367474 matches found
Oracle Linux 9 : glibc (ELSA-2026-20597)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-20597 advisory. 2.34-270.0.1 - Forward-port Oracle patches for ol9-u8 Reviewed-by: Jose E. Marchesi Oracle history: May-20-2026 Cupertino Miranda - 2.34-266.0.1 -...
RockyLinux 8 : freeradius:3.0 (RLSA-2023:2870)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:2870 advisory. freeradius: Information leakage in EAP-PWD CVE-2022-41859 freeradius: Crash on unknown option in EAP-SIM CVE-2022-41860 freeradius: Crash on invalid...
Oracle Linux 9 : mysql (ELSA-2026-23332)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-23332 advisory. 8.0.46-1 - Rebase to 8.0.46 8.0.45-2 - Revert to soft static allocation of MariaDB and MySQL sysusers.d files Tenable has extracted the preceding...
PT-2026-53001
Summary The global policy read endpoint GET /api/latest/fleet/policies/policy id performs authorization against an empty fleet.Policy struct with nil TeamID, then fetches any policy by ID from the database without verifying the fetched policy actually belongs to the global scope. This allows a us...
PT-2026-52958
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The wbt init enable default function uses WARN ON ONCE to check for failures from wbt alloc and wbt init. However, these are expected failure paths: wbt alloc may return NULL during memo...
AlmaLinux 10 : nginx (ALSA-2026:29874)
The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:29874 advisory. nginx: ngxhttprewritemodule: code execution and denial of service CVE-2026-9256 Tenable has extracted the preceding description block directly from the AlmaLinux...
The vulnerability of the start_task() function in the drivers/parisc/led.c module of the Linux kernel allows a hacker to cause a service failure.
The vulnerability of the starttask function in the drivers/parisc/led.c module of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the `ntfs_init_from_boot()` function in the `fs/ntfs3/super.c` module of the Linux kernel allows a hacker to induce a service failure.
The vulnerability of the ntfsinitfromboot function in the fs/ntfs3/super.c module of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the `attr_load_runs_vcn()` function in the `fs/ntfs3/attrib.c` module of the NTFS file system in the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the attrloadrunsvcn function in the fs/ntfs3/attrib.c module of the NTFS file system in the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
Fedora 44 : perl-Socket (2026-91d6cb99f7)
The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-91d6cb99f7 advisory. 2.041- BUGFIXES - Fix reuse of STRLEN len variable in packipmreqsource Tenable has extracted the preceding description block directly from the Fedora securit...
Oracle Linux 9 : .NET / 10.0 (ELSA-2026-21297)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-21297 advisory. 10.0.109-1.0.1 - Add support for Oracle Linux 10.0.109-1 - Update to .NET SDK 10.0.109 and Runtime 10.0.9 - Resolves: RHEL-181558 10.0.108-1 - Update to .NET S...
Oracle Linux 9 : gnutls (ELSA-2026-20612)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-20612 advisory. - Fix CVE-2026-33846 DTLS fragment reassembly, High, heap overwrite - Fix CVE-2026-42009 DTLS fragment reassembly, High, undefined behaviour - Fix...
SUSE SLES16: tomcat / tomcat-admin-webapps / tomcat-docs-webapp / etc (SUSE-SU-2026:22195-1)
The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:22195-1 advisory. This update for tomcat fixes the following issues Update to Tomcat 9.0.118: - CVE-2026-41284: Unbounded read in WebDAV LOCK and...
SUSE SLED15 / SLES15 Security Update : python-pip (SUSE-SU-2026:2634-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2634-1 advisory. This update for python-pip fixes the following issues - CVE-2026-3219: pip doesn't reject concatenated ZIP...
SUSE SLED15 / SLES15 Security Update : graphite2 (SUSE-SU-2026:2478-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:2478-1 advisory. This update for graphite2 fixes the following issue: - CVE-2026-50593: Out-of-bounds write via Graphite actions...
Oracle Linux 9 : xorg-x11-server (ELSA-2026-19343)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-19343 advisory. - CVE fix for: CVE-2026-50256, CVE-2026-50257, CVE-2026-50258, CVE-2026-50259, CVE-2026-50260, CVE-2026-50261, CVE-2026-50262, CVE-2026-50263,...
Oracle Linux 9 : libxslt (ELSA-2026-28243)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-28243 advisory. - Fix CVE-2025-10911 RHEL-171991 - Fix upgrade path for CVE-2023-40403 RHEL-82213 - Fix CVE-2023-40403 RHEL-82213 - Fix CVE-2024-55549 RHEL-83514 Tenable has...
RockyLinux 9 : python-wheel (RLSA-2023:6712)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:6712 advisory. python-wheel: remote attackers can cause denial of service via attacker controlled input to wheel cli CVE-2022-40898 Tenable has extracted the preceding descripti...
SUSE SLED15: ImageMagick / ImageMagick-config-7-SUSE / etc (SUSE-SU-2026:2580-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2580-1 advisory. This update for ImageMagick fixes the following issues This update for ImageMagick fixes the following issues ...
Fedora 44 : liferea (2026-79d9e34e36)
The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-79d9e34e36 advisory. Update to 1.16.12 ---- Update to 1.16.11 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...