CRI-O Installed (Linux)

Binary data cri-odetect.nbin...

Oracle Linux 7 : xorg-x11-server (ELSA-2025-2879)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-2879 advisory. - Fixed CVE-2025-26594 CVE-2025-26595 CVE-2025-26596 - CVE-2025-26597 CVE-2025-26598 CVE-2025-26599 CVE-2025-26600 Tenable has extracted the preceding...

Exploit for CVE-2025-29927

CVE-2025-29927 Next.js Middleware Bypass Scanner CVE-2025...

FreeBSD : chromium -- multiple security fixes (789bcfb6-1224-11f0-85f3-a8a1599412c6)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 789bcfb6-1224-11f0-85f3-a8a1599412c6 advisory. Chrome Releases reports: This update includes 13 security fixes: Tenable has extracted the...

Azure Linux 3.0 Security Update: pam (CVE-2024-10041)

The version of pam installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-10041 advisory. - A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger th...

Fedora 40 : matrix-synapse (2025-cef83410f7)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-cef83410f7 advisory. Backport fixes from v1.127.1 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not teste...

Metasploit Wrap-Up 04/04/2025

New RCEs Metasploit added four new modules this week, including three that leverage vulnerabilities to obtain remote code execution RCE. Among these three, two leverage deserialization, showing that the exploit primitive is still going strong. The Tomcat vulnerability in particular CVE-2025-24813...

Zabbix 5.x < 5.0.46rc1 / 6.x < 6.0.38rc1 / 7.0.x < 7.0.9rc1 / 7.2.x < 7.2.3rc1 User Enumeration (ZBX-26255)

The version of Zabbix installed on the remote host affected by a user enumeration vulnerability. Execution time for an unsuccessful login differs when using a non-existing username compared to using an existing one. Note that Nessus has not tested for this issue but has instead relied only on the...

Exploit for SQL Injection in Glpi-Project Glpi

CVE-2025-24799 SQLi Scanner A fast SQL injection vulnerabilit...

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1819 more potentially affected by CVE-2025-31720 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.492.2)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2025-31720 Source advisory: OSV:GHSA-565R-PF5Q-45V6...

Ollama Installed (Windows)

Binary data ollamawininstalled.nbin...

Sand Studio AirDroid Cast Installed (macOS)

Binary data airdroidcastmacinstalled.nbin...

Photon OS 5.0: Cpio PHSA-2024-5.0-0427

An update of the cpio package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-5.0-0427. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 5.0: Linux PHSA-2025-5.0-0491

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0491. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 5.0: Calico PHSA-2024-5.0-0428

An update of the calico package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-5.0-0428. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

FreeBSD : suricata -- Multiple vulnerabilities (1d53db32-0d60-11f0-8542-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 1d53db32-0d60-11f0-8542-b42e991fc52e advisory. Suricate team reports: Multiple vulnerabilities These CVEs have been reserved and no details...

EulerOS 2.0 SP13 : proftpd (EulerOS-SA-2025-1339)

According to the versions of the proftpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Buffer Overflow vulnerability in Proftpd commit 4017eff8 allows a remote attacker to execute arbitrary code and can cause a Denial of Service DoS ...

Azure Linux 3.0 Security Update: libxslt (CVE-2025-24855)

The version of libxslt installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-24855 advisory. - numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath...

GoodAccess Installed (Windows)

Binary data goodaccesswininstalled.nbin...

Remote Utilities Installed (Linux)

Binary data remoteutilitiesnixinstalled.nbin...