Lucene search
+L

357 matches found

amazon
amazon
added 2026/05/26 12:0 a.m.25 views

Important: rclone

Issue Overview: When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C memory and a crash. CVE-2026-33811 When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a...

7.5CVSS7.3AI score0.00813EPSS
Exploits0
nessus
nessus
added 2026/05/25 12:0 a.m.14 views

Alibaba Cloud Linux 3 : 0122: java-17-openjdk (ALINUX3-SA-2026:0122)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2026:0122 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-22007: No description is availabl...

7.5CVSS7.3AI score0.00702EPSS
Exploits0References9
nessus
nessus
added 2026/05/22 12:0 a.m.11 views

Unity Linux 20.1060e / 20.1070e Security Update: nettle (UTSA-2026-016616)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016616 advisory. A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions GOST DSA, EDDSA & ECDSA result in the Elliptic Curve...

8.1CVSS6.7AI score0.01607EPSS
Exploits0References4
nessus
nessus
added 2026/05/22 12:0 a.m.11 views

RockyLinux 9 : grub2 (RLSA-2025:20532)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:20532 advisory. grub2: grub-core/gettext: Integer overflow leads to Heap OOB Write. CVE-2024-45777 Tenable has extracted the preceding description block directly from the...

6.7CVSS6.7AI score0.00231EPSS
Exploits0References3
nessus
nessus
added 2026/05/22 12:0 a.m.9 views

Unity Linux 20.1050e / 20.1070e Security Update: ed25519-java (UTSA-2026-016772)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016772 advisory. The implementation of EdDSA in EdDSA-Java aka ed25519-java through 0.3.0 exhibits signature malleability and does not satisfy the SUF-CMA Strong Existential...

4.3CVSS5.8AI score0.00134EPSS
Exploits0References4
nessus
nessus
added 2026/05/22 12:0 a.m.8 views

Unity Linux 20.1060e / 20.1070e Security Update: datanucleus-api-jdo (UTSA-2026-016658)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016658 advisory. Apache Log4j2 2.0-beta9 through 2.15.0 excluding security releases 2.12.2, 2.12.3, and 2.3.1 JNDI features used in configuration, log messages, and parameters do not...

10CVSS7.3AI score0.99999EPSS
Exploits354References4
nessus
nessus
added 2026/05/22 12:0 a.m.8 views

RockyLinux 8 : cloud-init (RLSA-2025:11324)

The remote RockyLinux 8 host has a package installed that is affected by a vulnerability as referenced in the RLSA-2025:11324 advisory. cloud-init: Cloud init permissions flaw CVE-2024-6174 Tenable has extracted the preceding description block directly from the RockyLinux security advisory. Note...

8.8CVSS5.8AI score0.00205EPSS
Exploits0References3
nessus
nessus
added 2026/05/22 12:0 a.m.17 views

RockyLinux 8 : osbuild-composer (RLSA-2026:2124)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:2124 advisory. crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate CVE-2025-61729 Tenable has extracted the preceding descriptio...

7.5CVSS7.2AI score0.00459EPSS
Exploits2References3
nessus
nessus
added 2026/05/22 12:0 a.m.9 views

Unity Linux 20.1070e Security Update: cfitsio (UTSA-2026-016765)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016765 advisory. In the ffghtb function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An...

8.8CVSS7.7AI score0.04034EPSS
Exploits1References4
nessus
nessus
added 2026/05/21 12:0 a.m.10 views

RockyLinux 8 : libsndfile (RLSA-2026:19559)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:19559 advisory. libsndfile: integer overflow in imareaderinit CVE-2026-37555 Tenable has extracted the preceding description block directly from the RockyLinux security advisory...

8.2CVSS5.9AI score0.00504EPSS
Exploits1References3
nessus
nessus
added 2026/05/20 12:0 a.m.8 views

RHEL 9 : libtiff (RHSA-2026:19608)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:19608 advisory. The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: libtiff: Arbitrar...

7.8CVSS6.3AI score0.00553EPSS
Exploits0References4
nessus
nessus
added 2026/05/19 12:0 a.m.10 views

RockyLinux 10 : nginx (RLSA-2026:18063)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:18063 advisory. nginx: NGINX: Arbitrary Code Execution Vulnerability CVE-2026-42945 Tenable has extracted the preceding description block directly from the RockyLinux security...

9.2CVSS6.1AI score0.61469EPSS
Exploits40References3
nessus
nessus
added 2026/05/18 12:0 a.m.8 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: git (UTSA-2026-021472)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021472 advisory. Git for Windows is the Windows port of Git. Prior to 2.53.02, it is possible to obtain a user's NTLM hash by tricking them into cloning from a malicious server. Sinc...

7.4CVSS5.8AI score0.00268EPSS
Exploits1References4
nessus
nessus
added 2026/05/16 12:0 a.m.15 views

AlmaLinux 9 : ALSA-2026:A009kernel (ALSA-2026:A009)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:A009 advisory. kernel: net: skbuff: propagate shared-frag marker through frag-transfer helpers CVE-2026-46300 kernel: ptrace: require CAPSYSPTRACE when task has no mm...

7.8CVSS5.6AI score0.03663EPSS
Exploits17References3
amazon
amazon
added 2026/05/14 12:0 a.m.17 views

Important: thunderbird

Issue Overview: Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in Firefox ESR 140.10.1. CVE-2026-7321 Memory safety bugs present in Firefox ESR 115.35.0, Firefox ESR 140.10.0, Thunderbird ESR 140.10.0, Firefox 150.0.0 and...

9.6CVSS6.2AI score0.00375EPSS
Exploits0
nessus
nessus
added 2026/05/14 12:0 a.m.13 views

AlmaLinux 9 : gimp (ALSA-2026:16484)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:16484 advisory. gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image CVE-2026-4887 gimp: GIMP: Remote Code Execution via XPM File Parsing...

7.8CVSS7.7AI score0.00755EPSS
Exploits1References8
nessus
nessus
added 2026/05/11 12:0 a.m.7 views

Unity Linux 20.1070e Security Update: jetty (UTSA-2026-017459)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017459 advisory. For Eclipse Jetty versions = 9.4.40, = 10.0.2, = 11.0.2, if an exception is thrown from the SessionListenersessionDestroyed method, then the session ID is not...

3.6CVSS6.7AI score0.00963EPSS
Exploits1References4
nessus
nessus
added 2026/05/11 12:0 a.m.8 views

Unity Linux 20.1060e / 20.1070e Security Update: tomcat (UTSA-2026-017519)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017519 advisory. A vulnerability in the JNDI Realm of Apache Tomcat allows an attacker to authenticate using variations of a valid user name and/or to bypass some of the protection...

6.5CVSS6.9AI score0.09886EPSS
Exploits0References4
nessus
nessus
added 2026/05/11 12:0 a.m.10 views

Unity Linux 20.1070e Security Update: netty (UTSA-2026-017791)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017791 advisory. HttpObjectDecoder.java in Netty before 4.1.44 allows an HTTP header that lacks a colon, which might be interpreted as a separate header with an incorrect syntax, or...

9.1CVSS5.8AI score0.08914EPSS
Exploits1References4
nessus
nessus
added 2026/05/11 12:0 a.m.20 views

Unity Linux 20.1060e / 20.1070e Security Update: haproxy (UTSA-2026-017418)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017418 advisory. An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. It does not ensure that the scheme and path portions of a URI have the...

7.5CVSS5.9AI score0.02319EPSS
Exploits0References4
Rows per page
Query Builder