CVE-2025-12735 vulnerabilities

Vulnerabilities for packages: kibana...

GHSA-VXMC-5X29-H64V vulnerabilities

Vulnerabilities for packages: grafana-fips, grafana...

GHSA-69R2-5WXM-3HF6 vulnerabilities

Vulnerabilities for packages: graphicsmagick...

Photon OS 4.0: Mariadb PHSA-2025-4.0-0935

An update of the mariadb package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0935. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

TRENDnet TEW-713RE 操作系统命令注入漏洞

The TRENDnet TEW-713RE is a wireless network range extender from TRENDnet. The TRENDnet TEW-713RE suffers from an operating system command injection vulnerability due to manipulation of the SZCMD parameter in an unknown function in the /goformX/formFSrvX file. An attacker could exploit the...

Important Photon OS Security Update - PHSA-2026-5.0-0729

Updates of 'python3' packages of Photon OS have been released...

Security Advisory: Credential Theft Incidents - ownCloud

Comprehensive MFA options with administrative controls to enforce policies organization-wide, plus alerts when risky settings are used Embedded network and web application firewalls that are pre-configured and continuously updated—no customer maintenance required Zero-trust architecture with...

CVE-2025-47348

CVE-2025-47348 is a memory corruption vulnerability in Qualcomm chipsets related to identity credential processing in the trusted application. The issue is described as memory corruption during identity credential operations. CVSS v3.1 metrics indicate a HIGH base score (7.8) with local attack ve...

CVE-2025-47346 Out-of-bounds Write in HLOS

Memory corruption while processing a secure logging command in the trusted application...

CVE-2025-47333 Use After Free in HLOS

Memory corruption while handling buffer mapping operations in the cryptographic driver...

CVE-2025-7048

CVE-2025-7048 affects Arista EOS with MACsec enabled. The issue, described as a buffer overflow in the MACsec component, can cause the MACsec process to terminate and, with continued malformed packets, may disrupt dataplane traffic. Affected EOS versions include releases up to 4.34.x/4.33.x/4.32....

Google Chrome < 143.0.7499.192 Vulnerability

The version of Google Chrome installed on the remote macOS host is prior to 143.0.7499.192. It is, therefore, affected by a vulnerability as referenced in the 202601stable-channel-update-for-desktop advisory. - Insufficient policy enforcement in WebView tag in Google Chrome prior to 143.0.7499.19...

Photon OS 5.0: Linux PHSA-2026-5.0-0725

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0725. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Critical Photon OS Security Update - PHSA-2026-4.0-0938

Updates of 'python3-urllib3', 'sssd', 'gst-plugins-bad', 'capstone' packages of Photon OS have been released...

Photon OS 5.0: Net PHSA-2026-5.0-0726

An update of the net package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0726. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid28184...

EUVD-2026-0897

In the backup parameters, a user with high privilege is able to concatenate custom instructions to the backup setup. Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Centreon Infra Monitoring Backup configuration in the administration setup...

IGEL OS Detection

Binary data igelosdetect.nbin...

Wear OS Security Bulletin—January 2026Stay organized with collectionsSave and categorize content based on your preferences.

The Wear OS Security Bulletin contains details of security vulnerabilities affecting the Wear OS platform. The full Wear OS update comprises the security patch level of 2026-01-05 or later from the January 2026 Android Security Bulletin in addition to all issues in this bulletin. We encourage all...

CVE-2025-9110

An exposure of sensitive system information to an unauthorized control sphere vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to read application data. We have already fixed the vulnerability in the followin...

CVE-2025-62852

A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: Q...