28 matches found
Mozilla Thunderbird < 140.7.1
The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 140.7.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2026-08 advisory. - When a user explicitly requested Thunderbird to decrypt an inline OpenPGP message that was embedded in a text...
EUVD-2020-0510
Malware in sbrugna...
CVE-2025-10776
CVE-2025-10776 affects LionCoders SalePro POS up to version 5.5.0 (and prior) with a vulnerability in the Login component that leads to cleartext transmission of sensitive information. The issue can be exploited remotely and is described as high complexity with difficult exploitability. Public ex...
Advisory ROSA-SA-2025-2919
software: libxml2 2.9.14 OS: ROSA-CHROME unaffected versions = libxml2-2.9.14-7 affected versions libxml2-2.9.14-7 CVE-ID: CVE-2025-27113 BDU-ID: 2025-03138 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the xmlPatMatch function in the pattern.c file of the libxml2 library is related to null pointe...
Fedora 41 : golang-github-nats-io-nkeys (2025-e8a6a13553)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-e8a6a13553 advisory. updates dependencies to close security loophole Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...
Fedora 41 : fluent-bit (2025-b355fdb8e5)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-b355fdb8e5 advisory. Update to 3.2.8 - Closes rhbz2137000 rhbz2340164 rhbz2300673 Tenable has extracted the preceding description block directly from the Fedora security advisory...
Fedora 40 : crun (2025-166f075581)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-166f075581 advisory. Security fix for GHSA-f42g-r5jj-qh4j Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has n...
Fedora 41 : crun (2025-46200d968d)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-46200d968d advisory. Security fix for GHSA-f42g-r5jj-qh4j Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has n...
Fedora 40 : jpegxl (2025-35a8167b88)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-35a8167b88 advisory. Update to 0.8.4 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...
Fedora 40 : java-latest-openjdk (2025-d2f32b0607)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-d2f32b0607 advisory. January CPU 2025 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...
Fedora 40 : java-1.8.0-openjdk (2025-935f8882e4)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-935f8882e4 advisory. January CPU 2025 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...
Fedora 41 : java-1.8.0-openjdk (2025-dd11f92771)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-dd11f92771 advisory. January CPU 2025 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...
Advisory ROSA-SA-2025-2628
Software: libvncserver 0.9.13 OS: ROSA-CHROME packageevrstring: libvncserver-0.9.13-2 CVE-ID: CVE-2020-29260 BDU-ID: 2024-06666 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the rfbClientCleanup function of the libvncclient component of the libvncclient cross-platform LibVNCServer library is relat...
Advisory ROSA-SA-2025-2557
Software: giflib 4.1.6 OS: rosa-server79 packageevrstring: giflib-4.1.6-9.0.1.1.res7 CVE-ID: CVE-2023-48161 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: Buffer Overflow vulnerability in GifLib allows a local attacker to obtain sensitive information via the DumpSCreen2RGB function. CVE-STATUS: The...
Fedora 41 : python-virtualenv (2024-89014f5794)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-89014f5794 advisory. - Prevent command injection by quoting template strings in activation scripts Tenable has extracted the preceding description block directly from the Fedora...
Fedora 41 : expat (2024-ccc5045ab9)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-ccc5045ab9 advisory. Rebase to version 2.6.4 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...
Fedora 37 : sfnt2woff-zopfli (2022-8d29386f00)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-8d29386f00 advisory. Fix a possible double free in woffEncode Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...
Fedora 41 : suricata (2024-b5da13e80a)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-b5da13e80a advisory. Various security, performance, accuracy, and stability issues have been fixed. Tenable has extracted the preceding description block directly from the Fedora...
Fedora 39 : grafana-pcp (2023-3bc3404fc1)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-3bc3404fc1 advisory. Move location of plugin from /usr/share/... to /usr/libexec/... because there is a binary executable Tenable has extracted the preceding description block...
Burden 1.8 - Authentication Bypass Vulnerability
Exploit for php platform in category web applications Product: Burden Vendor: Josh Fradley Vulnerable Versions: 1.8 and probably prior Tested Version: 1.8 Advisory Publication: December 18, 2013 without technical details Vendor Notification: December 18, 2013 Vendor Patch: December 18, 2013 Publi...