Huawei EulerOS: Security Advisory for cups (EulerOS-SA-2026-1043)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

TencentOS Server 4: avahi (TSSA-2025:0017)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0017 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

TencentOS Server 3: prometheus-jmx-exporter (TSSA-2022:0250)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0250 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Mageia: Security Advisory (MGASA-2025-0278)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

vuls

This is an open-source vulnerability scanner for Linux and FreeBSD, written in Go. It is an agentless scanner, meaning it does not require any additional software to be installed on the target systems. The scanner is designed to be easy to use and provides a simple command-line interface. The...

Updated webkit2 packages fix security vulnerabilities

Due to issues in our build system this package is very outdated, now that the issues are fixed we are publishing the current upstream version. Lot of CVEs are fixed and a lot of changes were made by upstream, see the links...

Fedora 38 : dotnet6.0 (2024-60bc18acfb)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-60bc18acfb advisory. This the January 2024 update for .NET 6. Release Notes: https://github.com/dotnet/core/blob/main/release- notes/6.0/6.0.26/6.0.26.md Tenable has extracted th...

Fedora 38 : perl-CPAN (2023-46924e402a)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-46924e402a advisory. Security fix for CVE-2023-31484 CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. CPAN 2.35 - Add...

Fedora 38 : pdns-recursor (2023-680b2e6af5)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-680b2e6af5 advisory. - Update to 4.8.4 Release notes: https://doc.powerdns.com/recursor/changelog/4.8.html Tenable has extracted the preceding description block directly from the...

Fedora 35 : drupal7-link (2022-74fe01686a)

The remote Fedora 35 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-74fe01686a advisory. - https://www.drupal.org/project/link/releases/7.x-1.11 - SA-CONTRIB-2022-034 - https://www.drupal.org/project/link/releases/7.x-1.10 -...

CVE-2022-0354

A vulnerability was reported in Lenovo System Update that could allow a local user with interactive system access the ability to execute code with elevated privileges only during the installation of a System Update package released before 2022-02-25 that displays a command prompt window...

GHSA-8P52-7CXV-6C95 Downloads Resources over HTTP in curses

Affected versions of curses insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

GHSA-MQ76-M7GV-XHFM sauce-connect downloads Resources over HTTP

Affected versions of sauce-connect insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the...

Oracle Linux 7 : wget (ELSA-2016-2587)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2016-2587 advisory. - Fix CVE-2016-4971 1345778 - Added support for non-ASCII URLs Related: CVE-2016-4971 Tenable has extracted the preceding description block directly from the...