4509 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-41682
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pupnp is an SDK for development of UPnP device and control point applications. Prior to version 1.18.5, pupnp is vulnerable to SRRF port confusion due to port...
Linux Distros Unpatched Vulnerability : CVE-2026-31635
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rxrpc: fix oversized RESPONSE authenticator length check rxgkverifyresponse decodes authlen from the packet and is supposed to verify that it fits in the...
Linux Distros Unpatched Vulnerability : CVE-2026-31540
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/i915/gt: Check setdefaultsubmission before deferencing When the i915 driver firmware binaries are not present, the setdefaultsubmission pointer is not set...
Linux Distros Unpatched Vulnerability : CVE-2026-31608
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smb: server: avoid double-free in smbdirectfreesendmsg after smbdirectflushsendlist smbdirectflushsendlist already calls smbdirectfreesendmsg, so we should not...
Linux Distros Unpatched Vulnerability : CVE-2026-31596
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ocfs2: handle invalid dinode in ocfs2groupextend BUG kernel BUG at fs/ocfs2/resize.c:308! Oops: invalid opcode: 0000 1 SMP KASAN NOPTI RIP:...
Linux Distros Unpatched Vulnerability : CVE-2026-41163
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bubblewrap is a low-level unprivileged sandboxing tool. From version 0.11.0 to before version 0.11.2, if bubblewrap is installed in setuid mode then the user ca...
Linux Distros Unpatched Vulnerability : CVE-2026-40215
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A race condition in OpenVPN 2.6.0 through 2.6.19 and 2.7alpha1 through 2.7.1 allows remote attackers to potentially cause a server crash or leak heap memory via...
Linux Distros Unpatched Vulnerability : CVE-2026-41990
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds check but do not use attacker-controlled data. CVE-2026-41990 Note...
Linux Distros Unpatched Vulnerability : CVE-2026-33600
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An RPZ sent by a malicious authoritative server can result in a null pointer dereference, caused by a missing consistency check and leading to a denial of...
Linux Distros Unpatched Vulnerability : CVE-2026-5763
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - qemu - None Ubuntu Linux - virtio-scsi request size mismatch CVE-2026-5763 Note that Nessus relies on the presence of the package as reported by...
Linux Distros Unpatched Vulnerability : CVE-2026-33258
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - By publishing and querying a crafted zone an attacker can cause allocation of large entries in the negative and aggressive NSEC3 caches. CVE-2026-33258 Note tha...
Linux Distros Unpatched Vulnerability : CVE-2026-5761
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - qemu - None Ubuntu Linux - virtio-blk: zone report buffer out-of-memory CVE-2026-5761 Note that Nessus relies on the presence of the package as...
Don’t Wait for a Patch. Mitigate RedSun Zero-Day Risk in Microsoft Defender Today
Key Takeaways RedSun is a critical zero-day vulnerability in Microsoft Defender that allows low-privileged users to gain SYSTEM access No patch is currently available, leaving all Defender-enabled Windows systems potentially exposed Qualys VMDR detects affected assets instantly QID 92382 TruRisk...
Linux Distros Unpatched Vulnerability : CVE-2026-31442
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dmaengine: idxd: Fix possible invalid memory access after FLR In the case that the first Function Level Reset FLR concludes correctly, but in the second FLR the...
Linux Distros Unpatched Vulnerability : CVE-2026-31441
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dmaengine: idxd: Fix memory leak when a wq is reset idxdwqdisablecleanup which is called from the reset path for a workqueue, sets the wq type to NONE, which fo...
Linux Distros Unpatched Vulnerability : CVE-2026-31462
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amdgpu: prevent immediate PASID reuse case PASID resue could cause interrupt issue when process immediately runs into hw state left by previous process exit...
Linux Distros Unpatched Vulnerability : CVE-2026-35380
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A logic error in the cut utility of uutils coreutils causes the program to incorrectly interpret the literal two-byte string '' two single quotes as an empty...
Linux Distros Unpatched Vulnerability : CVE-2026-35334
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - strongswan - None Ubuntu Linux - Possible NULL-Pointer Dereference in RSA Decryption CVE-2026-35334 Note that Nessus relies on the presence of th...
CVE-2026-40343
free5GC UDR is the user data repository UDR for free5GC, an an open-source project for 5th generation 5G mobile core networks. In versions up to and including 1.4.2, a fail-open request handling flaw in the UDR service causes the /nudr-dr/v2/policy-data/subs-to-notify POST handler to continue...
Linux Distros Unpatched Vulnerability : CVE-2026-5358
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The obsolete nislocalprincipal function in the GNU C Library version 2.43 and older may overflow a buffer in the data section, which could allow an attacker to...