arbitrary code via vectors related to the x-wap-profile HTTP header...

CVE-2022-4235

creationtimestamp| type| source ---|---|--- 2025-04-03 19:35:28+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10320...

Linux Distros Unpatched Vulnerability : CVE-2023-4235

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodedeliverreport function during the SMS decoding...

Linux Distros Unpatched Vulnerability : CVE-2013-4235

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - shadow: TOCTOU time-of-check time-of-use race condition when copying and removing directory trees CVE-2013-4235 Note that Nessus relies on the presence of the...

openSUSE Security Advisory (SUSE-SU-2024:2804-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Advisory (SUSE-SU-2024:2630-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 Security Update : shadow (SUSE-SU-2025:0292-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0292-1 advisory. - Fixed not copying of skel files bsc1228770 Tenable has extracted the preceding description block directly from the SUSE security advisory...

CVE-2021-4235 affecting package application-gateway-kubernetes-ingress 1.4.0-27

CVE-2021-4235 affecting package application-gateway-kubernetes-ingress 1.4.0-27. This CVE either no longer is or was never applicable...