166 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-42490
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. To create and manage guests, domc...
Linux Distros Unpatched Vulnerability : CVE-2026-43111
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HID: roccat: fix use-after-free in roccatreportevent roccatreportevent iterates over the device-readers list without holding the readerslock. This allows a...
Linux Distros Unpatched Vulnerability : CVE-2026-43257
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: cx88: Add missing unmap in sndcx88hwparams In error path, add cx88alsadmaunmap to release resource acquired by cx88alsadmamap. CVE-2026-43257 Note that...
Linux Distros Unpatched Vulnerability : CVE-2026-28375
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A testdata data-source can be used to trigger out-of-memory crashes in Grafana. CVE-2026-28375 Note that Nessus relies on the presence of the package as reporte...
Linux Distros Unpatched Vulnerability : CVE-2026-23121
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mISDN: annotate data-race around dev-work dev-work can re read locklessly in mISDNread and mISDNpoll. Add READONCE/WRITEONCE annotations. BUG: KCSAN: data-race ...
Linux Distros Unpatched Vulnerability : CVE-2023-26487
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs.lassoAppend' function accepts 3...
Linux Distros Unpatched Vulnerability : CVE-2023-54214
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling allocskb which may release the chan lock...
Linux Distros Unpatched Vulnerability : CVE-2025-12729
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Omnibox in Google Chrome on Android prior to 142.0.7444.137 allowed a remote attacker who convinced a user to engage in specific...
Linux Distros Unpatched Vulnerability : CVE-2025-12439
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in App-Bound Encryption in Google Chrome on Windows prior to 142.0.7444.59 allowed a local attacker to obtain potentially sensitive...
Linux Distros Unpatched Vulnerability : CVE-2025-40075
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcpmetrics: use dstdevnetrcu Replace three dstdev with a lockdep enabled helper. CVE-2025-40075 Note that Nessus relies on the presence of the package as report...
Fedora 43 : python3.11 (2025-604874b148)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-604874b148 advisory. Update to 3.11.14 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...
Linux Distros Unpatched Vulnerability : CVE-2022-50439
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASoC: mediatek: mt8173: Enable IRQ when pdata is ready If the device does not come straight from reset, we might receive an IRQ before we are ready to handle it...
Linux Distros Unpatched Vulnerability : CVE-2025-11208
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Media in Google Chrome prior to 141.0.7390.54 allowed a remote attacker who convinced a user to engage in specific UI gestures t...
Linux Distros Unpatched Vulnerability : CVE-2023-53410
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - USB: ULPI: fix memory leak with using debugfslookup When calling debugfslookup the result must have dput called on it, otherwise the memory will leak over time...
Linux Distros Unpatched Vulnerability : CVE-2022-50383
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: mediatek: vcodec: Can't set dst buffer to done when lat decode error Core thread will call v4l2m2mbufdone to set dst buffer done for lat architecture. If...
Linux Distros Unpatched Vulnerability : CVE-2025-27240
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Zabbix adminitrator can inject arbitrary SQL during the autoremoval of hosts by inserting malicious SQL in the 'Visible name' field. CVE-2025-27240 Note that...
Security Updates for Azure Connected Machine Agent < 1.56 (September 2025)
The Microsoft Azure Connected Machine Agent installation on the remote host is missing security updates. It is, therefore, affected by an elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. Note that Nessus has not tested for this issue but has instead...
Linux Distros Unpatched Vulnerability : CVE-2020-13628
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability allows remote attackers to inject arbitrary web script or HTML via the widgetId parameter to...
Linux Distros Unpatched Vulnerability : CVE-2022-22890
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is an Assertion 'argumentstype != SCANNERARGUMENTSPRESENT && argumentstype != SCANNERARGUMENTSPRESENTNOREG' failed at...
Linux Distros Unpatched Vulnerability : CVE-2021-43415
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission...