111 matches found
FreeBSD : chromium -- multiple security fixes (79400d31-3166-11f0-8cb5-a8a1599412c6)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 79400d31-3166-11f0-8cb5-a8a1599412c6 advisory. Chrome Releases reports: This update includes 4 security fixes: Tenable has extracted the...
Security Updates for Microsoft Excel Products C2R (May 2025)
The Microsoft Excel Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2025-29977, CVE-2025-29979,...
Alibaba Cloud Linux 3 : 0029: webkit2gtk3 (ALINUX3-SA-2023:0029)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2023:0029 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-23529: RESERVED This candidate has been...
KB5058387: Windows 10 LTS 1507 Security Update (May 2025)
The remote Windows host is missing security update 5058387. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network. CVE-2025-29967 - Use of uninitialized resource in Windo...
Azure Linux 3.0 Security Update: kernel (CVE-2025-21920)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21920 advisory. - In the Linux kernel, the following vulnerability has been resolved: vlan: enforce underlying device type...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-58063)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-58063 advisory. - In the Linux kernel, the following vulnerability has been resolved: wifi: rtlwifi: fix memory leaks and...
CBL Mariner 2.0 Security Update: CBL-Mariner Releases / apparmor (CVE-2016-1585)
The version of CBL-Mariner Releases / apparmor installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2016-1585 advisory. - In all versions of AppArmor mount rules are accidentally widened when compiled...
Amazon Linux 2 : ecs-service-connect-agent (ALASECS-2025-052)
The version of ecs-service-connect-agent installed on the remote host is prior to v1.29.12.1-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2ECS-2025-052 advisory. Envoy is a cloud-native high-performance edge/middle/service proxy. Prior to 1.33.1, 1.32.4, 1.31.6, and...
AIX (IJ54059)
The version of AIX installed on the remote host is prior to APAR IJ54059. It is, therefore, affected by a vulnerability as referenced in the IJ54059 advisory. - xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free. CVE-2022-49043 Note that Nessus has not tested for this...
Google Chrome < 135.0.7049.114 Vulnerability
The version of Google Chrome installed on the remote Windows host is prior to 135.0.7049.114. It is, therefore, affected by a vulnerability as referenced in the 202504stable-channel-update-for-desktop22 advisory. Note that Nessus has not tested for this issue but has instead relied only on the...
Fedora 41 : dotnet9.0 (2025-2edd9dc83b)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-2edd9dc83b advisory. This is the monthly update for .NET 9 for March 2025. Release Notes: - SDK: https://github.com/dotnet/core/blob/main/release-notes/9.0/9.0.3/9.0.104.md -...
CBL Mariner 2.0 Security Update: libtiff (CVE-2023-6228)
The version of libtiff installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6228 advisory. - An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on...
EulerOS 2.0 SP11 : wget (EulerOS-SA-2025-1381)
According to the versions of the wget package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Applications that use Wget to access a remote resource using shorthand URLs and pass arbitrary user credentials in the URL are vulnerable. In these...
Juniper Junos OS Vulnerability (JSA96458)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA96458 advisory. - An Improper Input Validation vulnerability in the CVE-2025-30648 Note that Nessus has not tested for these issues but has instead relied only on the application's...
Security Updates for Microsoft Excel Products (April 2025)
The Microsoft Excel Products are missing a security update. They are, therefore, affected by multiple remote code execution vulnerabilities. An attacker can exploit these to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not tested for these issues but has...
Fedora 40 : exim (2025-3a56fe6159)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-3a56fe6159 advisory. This is an update fixing CVE 2025-30232. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...
CBL Mariner 2.0 Security Update: php (CVE-2025-1861)
The version of php installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1861 advisory. - In PHP from 8.1. before 8.1.32, from 8.2. before 8.2.28, from 8.3. before 8.3.19, from 8.4. before 8.4.5, when...
Azure Linux 3.0 Security Update: libdwarf (CVE-2024-2002)
The version of libdwarf installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-2002 advisory. - A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf May try t...
Fedora 41 : dotnet8.0 (2025-adbd75f500)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-adbd75f500 advisory. This is the monthly update for .NET for March 2025. Release Notes: - SDK https://github.com/dotnet/core/blob/main/release-notes/8.0/8.0.14/8.0.114.md -...
Azure Linux 3.0 Security Update: python3 (CVE-2024-4032)
The version of python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4032 advisory. - The ipaddress module contained incorrect information about whether certain IPv4 and IPv6 addresses were...