CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

5.3CVSS5.7AI score0.00141EPSS

Photon OS 5.0: Freetype2 PHSA-2026-5.0-0884

An update of the freetype2 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0884. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.7CVSS5.9AI score0.0043EPSS

Fedora 44 : kubernetes1.35 (2026-b56d6f4b79)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-b56d6f4b79 advisory. - Update to release v1.35.6 - Resolves: rhbz2467606 - Upstream fixes Tenable has extracted the preceding description block directly from the Fedora security...

Tenable Nessus•added 2026/06/21 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2026-52911

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: scope conn-binding slowpath to bound sessions only When the binding SESSIONSETUP sets conn-binding = true, the flag stays set after the call so that the...

5.8AI score0.00176EPSS

7.5CVSS5.9AI score0.00319EPSS

Fedora 44 : perl-Crypt-PBKDF2 (2026-5b12cc327e)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-5b12cc327e advisory. This update addresses a number of security issues: Change the default hash algorithm to HMAC-SHA256, and increase the default number of iterations t...

Exploits0References4

Tenable Nessus•added 2026/06/21 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-56403

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libexpat before 2.8.2 has an integer overflow in storeAtts. CVE-2026-56403 Note that Nessus relies on the presence of the package as reported by the vendor...

6.9CVSS5.9AI score0.00102EPSS

8.6CVSS5.9AI score0.00618EPSS

Fedora 44 : perl-Config-IniFiles (2026-1c2676703e)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-1c2676703e advisory. Update to 3.001000, fixes CVE-2026-11527 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

Tenable Nessus•added 2026/06/21 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-56367

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contains an integer overflow in the PSB PSD v2 RLE decoding path ReadPSDChannelRLE in coders/psd.c that...

9.1CVSS5.9AI score0.00236EPSS

Tenable Nessus•added 2026/06/21 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2026-46862

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Router product of Oracle MySQL component: Router: General. Supported versions that are affected are 8.4.0-8.4.9 and 9.0.0-9.7.0. Easi...

7.5CVSS5.9AI score0.00463EPSS

Tenable Nessus•added 2026/06/21 12:0 a.m.•8 views

MiracleLinux 8 : [security - medium] mysql:8.0, rapidjson-1.1.0-6.module+el8+1989+b2d38253 (AXSA:2026-809:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-809:01 advisory. mysql: InnoDB unspecified vulnerability CPU Apr 2026 CVE-2026-22004 mysql: Information Schema unspecified vulnerability CPU Apr 2026 CVE-2026-22001...

6.5CVSS7.3AI score0.00323EPSS

Exploits0References23

6.5CVSS7.3AI score0.00323EPSS

MiracleLinux 8 : [security - medium] mysql:8.4, rapidjson-1.1.0-3.module+el8+1990+5ba0b90f (AXSA:2026-810:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-810:01 advisory. mysql: InnoDB unspecified vulnerability CPU Apr 2026 CVE-2026-22004 mysql: Information Schema unspecified vulnerability CPU Apr 2026 CVE-2026-22001...

Exploits0References20

Tenable Nessus•added 2026/06/21 12:0 a.m.•6 views

Oracle Linux 8 : redis:6 (ELSA-2026-26008)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-26008 advisory. 6.2.22-1.0.1 - Build with 64k pages to support redis on both UEK6 and UEK7 on aarch64 6.2.22-1 - rebase to 6.2.22 for CVE-2026-25243 Tenable has extracted the...

8.8CVSS6AI score0.01228EPSS

OSSF Malicious Packages•added 2026/06/20 7:8 p.m.•9 views

Malicious code in d0rk3r-telemetry (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da4542d225ef144ecc5df2f578104ffc12659196c57b2214ecb54f60620601c6 On import d0rk3rtelemetry, the package spawns a background thread that reads installer-owned secrets and POSTs them to an attacker-controlled endpoin...

6AI score

OSV•added 2026/06/20 7:8 p.m.•5 views

MAL-2026-6244 Malicious code in d0rk3r-telemetry (PyPI)

6AI score