Fedora 41 : tigervnc (2025-96f8a2da96)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-96f8a2da96 advisory. Tigervnc 1.15.0 update. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56602)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56602 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: do not leave a dangling...

ISLOnline ISL Light Client Installed (Linux)

Binary data islonlineisllightclientnixinstalled.nbin...

RockyLinux 9 : raptor2 (RLSA-2025:0312)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:0312 advisory. raptor: integer underflow when normalizing a URI with the turtle parser CVE-2024-57823 Tenable has extracted the preceding description block directly from the...

RockyLinux 9 : perl-App-cpanminus (RLSA-2024:10218)

The remote RockyLinux 9 host has a package installed that is affected by a vulnerability as referenced in the RLSA-2024:10218 advisory. perl-App-cpanminus: Insecure HTTP in App::cpanminus Allows Code Execution Vulnerability CVE-2024-45321 Tenable has extracted the preceding description block...

RockyLinux 9 : squid (RLSA-2024:9625)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:9625 advisory. squid: Denial of Service processing ESI response content CVE-2024-45802 Tenable has extracted the preceding description block directly from the RockyLinux securit...

RockyLinux 9 : edk2:20240524 (RLSA-2024:11219)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:11219 advisory. edk2: Integer overflows in PeCoffLoaderRelocateImage CVE-2024-38796 Tenable has extracted the preceding description block directly from the RockyLinux security...

Schneider Electric End-of-Life Devices Detection

The current plugin identifies Schneider devices that are end-of-life, i.e., still supported but have a discontinued date announced. Schneider Lifecycle Statuses: - Active: Most current offering within a product category. - End of Life: Discontinued date announced - actively execute migrations and...

Schneider Electric Active Devices Detection

The current plugin identifies Schneider devices that are still under active support. Schneider Lifecycle Statuses: - Active: Most current offering within a product category. - End of Life: Discontinued date announced - actively execute migrations and last time buys. Product generally orderable...

SolarWinds Web Help Desk < 12.8.5 Information Disclosure

The version of Solarwinds Web Help Desk installed on the remote host is prior to 12.8.5. It is, therefore, affected by a vulnerability. SolarWinds Web Help Desk was found to have a hardcoded cryptographic key that could allow the disclosure of sensitive information from the software. Note that...

RockyLinux 9 : cyrus-imapd (RLSA-2024:9195)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:9195 advisory. cyrus-imapd: unbounded memory allocation by sending many LITERALs in a single command CVE-2024-34055 Tenable has extracted the preceding description block directl...

RockyLinux 9 : python-jwcrypto (RLSA-2024:9281)

The remote RockyLinux 9 host has a package installed that is affected by a vulnerability as referenced in the RLSA-2024:9281 advisory. JWCrypto: denail of service Via specifically crafted JWE CVE-2023-6681 Tenable has extracted the preceding description block directly from the RockyLinux security...

RockyLinux 9 : postfix (RLSA-2024:9243)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:9243 advisory. postfix: SMTP smuggling vulnerability CVE-2023-51764 Tenable has extracted the preceding description block directly from the RockyLinux security advisory. Note th...

RockyLinux 9 : python3.11-urllib3 (RLSA-2024:11238)

The remote RockyLinux 9 host has a package installed that is affected by a vulnerability as referenced in the RLSA-2024:11238 advisory. urllib3: Request body not stripped after redirect from 303 status changes request method to GET CVE-2023-45803 Tenable has extracted the preceding description...

Fedora 41 : python-django4.2 (2025-da3777e8c4)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-da3777e8c4 advisory. ix for CVE-2025-26699: Potential denial-of-service vulnerability in django.utils.text.wrap Tenable has extracted the preceding description block directly fro...

Fedora 40 : python-django (2025-9c039322cf)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-9c039322cf advisory. Fix for CVE-2025-26699: Potential denial-of-service vulnerability in django.utils.text.wrap Tenable has extracted the preceding description block directly fr...

RockyLinux 9 : bzip2 (RLSA-2025:0925)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:0925 advisory. bzip2: bzip2: Data integrity error when decompressing with data integrity tests fail. CVE-2019-12900 Tenable has extracted the preceding description block directl...

Amazon Linux 2 : kernel (ALASKERNEL-5.4-2025-096)

The version of kernel installed on the remote host is prior to 5.4.290-205.405. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2025-096 advisory. Insufficient control flow management for the IntelR 82599 Ethernet Controllers and Adapters may allow an...

RockyLinux 9 : keepalived (RLSA-2025:0917)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:0917 advisory. keepalived: Integer overflow vulnerability in vrrpipsetshandler CVE-2024-41184 Tenable has extracted the preceding description block directly from the RockyLinux...

AIX : Multiple Vulnerabilities (IJ53757) (deprecated)

The vendor has closed the APAR as a program error. %NASLMINLEVEL 80900 C Tenable, Inc. Disabled on 2026/02/12. Advisory states "Closed as program error" and "Removed security issue." include'compat.inc'; if description scriptid232951; scriptversion"1.5";...