Photon OS 4.0: Linux PHSA-2026-4.0-0937

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-0937. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Linux Distros Unpatched Vulnerability : CVE-2020-28032

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WordPress before 5.5.2 mishandles deserialization requests in wp- includes/Requests/Utility/FilteredIterator.php. CVE-2020-28032 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2025-38008

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm/pagealloc: fix race condition in unaccepted memory handling The page allocator tracks the...

Linux Distros Unpatched Vulnerability : CVE-2021-47336

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smackfs: restrict bytes count in smksetcipso Oops, I failed to update subject line. From 07571157c91b98ce1a4aa70967531e64b78e8346 Mon Sep 17 00:00:00 2001 Date:...

Linux Distros Unpatched Vulnerability : CVE-2021-47236

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: cdceem: fix tx fixup skb leak when usbnet transmit a skb, eem fixup it in eemtxfixup, if skbcopyexpand failed, it return NULL, usbnetstartxmit will have no...

PySpark Detection

A PySpark Python library is installed on the remote host. Note that Nessus has relied upon on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid208139; scriptversion"1.6";...

AlmaLinux 8 : postgresql:13 (ALSA-2024:6018)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:6018 advisory. postgresql: PostgreSQL relation replacement during pgdump executes arbitrary SQL CVE-2024-7348 Tenable has extracted the preceding description block directly from...

Fedora 39 : opentofu (2024-35147eb6ad)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-35147eb6ad advisory. Update to 1.8.0 ---- Fix for CVE-2024-6257 CVE-2024-6104 CVE-2024-24789 Tenable has extracted the preceding description block directly from the Fedo...

Dell Client BIOS Multiple Vulnerabilities (DSA-2024-124)

Dell Client Platform BIOS contains multiple Improper Input Validation vulnerabilities in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution. Note that Nessus has not tested for this issue but has...

Kibana 7.8.0 < 7.15.2 Multiple Vulnerabilities

According to its self-reported version number, the Kibana application running on the remote host is 7.8.0 prior to 7.15.2. It is, therefore, affected by : - Path Traversal on Windows operating systems specifically CVE-2021-37938 - Information Disclosure in Kibana's JIRA connector & IBM Resilient...

Codesys Control Allocation of Resources Without Limits or Throttling

CODESYS Control runtime system before 3.5.16.10 allows Uncontrolled Memory Allocation. File data ot500480.nasl...

Siemens Simatic Uncaught Exception

A vulnerability has been identified in SIMATIC ET 200SP Open Controller incl. SIPLUS variants V20.8, SIMATIC S7-1500 Software Controller V20.8. The web server of the affected products contains a vulnerability that could allow a remote attacker to trigger a denial-of-service condition by sending a...

F5 BIG-IP RCE (CVE-2021-22986)

Binary data f5cve-2021-22986.nbin...

Beckhoff Ipc Improper Access Control

Beckhoff IPC Diagnostics before 1.8 does not properly restrict access to functions in /config, which allows remote attackers to cause a denial of service reboot or shutdown, create arbitrary users, or possibly have unspecified other impact via a crafted request, as demonstrated by a...

Codesys Control Uncontrolled Resource Consumption

CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30 allow uncontrolled memory allocation which can result in a remote denial of service condition. File data ot500370.nasl...

Rockwellautomation Rslinx Unquoted Search Path or Element

An unquoted search path or element in RSLinx Classic Versions 3.90.01 and prior and FactoryTalk Linx Gateway Versions 3.90.00 and prior may allow an authorized, but non-privileged local user to execute arbitrary code and allow a threat actor to escalate user privileges on the affected workstation...

Ge Pacsystems Improper Input Validation

In GE PACSystems RX3i CPE305/310 version 9.20 and prior, RX3i CPE330 version 9.21 and prior, RX3i CPE 400 version 9.30 and prior, PACSystems RSTi-EP CPE 100 all versions, and PACSystems CPU320/CRU320 RXi all versions, the device does not properly validate input, which could allow a remote attacke...

Rockwell Automation/Allen-Bradley PanelView 5510 2715P-T15CD-B 15-in. Touch HMI Terminal

Binary data 765037.prm...

Rockwell Automation 25B-D017N104 PowerFlex 525 AC Drive

Binary data 764964.prm...

Schneider Electric Twido PLC Detection

Binary data 259.prm...