Oracle Linux 9 : .NET / 9.0 (ELSA-2026-25221)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-25221 advisory. 9.0.118-1.0.1 - Add support for Oracle Linux 9.0.118-1 - Update to .NET SDK 9.0.118 and Runtime 9.0.17 - Resolves: RHEL-181553 9.0.117-1 - Update to...

Ruby net-imap < 0.5.15 / 0.6.x < 0.6.4.1 Multiple Vulnerabilities

The version of the net-imap Ruby library installed on the remote host is prior to 0.5.15, or 0.6.x prior to 0.6.4.1. It is, therefore, affected by multiple vulnerabilities. - Several Net::IMAP commands accept a raw data argument that is sent verbatim after validation to prevent command injection...

FreeBSD : qt6-webengine -- multiple vulnerabilities (738f5590-550c-11f1-9f97-3fa0ea3edd7d)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 738f5590-550c-11f1-9f97-3fa0ea3edd7d advisory. Qt qtwebengine-chromium repo reports: Backports for 262 security bugs in Chromium: Tenable has...

Nutanix AOS : (NXSA-AOS-7.3.1.9)

The version of AOS installed on the remote host is prior to 7.3.1.9. It is, therefore, affected by a vulnerability as referenced in the NXSA-AOS-7.3.1.9 advisory. - In the Linux kernel, the following vulnerability has been resolved: crypto: algifaead - Revert to operating out-of-place This mostly...

Fedora 42 : flatpak-builder (2026-631b9d535c)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-631b9d535c advisory. This update includes a fix for CVE-2026-39977. See also: the upstream advisory Tenable has extracted the preceding description block directly from the Fedora...

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-35535)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-35535 advisory. - In Sudo through 1.9.17p2 before 3e474c2, a failure of a setuid, setgid, or setgroups call,...

Fedora 44 : dotnet10.0 (2026-956fc306c4)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-956fc306c4 advisory. This is the March 2026 release of .NET 10. Release Notes: - SDK: https://github.com/dotnet/core/blob/main/release-notes/10.0/10.0.4/10.0.104.md - Runtime:...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42069)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42069 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix possible double free in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-40997)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-40997 advisory. - In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate: fix memory leak on...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46672)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46672 advisory. - In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: cfg80211: Handle SSID...

Azure Linux 3.0 Security Update: slf4j (CVE-2012-6708)

The version of slf4j installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2012-6708 advisory. - jQuery before 1.9.0 is vulnerable to Cross-site Scripting XSS attacks. The jQuerystrInput function does not...

Azure Linux 3.0 Security Update: kernel (CVE-2025-22040)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22040 advisory. - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix session use-after-free in...

MiracleLinux 4 : rh-mariadb100-mariadb-10.0.20-1.0.1.AXS4 (AXSA:2015-463:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-463:01 advisory. MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. Security issues fixed with this release:...

MiracleLinux 7 : gstreamer-plugins-bad-free-0.10.23-22.el7 (AXSA:2017-1229:01)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2017-1229:01 advisory. GStreamer is a streaming media framework, based on graphs of elements which operate on media data. This package contains plug-ins that aren't tested...

Fedora 42 : wget2 (2026-28b0f7bd35)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-28b0f7bd35 advisory. New version 2.2.1 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

RockyLinux 9 : tar (RLSA-2026:0067)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:0067 advisory. tar: Tar path traversal CVE-2025-45582 Tenable has extracted the preceding description block directly from the RockyLinux security advisory. Note that Nessus has...

Fedora 43 : golang-github-projectdiscovery-mapcidr (2025-1ba6ab39aa)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-1ba6ab39aa advisory. Update to 1.1.97 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...

Fedora 43 : retroarch (2025-6e0627440a)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-6e0627440a advisory. Update to 1.22.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...

Fedora 43 : containernetworking-plugins (2025-294d534170)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-294d534170 advisory. Update to release v1.9.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...

Fedora 42 : python3.14 (2025-d5dffbf048)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-d5dffbf048 advisory. This is the second maintenance release of Python 3.14 Tenable has extracted the preceding description block directly from the Fedora security...