PT-2026-44040

Name of the Vulnerable Software and Affected Versions Raynet rvia versions prior to 12.6 Update 8 Description Command injection occurs when the software performs a Java search using the find command. An adversary can execute arbitrary Java code by providing a crafted path that matches improperly...

CVE-2025-69599

RayVentory Scan Engine through 12.6 Update 8 allows attackers to gain privileges if they control the value of the PATH environment variable. NOTE: this is disputed because ability of an attacker to control the environment is a site-specific misconfiguration...

CVE-2025-69599

RayVentory Scan Engine through 12.6 Update 8 allows attackers to gain privileges if they control the value of the PATH environment variable. NOTE: this is disputed because ability of an attacker to control the environment is a site-specific misconfiguration...

CVE-2025-69599

RayVentory Scan Engine through 12.6 Update 8 allows attackers to gain privileges if they control the value of the PATH environment variable. NOTE: this is disputed because ability of an attacker to control the environment is a site-specific misconfiguration...

CVE-2025-69599

RayVentory Scan Engine through 12.6 Update 8 allows attackers to gain privileges if they control the value of the PATH environment variable. NOTE: this is disputed because ability of an attacker to control the environment is a site-specific misconfiguration...

CVE-2026-4923

Impact: When using multiple wildcards, combined with at least one parameter, a regular expression can be generated that is vulnerable to ReDoS. This backtracking vulnerability requires the second wildcard to be somewhere other than the end of the path. Unsafe examples: /foo-bar-:baz /a-:b-c-:d...

PT-2025-45139

Name of the Vulnerable Software and Affected Versions Dell CloudLink versions prior to 8.2 Description Dell CloudLink contains a flaw in the implementation of a cryptographic primitive. A high-privileged attacker could potentially exploit this issue to cause a denial of service. Recommendations...

Fedora 41 : python-deepdiff / python-orderly-set (2025-ca5f759234)

The remote Fedora 41 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-ca5f759234 advisory. Update to 8.6.1 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

Fedora 42 : gitleaks (2025-94112c7319)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-94112c7319 advisory. Update to 8.28.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...

PT-2024-8713 · Siemens · Scalance Mum856-1 +13

Name of the Vulnerable Software and Affected Versions: RUGGEDCOM RM1224 LTE4G EU versions prior to V8.2 RUGGEDCOM RM1224 LTE4G NAM versions prior to V8.2 SCALANCE M804PB versions prior to V8.2 SCALANCE M812-1 ADSL-Router versions prior to V8.2 SCALANCE M816-1 ADSL-Router versions prior to V8.2...

PT-2024-13061 · Curl · Curl

Name of the Vulnerable Software and Affected Versions: curl versions prior to 8.4.0 Description: Multiple issues were addressed by updating to curl version 8.4.0. This issue is fixed in various macOS and iOS versions. Recommendations: For curl versions prior to 8.4.0, update to version 8.4.0 to...

PT-2023-7778 · Siemens · Opcenter Quality +4

Name of the Vulnerable Software and Affected Versions: Opcenter Execution Foundation versions prior to V2407 Opcenter Quality versions prior to V2312 SIMATIC PCS neo versions prior to V4.1 SINEC NMS versions prior to V2.0 SP1 Totally Integrated Automation Portal TIA Portal V14 Totally Integrated...

CVE-2021-39830

Adobe Framemaker versions 2019 Update 8 and earlier and 2020 Release Update 2 and earlier are affected by a memory corruption vulnerability due to insecure handling of a malicious PDF file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is...

Adobe Framemaker 资源管理错误漏洞

Adobe FrameMaker is a document processing program used to write and edit large or complex documents, including structured documents.A post-release reuse vulnerability exists in Adobe Framemaker 2019 Update 8, 2020 Release Update 2 and earlier versions. An attacker could exploit this vulnerability...

Microsoft Exchange Server 输入验证错误漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voicemail, email filtering and screening, and other features. An input validation error vulnerability exists in Microsoft Exchange Server. The...

PT-2021-11123 · Siemens · Logo! Soft Comfort

Name of the Vulnerable Software and Affected Versions: LOGO! Soft Comfort versions prior to V8.4 Description: A zip slip vulnerability could be triggered while importing a compromised project file to the affected software. This issue could ultimately lead to a system takeover by an attacker if...

KB3174038 - Cumulative update 8 for SQL Server 2014 SP1

KB3174038 - Cumulative update 8 for SQL Server 2014 SP1 This article describes cumulative update package 8 build number: 12.0.4468.0 for Microsoft SQL Server 2014 Service Pack 1 SP1. This update contains fixes that were released after the release of SQL Server 2014 SP1. Cumulative update Cumulati...

CVE-2019-14613

Improper access control in driver for IntelR VTuneTM Amplifier for Windows before update 8 may allow an authenticated user to potentially enable escalation of privilege via local access...

PT-2019-6105 · Citrix · Citrix Storefront Server

Name of the Vulnerable Software and Affected Versions: Citrix StoreFront Server versions prior to 1903 Citrix StoreFront Server 7.15 LTSR versions prior to CU4 3.12.4000 Citrix StoreFront Server 7.6 LTSR versions prior to CU8 3.0.8000 Description: The issue is related to incorrect restriction of...

DEBIAN-CVE-2019-2602

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable vulnerability allows unauthenticated attacker with network access via...