Security Updates for Microsoft Excel Products C2R (May 2026)

The Microsoft Excel Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-40359 - Out-of-bounds read in Microsoft Office Excel allows an unauthoriz...

Security Updates for Microsoft Office Online Server (May 2026)

The Microsoft Office Online Server or Office Web Apps installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-40359 -...

Security Updates for Microsoft Excel Products (May 2026)

The Microsoft Excel Products are missing a security update. They are, therefore, affected by multiple vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-40359 - Heap-based buffer overflow in Microsoft Office Excel allows a...

RHCOS 9 : OpenShift Container Platform 4.15.45 (RHSA-2025:1130)

The remote Red Hat Enterprise Linux CoreOS 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:1130 advisory. - jinja2: Jinja has a sandbox breakout through malicious filenames CVE-2024-56201 - jinja2: Jinja has a sandbox breakout through...

RHCOS 4 : OpenShift Container Platform 4.18.35 (RHSA-2026:3875)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:3875 advisory. - golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 - golang: net/url: Memory exhaustion in query...

Security Updates for Microsoft Word Products C2R (April 2026)

The Microsoft Word Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. CVE-2026-23657, CVE-2026-33095, CVE-2026-33115 - Untrusted pointer dereference in...

Security Updates for Microsoft Word Products C2R (February 2026)

The Microsoft Word Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2026-21514 - An information disclosure vulnerability. An attacker can exploit...

Security Updates for Microsoft SharePoint Server 2019 (January 2026)

The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...

Fedora: Security Advisory (FEDORA-2025-96a708ea95)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Updates for Microsoft Office Products C2R (December 2025)

The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - Remote code execution vulnerabilities that attackers can exploit to bypass authentication and execute unauthorized arbitrary commands. CVE-2025-62554, CVE-2025-62557 Note that...

Security Updates for Microsoft SharePoint Server 2019 (December 2025)

The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...

Security Updates for Microsoft Visual Studio Products 17.14.17 (October 2025)

The Microsoft Visual Studio Products are missing security updates. They are, therefore, affected by multiple vulnerabilities, including: - Cursor is a code editor built for programming with AI. In versions below 1.3, Mermaid which is used to render diagrams allows embedding images which then get...

Security Updates for Microsoft SharePoint Server 2016 (October 2025)

The Microsoft SharePoint Server 2016 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Remote Code Execution Vulnerability. CVE-2025-59221, CVE-2025-59222, CVE-2025-59228, CVE-2025-59237 - Information Disclosure Vulnerability...

Security Updates for Microsoft SharePoint Server Subscription Edition (October 2025)

The Microsoft SharePoint Server Subscription Edition installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Remote Code Execution Vulnerability. CVE-2025-59228, CVE-2025-59237 - Information Disclosure Vulnerability CVE-2025-59235...

Security Updates for Microsoft Office Online Server (September 2025)

The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by multiple remote code execution vulnerabilities. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. %NASLMINLEVEL 80900 C...

Security Updates for Azure Connected Machine Agent < 1.56 (September 2025)

The Microsoft Azure Connected Machine Agent installation on the remote host is missing security updates. It is, therefore, affected by an elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. Note that Nessus has not tested for this issue but has instead...

Security Updates for Microsoft Office Products C2R (September 2025)

The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple remote code execution vulnerabilities that attackers can exploit to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not tested for these issues but has instea...

Security Updates for Microsoft SharePoint Server 2016 (September 2025)

The Microsoft SharePoint Server 2016 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Remote Code Execution Vulnerability. CVE-2025-54897, CVE-2025-54905 - Information Disclosure Vulnerability CVE-2025-54906 %NASLMINLEVEL 70300...

Security Updates for Microsoft Office Products C2R (August 2025)

The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple remote code execution vulnerabilities that attackers can exploit to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not tested for these issues but has instea...

Security Updates for Microsoft Visual Studio Products (January 2024)

The Microsoft Visual Studio Products are missing security updates. They are, therefore, affected by multiple vulnerabilities, including: - Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability CVE-2023-29356, CVE-2023-32025, CVE-2023-32026, CVE-2023-32027 - NET, .NET Framework,...