Ubuntu: Security Advisory (USN-7970-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2026-21852 Claude Code Leaks Data via Malicious Environment Configuration Before Trust Confirmation

Claude Code is an agentic coding tool. Prior to version 2.0.65, vulnerability in Claude Code's project-load flow allowed malicious repositories to exfiltrate data including Anthropic API keys before users confirmed trust. An attacker-controlled repository could include a settings file that sets...

Fedora 42 : cef (2026-2a94cc43d9)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-2a94cc43d9 advisory. Update to 143.0.7499.192 rhbz2427842 High CVE-2026-0628: Insufficient policy enforcement in WebView tag Tenable has extracted the preceding description block...

Fedora: Security Advisory (FEDORA-2026-2a94cc43d9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2026-1e3425e7ea)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 43 : rust-lru (2026-cd2a3ce9e6)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-cd2a3ce9e6 advisory. Update to version 0.16.3. Includes the fix for RUSTSEC-2026-0002. Tenable has extracted the preceding description block directly from the Fedora security...

MiracleLinux 8 : net-snmp-5.8-33.el8_10 (AXSA:2026-054:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-054:01 advisory. net-snmp: buffer overflow via a specially crafted packet can cause a crash in snmptrapd CVE-2025-68615 Tenable has extracted the preceding description block...

Fedora 43 : cef (2026-77e3579a49)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-77e3579a49 advisory. Update to 143.0.7499.192 rhbz2427842 High CVE-2026-0628: Insufficient policy enforcement in WebView tag Tenable has extracted the preceding description block...

MiracleLinux 9 : webkit2gtk3-2.40.5-1.el9_3.1 (AXSA:2023-7065:18)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-7065:18 advisory. webkitgtk: Arbitrary Remote Code Execution CVE-2023-42917 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 7 : runc-1.0.0-70.rc10.el7 (AXSA:2024-7506:02)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7506:02 advisory. runc: file descriptor leak CVE-2024-21626 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

MiracleLinux 9 : libreswan-4.6-3.el9.1 (AXSA:2023-5325:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5325:02 advisory. libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan CVE-2023-30570 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : nodejs:10 (AXSA:2020-281:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-281:01 advisory. ICU: Integer overflow in UnicodeString::doAppend CVE-2020-10531 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : libvirt-10.0.0-6.6.el9_4.ML.1 (AXSA:2024-8603:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8603:05 advisory. libvirt: stack use-after-free in virNetClientIOEventLoop CVE-2024-4418 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : bind-9.16.23-11.el9.2 (AXSA:2023-6502:11)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6502:11 advisory. bind: stack exhaustion in control channel code may lead to DoS CVE-2023-3341 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : pcs-0.10.14-5.el8.2.ML.1 (AXSA:2023-5163:05)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5163:05 advisory. sinatra: Reflected File Download attack CVE-2022-45442 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 7 : firefox-102.3.0-7.0.1.el7.AXS7 (AXSA:2022-3908:26)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-3908:26 advisory. expat: a use-after-free in the doContent function in xmlparse.c CVE-2022-40674 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : dotnet3.1-3.1.113-1.0.1.el8 (AXSA:2021-1570:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1570:04 advisory. dotnet: System.Text.Encodings.Web Remote Code Execution CVE-2021-26701 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 7 : texlive-2012-45.20130427_r30134.el7 (AXSA:2020-4564:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4564:01 advisory. texlive: Buffer overflow in t1checkunusualcharstring function in writet1.c CVE-2018-17407 Tenable has extracted the preceding description block directly from...

MiracleLinux 8 : zlib-1.2.11-18.el8 (AXSA:2022-3166:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3166:01 advisory. zlib: A flaw found in zlib when compressing not decompressing certain inputs CVE-2018-25032 Tenable has extracted the preceding description block directly fr...

MiracleLinux 7 : openjpeg2-2.3.1-2.el7 (AXSA:2020-4445:02)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4445:02 advisory. openjpeg: Heap-based buffer overflow in opjt1clbldecodeprocessor CVE-2020-6851 Tenable has extracted the preceding description block directly from the...