404 matches found
Slackware Linux 15.0 / current libxml2 Multiple Vulnerabilities (SSA:2026-070-02)
The version of libxml2 installed on the remote host is prior to 2.11.9 / 2.15.2. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2026-070-02 advisory. New libxml2 packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted t...
Vulnerability fixed in Microsoft Authenticator app
Microsoft has fixed a vulnerability in the Authenticator app for Android and iOS. A malicious party could exploit the vulnerability to gain access to sensitive data. Successful abuse requires the malicious party to trick the victim into installing a rogue app. This app can then be misused to...
Vulnerabilities fixed in Microsoft SQL Server
Microsoft has fixed vulnerabilities in SQL Server. A malicious party could exploit the vulnerabilities to grant themselves elevated privileges and potentially execute SQL Statements with Sysadmin privileges. For successful abuse, the malicious party must have prior authorizations as a user. Of th...
CVE-2026-20003
creationtimestamp| type| source ---|---|--- 2026-03-05 11:03:43+00:00| seen| https://www.cert.at/de/warnungen/2026/3/kritische-sicherheitslucken-in-cisco-secure-firewall-produkten-updates-verfugbar 2026-03-05 14:15:08+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mgcyc5zbe22b...
CVE-2026-20106
creationtimestamp| type| source ---|---|--- 2026-03-05 11:03:43+00:00| seen| https://www.cert.at/de/warnungen/2026/3/kritische-sicherheitslucken-in-cisco-secure-firewall-produkten-updates-verfugbar 2026-03-05 14:15:09+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mgcyc5zbe22b...
CVE-2026-20001
creationtimestamp| type| source ---|---|--- 2026-03-05 11:03:43+00:00| seen| https://www.cert.at/de/warnungen/2026/3/kritische-sicherheitslucken-in-cisco-secure-firewall-produkten-updates-verfugbar 2026-03-05 14:15:07+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mgcyc5zbe22b...
CVE-2026-20013
creationtimestamp| type| source ---|---|--- 2026-03-05 11:03:43+00:00| seen| https://www.cert.at/de/warnungen/2026/3/kritische-sicherheitslucken-in-cisco-secure-firewall-produkten-updates-verfugbar 2026-03-05 14:15:08+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mgcyc5zbe22b...
CVE-2026-20015
creationtimestamp| type| source ---|---|--- 2026-03-05 11:03:43+00:00| seen| https://www.cert.at/de/warnungen/2026/3/kritische-sicherheitslucken-in-cisco-secure-firewall-produkten-updates-verfugbar 2026-03-05 14:15:08+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mgcyc5zbe22b...
Cisco Secure Firewall Threat Defense Software Snort Deep Inspection Bypass Vulnerability
A vulnerability in the Snort 2 and Snort 3 deep packet inspection of Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass configured Snort rules and allow traffic onto the network that should have been dropped. This vulnerability is due to a...
Cisco Secure Firewall Management Center Software Remote Code Execution Vulnerability
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root on an affected device. This vulnerability is due to insecure deserialization of a user-supplied Java...
Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software OSPF Protocol Vulnerabilities
Multiple vulnerabilities in the OSPF feature of Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow an adjacent attacker to cause the device to reload unexpectedly, resulting in a denial of service DoS condition. For mor...
TencentOS Server 4: glibc (TSSA-2026:0122)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0122 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
ZeroDay vulnerabilities fixed in Ivanti Endpoint Manager Mobile
Ivanti has fixed two vulnerabilities in Endpoint Manager Mobile EPMM, ok known as MobileIron. The vulnerabilities allow an unauthenticated malicious person to execute arbitrary code on the vulnerable system. Of the vulnerability marked CVE-2026-1281, Ivanti reports that it has been actively...
Vulnerability fixed in Microsoft Exchange
Microsoft has fixed a vulnerability in Exchange server. A malicious person could, without prior authentication, impersonate another user and thus gain access to sensitive data in the victim's context. Microsoft has made updates available that fix the described vulnerability. We recommend that you...
Intel® Ethernet Adapters 800 Series Advisory
Summary: Potential security vulnerabilities in the firmware for Intel® Ethernet Adapters 800 Series Controllers and associated adapters may allow denial of service. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2025-32003...
TencentOS Server 4: glibc (TSSA-2026:0037)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0037 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
Alibaba Cloud Linux 3 : 0017: transfig (ALINUX3-SA-2026:0017)
The remote Alibaba Cloud Linux 3 host has a package installed that is affected by a vulnerability as referenced in the ALINUX3-SA-2026:0017 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-46397: A flaw was found in xfig. This...
Cisco Identity Services Engine Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE and Cisco ISE Passive Identity Connector ISE-PIC could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability is due to...
Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against users of the interface of an affected system. This...
TencentOS Server 3: luksmeta (TSSA-2025:0989)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0989 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...