FreeBSD : Mozilla -- Other issue in the Networking: DNS component (4ca48006-430a-11f1-a627-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 4ca48006-430a-11f1-a627-b42e991fc52e advisory. https://bugzilla.mozilla.org/showbug.cgi?id=2022726 reports: Other issue in the Networking: DNS...

[R2] Nessus Versions 10.11.1 and 10.9.6 Fix Multiple Vulnerabilities

R2 Nessus Versions 10.11.1 and 10.9.6 Fix Multiple Vulnerabilities Arnie Cabral Mon, 12/15/2025 - 09:48 Nessus leverages third-party software to help provide underlying functionality. Several of the third-party components expat, libxml2, libxslt were found to contain vulnerabilities, and updated...

EUVD-2019-13530

Malware in sbrugna...

GLSA-202509-03 : Django: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202509-03 Django: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Django. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly fro...

Fedora 41 : glab (2025-41a6e9b04d)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-41a6e9b04d advisory. Update to 1.67.0 ---- Update to 1.66.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has...

Dell Client BIOS Information Disclosure (WMI) (DSA-2025-299)

The Dell BIOS on the remote device is missing a security patch and is, therefore, affected by a vulnerability. Dell PowerEdge Platform versions 14G AMD BIOS v1.25.0 and prior, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access coul...

Fedora 41 : python3.6 (2025-8f560fcc9b)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-8f560fcc9b advisory. Security fix for CVE-2025-8194 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Mozilla Firefox ESR < 128.14

The version of Firefox ESR installed on the remote Windows host is prior to 128.14. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-66 advisory. - Memory safety bugs present in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1,...

Fedora 41 : mingw-gstreamer1 / mingw-gstreamer1-plugins-bad-free / etc (2025-dd97126e3a)

The remote Fedora 41 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2025-dd97126e3a advisory. Update to 1.26.3. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

Fedora 41 : apptainer (2025-5b1e8725d7)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-5b1e8725d7 advisory. Update to upstream 1.4.2, fix CVE-2025-22870 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Ness...

SUSE SLES15 Security Update : podman (SUSE-SU-2025:02807-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02807-1 advisory. - CVE-2025-6032: Fixed machine init command failing to verify TLS certificate bsc1245320 Tenable has extracted the preceding description...

Microsoft Teams for Desktop < 25122.1415.3698.6812 Remote Code Execution (August 2025)

The version of Microsoft Teams for Desktop on the remote Windows host is prior to 25122.1415.3698.6812 It is, therefore, affected by a remote code execution vulnerability: - Heap-based buffer overflow in Microsoft Teams allows an unauthorized attacker to execute code over a network. CVE-2025-5378...

Schneider Electric Software Update < 3.0.12 Privilege Escalation

The version of Schneider Electric Software Update installed on the remote host is prior to 3.0.12. It is, therefore, affected by a link following vulnerability that allows arbitrary data to be written to protected locations, potentially leading to escalation of privilege, arbitrary file corruptio...

CBL Mariner 2.0 Security Update: icu (CVE-2025-5222)

The version of icu installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-5222 advisory. - A stack buffer overflow was found in Internationl components for unicode ICU . While running the genrb binary, t...

IBM WebSphere Application Server 8.5.x < 8.5.5.29 / 9.x < 9.0.5.25 (7242172)

The version of IBM WebSphere Application Server running on the remote host is affected by a vulnerability as referenced in the 7242172 advisory. - IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security for TLS connections. CVE-2025-33142 Note that Nessus has not...

Fedora 43 : aerc (2025-edd8754757)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-edd8754757 advisory. Automatic update for aerc-0.20.1-3.fc43. Changelog Thu Jun 5 2025 Robin Jarry - 0.20.1-3 - Fix CVE-2025-49466 fedora2370376 Wed Apr 16 2025 Michael J Gruber ...

Security Updates for Microsoft SQL Server (August 2025)

The Microsoft SQL Server installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability: - An elevation of privilege vulnerability. CVE-2025-53727 Note that Nessus has not tested for this issue but has instead relied only on the application...

Fedora 41 : incus (2025-83aa12829d)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-83aa12829d advisory. New release of Incus. Release information: https://github.com/lxc/incus/releases/tag/v6.15.0 Tenable has extracted the preceding description block...

CVE-2021-20135

Nessus versions 8.15.2 and earlier were found to contain a local privilege escalation vulnerability which could allow an authenticated, local administrator to run specific executables on the Nessus Agent host. Tenable has included a fix for this issue in Nessus 10.0.0. The installation files can ...

CVE-2021-20079

Nessus versions 8.13.2 and earlier were found to contain a privilege escalation vulnerability which could allow a Nessus administrator user to upload a specially crafted file that could lead to gaining administrator privileges on the Nessus host...