MINI-523C-98Q3-CCX7

Bulletin has no description...

MINI-3444-357Q-3JX2

Bulletin has no description...

MINI-85QG-87VR-HC95

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2026-47192

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kas's late signature validation may allow unnoticed repository manipulations CVE-2026-47192 Note that Nessus relies on the presence of the package as reported b...

Linux Distros Unpatched Vulnerability : CVE-2026-49214

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - php-guzzlehttp-psr7 - None Ubuntu Linux - Unknown description CVE-2026-49214 Note that Nessus relies on the presence of the package as reported b...

MINI-XW2X-794X-R7HX

Bulletin has no description...

MINI-HC4H-GH4W-FFRW

Bulletin has no description...

MINI-J33C-C77W-J95Q

Bulletin has no description...

MINI-X345-7QV6-8PJ3

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2026-43320

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Fix dsc eDP issue why Need to add function hook check before use CVE-2026-43320 Note that Nessus relies on the presence of the package as...

MINI-GQ4X-M265-2QRP

Bulletin has no description...

CVE-2026-41688

Wallos (versions ≤ 4.8.4) has an incomplete SSRF fix: the webhook URL is validated with gethostbyname(), but the original hostname is passed to curl without CURLOPT_RESOLVE pinning on 10 of 11 outbound HTTP endpoints, creating a DNS rebinding TOCTOU window. At publication, no patches are availabl...

MINI-JM99-79VH-9VG8

Bulletin has no description...

SUSE CVE-2026-3842

unknown...

Linux Distros Unpatched Vulnerability : CVE-2026-6317

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Cast in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security...

SUSE CVE-2024-21061

unknown...

CVE-2026-33879 FLIP doesn't have rate limiting or brute-force protection on login

Federated Learning and Interoperability Platform FLIP is an open-source platform for federated training and evaluation of medical imaging AI models across healthcare institutions. The FLIP login page in versions 0.1.1 and prior has no rate limiting or CAPTCHA, enabling brute-force and...

MINI-8X5R-W37Q-WJXR

Bulletin has no description...

CVE-2026-28277 LangGraph: Unsafe msgpack deserialization in LangGraph checkpoint loading

LangGraph SQLite Checkpoint is an implementation of LangGraph CheckpointSaver that uses SQLite DB both sync and async, via aiosqlite. In version 1.0.9 and prior, LangGraph checkpointers can load msgpack-encoded checkpoints that reconstruct Python objects during deserialization. If an attacker can...

UBUNTU-CVE-2026-25061

tcpflow is a TCP/IP packet demultiplexer. In versions up to and including 1.61, wifipcap parses 802.11 management frame elements and performs a length check on the wrong field when handling the TIM element. A crafted frame with a large TIM length can cause a 1-byte out-of-bounds write past...