EUVD-2025-23947

Malicious code in bioql PyPI...

Security Update for Microsoft OfficePLUS (September 2025)

The version of Microsoft OfficePLUS installed on the remote Windows host is prior to 3.10.0.26585. It is, therefore, affected by an unspecified spoofing vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

CVE-2025-55077

Tyler Technologies ERP Pro 9 SaaS allows an authenticated user to escape the application and execute limited operating system commands within the remote Microsoft Windows environment with the privileges of the authenticated user. Tyler Technologies deployed hardened remote Windows environment...

CVE-2025-55077

Tyler Technologies ERP Pro 9 SaaS allows an authenticated user to escape the application and execute limited operating system commands within the remote Microsoft Windows environment with the privileges of the authenticated user. Tyler Technologies deployed hardened remote Windows environment...

CVE-2025-55077 Tyler Technologies ERP Pro 9 SaaS application escape

Tyler Technologies ERP Pro 9 SaaS allows an authenticated user to escape the application and execute limited operating system commands within the remote Microsoft Windows environment with the privileges of the authenticated user. Tyler Technologies deployed hardened remote Windows environment...

CVE-2025-55077 Tyler Technologies ERP Pro 9 SaaS application escape

Tyler Technologies ERP Pro 9 SaaS allows an authenticated user to escape the application and execute limited operating system commands within the remote Microsoft Windows environment with the privileges of the authenticated user. Tyler Technologies deployed hardened remote Windows environment...

PT-2025-32306 · Microsoft +1 · Windows +1

Name of the Vulnerable Software and Affected Versions: Tyler Technologies ERP Pro 9 SaaS affected versions not specified Description: The software allows an authenticated user to escape the application and execute limited operating system commands within the remote Microsoft Windows environment...

Mozilla Thunderbird < 140.0

The version of Thunderbird installed on the remote Windows host is prior to 140.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-54 advisory. - Memory safety bugs present in Firefox 139 and Thunderbird 139. Some of these bugs showed evidence of memory...

Dell Display Manager Multiple Vulnerabilities (DSA-2025-033)

The version of Dell Display Manager on the remote Windows host is version 2.3.2.20. It is, therefore affected by multiple vulnerabilites. - A Time-of-check Time-of-use TOCTOU Race Condition vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability,...

Security Bulletin: The remote Windows host has at least one service installed that uses an unquoted service path which affect IBM Spectrum Control

Summary Description: The remote Windows host has at least one service installed that uses an unquoted service path, which contains at least one whitespace. A local attacker can gain elevated privileges by inserting an executable file in the path of the affected service. Vulnerability Details Refe...

Mozilla Thunderbird < 128.2

The version of Thunderbird installed on the remote Windows host is prior to 128.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-43 advisory. - Memory safety bugs present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. Some of these bugs showed...

Mozilla Thunderbird < 115.14

The version of Thunderbird installed on the remote Windows host is prior to 115.14. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-38 advisory. - Unexpected marking work at the start of sweeping could have led to a use-after-free. CVE-2024-7527 - Insufficient...

Autodesk Multiple Vulnerabilities (AutoCAD) (adsk-sa-2024-0009)

The version of Autodesk AutoCAD installed on the remote Windows host is a version prior to 2024.1.4. It is, therefore, affected by multiple vulnerabilities: - A maliciously crafted STP, CATPART or MODEL file in ASMKERN228A.dll when parsed through Autodesk AutoCAD can force an Out-of-Bound Write. ...

Foxit PDF Reader < 2024.2.2 Vulnerability

According to its version, the Foxit PDF Reader application previously named Foxit Reader installed on the remote Windows host is prior to 2024.2.2. It is, therefore affected by vulnerability: - A privilege escalation vulnerability exists in the Foxit Reader 2024.2.0.25138. The vulnerability occur...

Veeam Backup and Replication with Veeam Backup Enterprise Manager Multiple Vulnerabilities (KB4581)

The version of Veeam Backup and Replication with Veeam Backup Enterprise Manager installed on the remote Windows host is prior to 12.1.2.172. It is, therefore, affected by multiple vulnerabilities: - A vulnerability in Veeam Backup Enterprise Manager that allows an unauthenticated attacker to log...

PaperCut NG < 20.1.10 / 21.x < 21.2.14 / 22.x < 22.1.5 / 23.x < 23.0.7 Multiple Vulnerabilities

The version of PaperCut NG installed on the remote Windows host is affected by multiple vulnerabilities, as follows: - This allows attackers to use a maliciously formed API request to gain access to an API authorization level with elevated privileges. This applies to a small subset of PaperCut...

Mozilla Firefox < 123.0

The version of Firefox installed on the remote Windows host is prior to 123.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-05 advisory. - Incorrect code generation could have led to unexpected numeric conversions and potential undefined behavior. Note: Thi...

Mozilla Firefox ESR < 115.7

The version of Firefox ESR installed on the remote Windows host is prior to 115.7. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-02 advisory. - Memory safety bugs present in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6. Some of these bugs showed...

Ivanti Secure Access Client < 22.6R1.1 Multiple Vulnerabilities

The Ivanti Secure Access Client installed on the remote Windows system is prior to 22.6R1.1. It is, therefore, affected by multiple vulnerabilities. - A vulnerability exists on all versions of the Ivanti Secure Access Client below 22.6R1.1, which could allow a locally authenticated attacker to...

Mozilla Firefox < 119.0

The version of Firefox installed on the remote Windows host is prior to 119.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-45 advisory. - Memory safety bugs present in Firefox 118. Some of these bugs showed evidence of memory corruption and we presume that...