PT-2026-7282

Name of the Vulnerable Software and Affected Versions IntelR OptaneTM PMem management software versions prior to CR MGMT 02.00.00.4052 IntelR OptaneTM PMem management software versions prior to CR MGMT 03.00.00.0538 Description A condition check issue exists in the IntelR OptaneTM PMem management...

PT-2026-7266

Name of the Vulnerable Software and Affected Versions Ergosis Security Systems Computer Industry and Trade Inc. ZEUS PDKS versions 1.0.5.10 through 10022026 Description The software contains an Improper Neutralization of Special Elements used in an SQL Command issue, specifically a SQL Injection...

Fedora: Security Advisory (FEDORA-2026-792b1b7bbd)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2026-7308

Name of the Vulnerable Software and Affected Versions TDX Module versions prior to tdx1.5 Description A flaw exists in some TDX Module versions before tdx1.5 within Ring 0, potentially leading to information disclosure. An authorized adversary with privileged user access and a high complexity...

MiracleLinux 9 : fence-agents-4.10.0-98.el9_7.5 (AXSA:2026-159:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-159:03 advisory. pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID CVE-2026-23490 Tenable has extracted the preceding description block...

Ubuntu: Security Advisory (USN-8019-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2026-6876

Name of the Vulnerable Software and Affected Versions yeqifu warehouse versions prior to aaf29962ba407d22d991781de28796ee7b4670e4 Description A security flaw exists due to improper access controls. The issue is located in the saveRolePermission function within the file...

PT-2026-6935

Name of the Vulnerable Software and Affected Versions itsourcecode Society Management System version 1.0 Description A flaw exists in the processing of the /admin/delete expenses.php file within itsourcecode Society Management System. Manipulation of the expenses id argument can lead to SQL...

PT-2026-6834

Name of the Vulnerable Software and Affected Versions TapinRadio version 2.12.3 Description TapinRadio version 2.12.3 has a denial of service issue in the application proxy username configuration. Local attackers can cause the application to crash by overwriting the username field with 10,000 byt...

PT-2026-6671

Name of the Vulnerable Software and Affected Versions isaacwasserman mcp-vegalite-server versions prior to 16aefed598b8cd897b78e99b907f6e2984572c61 Description A security issue exists in the eval function of the visualize data component. Manipulation of the vegalite specification argument can lea...

Fedora 42 : yarnpkg (2026-2809f801f3)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-2809f801f3 advisory. Regenerate vendor tarball. Fixes CVE-2025-13465. Tenable has extracted the preceding description block directly from the Fedora security advisory...

PT-2026-6690

Name of the Vulnerable Software and Affected Versions Events Listing Widget plugin for WordPress versions up to and including 1.3.4 Description The software is susceptible to Stored Cross-Site Scripting through the 'Event URL' parameter. Insufficient input sanitization and output escaping allow...

MiracleLinux 9 : curl-7.76.1-35.el9_7.3 (AXSA:2026-147:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-147:01 advisory. curl: libcurl: Curl out of bounds read for cookie path CVE-2025-9086 Tenable has extracted the preceding description block directly from the MiracleLinux...

Debian: Security Advisory (DSA-6120-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-4469-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2026-3062e10d87)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Low: libxml2

Issue Overview: A flaw was identified in the RelaxNG parser of libxml2 related to how external schema inclusions are handled. The parser does not enforce a limit on inclusion depth when resolving nested directives. Specially crafted or overly complex schemas can cause excessive recursion during...

PT-2026-6547

Name of the Vulnerable Software and Affected Versions Quick.Cart version 6.7 Quick.Cart affected versions not specified Description User passwords are stored in plaintext. An attacker with high privileges can view user passwords on the user editing page. The vendor was notified of this issue but...

Fedora 43 : pgadmin4 (2026-4e47f4d911)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-4e47f4d911 advisory. Regenerate vendor tarball. Fixes CVE-2025-13465. Tenable has extracted the preceding description block directly from the Fedora security advisory...

Fedora: Security Advisory (FEDORA-2026-4e47f4d911)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...