FreeBSD : Firefox -- Spoofing in the Address Bar (fa7fd6d4-7eb0-11f0-ba14-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the fa7fd6d4-7eb0-11f0-ba14-b42e991fc52e advisory. [email protected] reports: Spoofing issue in the Address Bar component. Tenable has extracted the...

Linux Distros Unpatched Vulnerability : CVE-2022-35476

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fbc0b. CVE-2022-35476 Note that Nessus relies on the presence of...

Linux Distros Unpatched Vulnerability : CVE-2025-31180

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in gnuplot. The CANVAStext function may lead to a segmentation fault and cause a system crash. CVE-2025-31180 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2016-0807

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getbuildid function in elfutils.cpp in Debuggerd in Android 6.x before 2016-02-01 allows attackers to gain privileges via a crafted application that...

VulnCheck KEV: CVE-2024-21620

An Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in J-Web of Juniper Networks Junos OS on SRX Series and EX Series allows an attacker to construct a URL that when visited by another user enables the attacker to execute commands with the target's...

Linux Distros Unpatched Vulnerability : CVE-2016-7506

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read vulnerability was observed in Spreplaceregexp function of Artifex Software, Inc. MuJS before 5000749f5afe3b956fc916e407309de840997f4a. A...

Linux Distros Unpatched Vulnerability : CVE-2016-1235

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The oarsh script in OAR before 2.5.7 allows remote authenticated users of a cluster to obtain sensitive information and possibly gain privileges via vectors...

Linux Distros Unpatched Vulnerability : CVE-2011-3374

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was found that apt-key in apt, all versions, do not correctly validate gpg keys with the master keyring, leading to a potential man-in-the-middle attack...

Fedora 41 : kubernetes1.32 (2025-8f9b0ca4c7)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-8f9b0ca4c7 advisory. - Update to release v1.32.7 - Resolves: rhbz2388412 - Resolves: CVE-2025-5187: Nodes can delete themselves by adding an OwnerReference - Upstream fixes Tenab...

Fedora 41 : glab (2025-41a6e9b04d)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-41a6e9b04d advisory. Update to 1.67.0 ---- Update to 1.66.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has...

Linux Distros Unpatched Vulnerability : CVE-2024-21112

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily...

Linux Distros Unpatched Vulnerability : CVE-2025-27405

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. A vulnerability in versions prior to 2.11.5 and 2.12.13 allows an...

TencentOS Server 3: socat (TSSA-2025:0680)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0680 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

CVE-2025-6181

creationtimestamp| type| source ---|---|--- 2025-08-20 20:28:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lwubcpo3cl2l...

North Korea Uses GitHub in Diplomat Cyber Attacks as IT Worker Scheme Hits 320+ Firms

North Korean threat actors have been attributed to a coordinated cyber espionage campaign targeting diplomatic missions in their southern counterpart between March and July 2025. The activity manifested in the form of at least 19 spear-phishing emails that impersonated trusted diplomatic contacts...

com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError

A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur...

Linux Distros Unpatched Vulnerability : CVE-2019-10212

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in, all under 2.0.20, in the Undertow DEBUG log for io.undertow.request.security. If enabled, an attacker could abuse this flaw to obtain the...

Linux Distros Unpatched Vulnerability : CVE-2025-21895

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: perf/core: Order the PMU list to fix warning about unordered pmuctxlist Syskaller triggers ...

Linux Distros Unpatched Vulnerability : CVE-2025-38463

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: tcp: Correct signedness in skb remaining space calculation Syzkaller reported a bug 1 where...

Linux Distros Unpatched Vulnerability : CVE-2014-3199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The wrap function in bindings/core/v8/custom/V8EventCustom.cpp in the V8 bindings in Blink, as used in Google Chrome before 38.0.2125.101, has an erroneous...