4549 matches found
9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros
Cybersecurity researchers have disclosed details of a vulnerability in the Linux kernel that remained undetected for nine years. The vulnerability, tracked as CVE-2026-46333 CVSS score: 5.5, is a case of improper privilege management that could permit an unprivileged local user to disclose...
Linux Distros Unpatched Vulnerability : CVE-2026-47730
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - Unknown description CVE-2026-47730 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 80900 C Tenabl...
Linux Distros Unpatched Vulnerability : CVE-2026-46638
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Twig: % sandbox %% include % skips checkSecurity on cached templates incomplete fix for CVE-2024-45411 CVE-2026-46638 Note that Nessus relies on the presence of...
Linux Distros Unpatched Vulnerability : CVE-2021-47952
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - python jsonpickle 2.0.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary Python commands by deserializing malicious JSO...
Linux Distros Unpatched Vulnerability : CVE-2026-45068
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - symfony - None Ubuntu Linux - Unknown description CVE-2026-45068 Note that Nessus relies on the presence of the package as reported by the vendor...
Linux Distros Unpatched Vulnerability : CVE-2026-45067
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - symfony - None Ubuntu Linux - Unknown description CVE-2026-45067 Note that Nessus relies on the presence of the package as reported by the vendor...
Astra Linux - уязвимость в ppp
A vulnerability classified as problematic has been discovered in ppp. The affected function is dumpppp in the file pppdump/pppdump.c of the pppdump component. Manipulation of the arguments spkt.buf/rpkt.buf leads to improper validation of array indices. The real existence of this vulnerability is...
Astra Linux - уязвимость в linux-5.10, linux
A vulnerability, classified as critical, has been discovered in the Linux kernel. The issue affects the tsttimer function in the drivers/atm/idt77252.c file of the IPsec component. This vulnerability allows for manipulation leading to memory corruption after the function is freed. It is recommend...
Astra Linux - уязвимость в linux-5.10, linux
A vulnerability, classified as problematic, has been identified in the Linux kernel. This issue affects the function nilfsattachlogwriter in the file fs/nilfs2/segment.c of the BPF component. The manipulation leading to this issue results in a memory leak. The attack can be initiated remotely. It...
CVE-2026-9057 Security fix for Qlik Talend Administration Center URL access control vulnerability
A broken access control issue has been identified in the Talend Administration Center, that allows a user with “View” permission to modify the Talend Studio update URL. This issue was resolved in a patch, which is already available...
CVE-2026-45892 affecting package kernel for versions less than 6.6.139.1-1
CVE-2026-45892 affecting package kernel for versions less than 6.6.139.1-1. A patched version of the package is available...
PT-2026-42106
Name of the Vulnerable Software and Affected Versions Talend Administration Center affected versions not specified Description A broken access control issue exists that allows a user with "View" permission to modify the Talend Studio update URL. Recommendations Apply the available patch to resolv...
Linux Distros Unpatched Vulnerability : CVE-2026-42002
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Concurrency and locking defects in GSS-TSIG CVE-2026-42002 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 80900...
Linux Distros Unpatched Vulnerability : CVE-2026-5950
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An unbounded resend loop vulnerability exists in the BIND 9 resolver state machine during bad-server handling, enabling a remote unauthenticated attacker to cau...
Linux Distros Unpatched Vulnerability : CVE-2026-41054
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In src/havegecmd.c, the sockethandler function performs a credential check on the abstract UNIX socket \0/sys/entropy/haveged. However, while it detects if the...
Linux Distros Unpatched Vulnerability : CVE-2026-8970
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Privilege escalation in the Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...
Linux Distros Unpatched Vulnerability : CVE-2026-8957
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Privilege escalation in the Enterprise Policies component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird...
CVE-2026-32934 affecting package coredns for versions less than 1.11.4-16
CVE-2026-32934 affecting package coredns for versions less than 1.11.4-16. A patched version of the package is available...
CVE-2026-30656 affecting package fio for versions less than 3.37-4
CVE-2026-30656 affecting package fio for versions less than 3.37-4. A patched version of the package is available...
CVE-2026-8743
A vulnerability was found in Open5GS up to 2.7.6. This impacts the function ranuefindbyamfuengapid of the file src/amf/context.c of the component AMF/MME. Performing a manipulation results in improper authorization. It is possible to initiate the attack remotely. The exploit has been made public...