SUSE: Security Advisory (SUSE-SU-2026:0690-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AlmaLinux 10 : kernel (ALSA-2025:18318)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:18318 advisory. kernel: KVM: x86/hyper-v: Skip non-canonical addresses during PV TLB flush CVE-2025-38351 kernel: sunrpc: fix client side handling of tls alerts...

Security Updates for Microsoft SharePoint Server 2016 (July 2025)

The Microsoft SharePoint Server 2016 installation on the remote host is missing security updates. It is, therefore, affected by multiple security vulnerabilities: - Deserialization of untrusted data in on-premises Microsoft SharePoint Server allows an unauthorized attacker to execute code over a...

Fedora 42 : nbdkit (2025-8a2d82f65a)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-8a2d82f65a advisory. New upstream stable branch version 1.42.3 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note tha...

Golang 1.24.x < 1.24.3 Directory Traversal

The version of Golang running on the remote host is 1.24.x prior to 1.24.3. It is, therefore, affected by a directory traversal vulnerability that makes it possible to improperly access the parent directory of an os.Root. Note that Nessus has not tested for this issue but has instead relied only ...

Debian dsa-5900 : affs-modules-6.1.0-28-4kc-malta-di - security update

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5900 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5900-1 [email protected] https://www.debian.org/securit...

SUSE SLES15 Security Update : kernel (Live Patch 50 for SLE 15 SP3) (SUSE-SU-2025:0907-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2025:0907-1 advisory. This update for the Linux Kernel 5.3.18-15030059182 fixes one issue. The following security issue was fixed: - CVE-2024-50302: HID: core: zero-initiali...

Ubuntu 24.04 LTS : Linux kernel (OEM) vulnerabilities (USN-7221-1)

The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7221-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...

Fedora 39 : chromium (2024-fe9a675a37)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-fe9a675a37 advisory. update to 123.0.6312.122 High CVE-2024-3157: Out of bounds write in Compositing High CVE-2024-3516: Heap buffer overflow in ANGLE High CVE-2024-3515...

Ubuntu 20.04 LTS : Firefox vulnerabilities (USN-6509-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6509-1 advisory. Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially explo...

Fedora 39 : bind / bind-dyndb-ldap (2023-b4acb0f7c6)

The remote Fedora 39 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-b4acb0f7c6 advisory. BIND 9.18.19 Security Fixes - Previously, sending a specially crafted message over the control channel could cause the packet- parsing code to run o...

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6173-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6173-1 advisory. Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local...

Fedora 38 : firefox (2023-587dc80bb1)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-587dc80bb1 advisory. - Updated to latest upstream 118.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessu...

Mozilla Thunderbird < 115.3

The version of Thunderbird installed on the remote Windows host is prior to 115.3. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-43 advisory. - Memory safety bugs present in Firefox 117, Firefox ESR 115.2, and Thunderbird 115.2. Some of these bugs showed...

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-6192-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6192-1 advisory. Hangyu Hua discovered that the Flower classifier implementation in the Linux kernel contained an out-of- bounds write vulnerability. An attacker could us...

Fedora 35 : xen (2022-99af00f60e)

The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-99af00f60e advisory. Xenstore: Guests can crash xenstored XSA-414, CVE-2022-42309 Xenstore: Guests can create orphaned Xenstore nodes XSA-415, CVE-2022-42310 Xenstore:...

SUSE: Security Advisory (SUSE-SU-2021:2760-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-1568-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

HP-UX Security patch : PHCO_23321

The remote host is missing HP-UX Security Patch number PHCO23321 . Sec. Vulnerability in kermit1 REVISED01 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid17077; scriptversion"1.7";...

IBM Lotus Domino Directory Traversal Arbitrary File Access

It is possible to read arbitrary files on the remote server by prepending %00%00.nsf/../ in front of it. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid11344; scriptversion"1.26";...