Fedora: Security Advisory (FEDORA-2026-45e69bddb9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2026-3beebfc8ff)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 42 : azure-cli / python-azure-core (2026-3beebfc8ff)

The remote Fedora 42 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2026-3beebfc8ff advisory. Update to 1.38.0 to address CVE-2026-21226 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

Fedora 43 : azure-cli / python-azure-core (2026-45e69bddb9)

The remote Fedora 43 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2026-45e69bddb9 advisory. Update to 1.38.0 to address CVE-2026-21226 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

azure-cli-core-2.83.0-2.1 on GA media (moderate)

azure-cli-core-2.83.0-2.1 on GA media Announcement ID: openSUSE-SU-2026:10211-1 Rating: moderate Cross-References: CVE-2025-24049 CVSS scores: CVE-2025-24049 SUSE : 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2025-24049 SUSE : 8.6...

SUSE SLES12 Security Update : azure-cli-core (SUSE-SU-2026:0273-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:0273-1 advisory. - CVE-2025-24049: Fix improper neutralization of special elements used in a command which allows an unauthorized attacker to elevate...

SUSE-SU-2026:0273-1 Security update for azure-cli-core

This update for azure-cli-core fixes the following issues: - CVE-2025-24049: Fix improper neutralization of special elements used in a command which allows an unauthorized attacker to elevate privileges locally. bsc1239460...

Improper Restriction Of Command Execution

org.jenkins-ci.plugins, azure-cli is vulnerable to improper restriction of command execution. The vulnerability is due to insufficient validation of executed commands, which allows an attacker with Item/Configure permission to execute arbitrary shell commands on the Jenkins controller...

CVE-2025-64140

Jenkins Azure CLI Plugin 0.9 and earlier does not restrict which commands it executes on the Jenkins controller, allowing attackers with Item/Configure permission to execute arbitrary shell commands...

Command Injection

Overview org.jenkins-ci.plugins:azure-cli is an A Jenkins plugin to use Azure CLI for managing Azure resources. ❗ This is NOT an official Microsoft plugin 🌟 The advantage of this plugin that it let's you export the CLI result from each command to environment variables and to the next command...

GHSA-RH72-238F-G26Q Jenkins Azure CLI Plugin does not restrict the commands it executes

Jenkins Azure CLI Plugin 0.9 and earlier does not restrict which commands it executes on the Jenkins controller. This allows attackers with Item/Configure permission to execute arbitrary shell commands on the Jenkins controller. As of publication of this advisory, there is no fix...

EUVD-2025-36658

Jenkins Azure CLI Plugin does not restrict the commands it executes...

CVE-2025-64140

Jenkins Azure CLI Plugin 0.9 and earlier does not restrict which commands it executes on the Jenkins controller, allowing attackers with Item/Configure permission to execute arbitrary shell commands...

CVE-2025-64140

Jenkins Azure CLI Plugin 0.9 and earlier does not restrict which commands it executes on the Jenkins controller, allowing attackers with Item/Configure permission to execute arbitrary shell commands...

CVE-2025-64140

CVE-2025-64140 concerns Jenkins Azure CLI Plugin versions 0.9 and earlier. The root cause is that the plugin does not restrict which commands it can execute on the Jenkins controller, enabling an attacker with Item/Configure permission to run arbitrary shell commands. Reported impacts include ful...

PT-2025-44289

Name of the Vulnerable Software and Affected Versions Jenkins Azure CLI Plugin versions 0.9 and earlier Description The Jenkins Azure CLI Plugin does not restrict the commands it executes on the Jenkins controller. This allows attackers with Item/Configure permission to execute arbitrary shell...

EUVD-2023-40035

Malicious code in bioql PyPI...

EUVD-2022-7010

Malicious code in bioql PyPI...

Retail at risk: How one alert uncovered a persistent cyberthreat​​

In the latest edition of our Cyberattack Series, we dive into real-world cases targeting retail organizations. With 60% of retail companies reporting operational disruptions from cyberattacks and 43% experiencing security compromises in the past year, the risks for businesses continue to increase...

Linux Distros Unpatched Vulnerability : CVE-2022-39327

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Azure CLI is the command-line interface for Microsoft Azure. In versions previous to 2.40.0, Azure CLI contains a vulnerability for potential code injection...