Lucene search
K

733356 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.4 views

Fedora 44 : freerdp (2026-9c6082d92d)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-9c6082d92d advisory. Update to 3.27.1 It fixes CVE-2026-55191, CVE-2026-55192, CVE-2026-55193, CVE-2026-55194, CVE-2026-55648 and CVE-2026-55827. Tenable has extracted t...

5.9AI score
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.5 views

Photon OS 4.0: Python3 PHSA-2026-4.0-1038

An update of the python3 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-1038. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

6.5CVSS5.7AI score0.01141EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.6 views

Fedora 44 : yt-dlp (2026-bb702c613b)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-bb702c613b advisory. - Update to 2026.06.09. Fixes rhbz2487407. - Mitigates CVE-2026-50019, CVE-2026-50023, CVE-2026-50574 Tenable has extracted the preceding descriptio...

9.6CVSS5.9AI score0.00555EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.4 views

Debian dsa-6357 : python-pil-doc - security update

The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6357 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6357-1 [email protected] https://www.debian.org/securit...

8.6CVSS7.5AI score0.0015EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.16 views

Fedora 44 : chromium (2026-650bd96540)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-650bd96540 advisory. Update to 149.0.7827.155 CVE-2026-12437: Use after free in WebShare CVE-2026-12438: Inappropriate implementation in WebView CVE-2026-12439: Use afte...

9.6CVSS6.2AI score0.00601EPSS
Exploits0References34
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.7 views

Debian dsa-6355 : ata-modules-6.12.90+deb13-armmp-di - security update

The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6355 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6355-1 [email protected] https://www.debian.org/securit...

9.8CVSS6.6AI score0.00441EPSS
Exploits11References108
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.8 views

RHEL 8 : kernel (RHSA-2026:27353)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:27353 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Use-after-free ...

9.8CVSS6.5AI score0.00353EPSS
Exploits9References18
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.16 views

RHEL 8 : kernel (RHSA-2026:27355)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:27355 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/sched: actpedit: extend the writab...

7.8CVSS6AI score0.00259EPSS
Exploits9References4
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.14 views

RHEL 8 : kernel-rt (RHSA-2026:27354)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:27354 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism...

9.8CVSS6.6AI score0.00353EPSS
Exploits9References18
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.10 views

RHEL 10 : kernel (RHSA-2026:27288)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:27288 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: can: isotp: fix tx.buf...

9.8CVSS6.2AI score0.004EPSS
Exploits9References32
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/20 7:8 p.m.11 views

Malicious code in d0rk3r-telemetry (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da4542d225ef144ecc5df2f578104ffc12659196c57b2214ecb54f60620601c6 On import d0rk3rtelemetry, the package spawns a background thread that reads installer-owned secrets and POSTs them to an attacker-controlled endpoin...

6AI score
Exploits0References3
OSV
OSV
added 2026/06/20 7:8 p.m.6 views

MAL-2026-6244 Malicious code in d0rk3r-telemetry (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da4542d225ef144ecc5df2f578104ffc12659196c57b2214ecb54f60620601c6 On import d0rk3rtelemetry, the package spawns a background thread that reads installer-owned secrets and POSTs them to an attacker-controlled endpoin...

6AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/20 6:47 p.m.11 views

Malicious code in free-anthropic-claude (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11bfe96b56a6615a50639b25de793e14044ea393c2029b26fa4e1b9e3dc5a22f This package impersonates the Anthropic Claude SDK name and description claim to be an 'Official Anthropic Claude SDK wrapper', author is...

5.8AI score
Exploits0References23
OSV
OSV
added 2026/06/20 6:47 p.m.4 views

MAL-2026-6260 Malicious code in free-anthropic-claude (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11bfe96b56a6615a50639b25de793e14044ea393c2029b26fa4e1b9e3dc5a22f This package impersonates the Anthropic Claude SDK name and description claim to be an 'Official Anthropic Claude SDK wrapper', author is...

5.8AI score
Exploits0References23
GithubExploit
GithubExploit
added 2026/06/20 4:39 p.m.90 views

explotability_analysis_ebpf

eBPF Verifier Exploit Research — s344024 Romano Simone Resear...

8.2CVSS5.9AI score0.00516EPSS
Exploits1
NVD
NVD
added 2026/06/20 4:17 p.m.12 views

CVE-2026-56317

Nuxt before 4.4.7 and the 3.x branch before 3.21.7 contains a cross-site scripting vulnerability in the NoScript component that writes slot content to innerHTML without escaping. Attackers can inject malicious scripts through untrusted data in NoScript slots, such as route.query parameters, which...

6.1CVSS0.00209EPSS
Exploits0References4
NVD
NVD
added 2026/06/20 4:17 p.m.11 views

CVE-2025-71331

Flowise before 3.0.8 contains a cross-site scripting XSS vulnerability caused by insufficient input filtering in chat messages and custom agent functions. An attacker can inject malicious JavaScript by sending an iframe payload e.g., in a chat box, or by having a custom agent function return an X...

6.1CVSS0.00222EPSS
Exploits1References2
CVE
CVE
added 2026/06/20 3:24 p.m.13 views

CVE-2025-71331

Flowise (pre-3.0.8) exposes a Cross-Site Scripting (XSS) vulnerability due to insufficient input filtering in chat messages and custom agent functions. An attacker can inject malicious JavaScript via an iframe payload in chat or have a custom agent function return an external XSS payload. The inj...

6.1CVSS5.7AI score0.00222EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/20 3:24 p.m.3 views

CVE-2025-71331

Flowise before 3.0.8 contains a cross-site scripting XSS vulnerability caused by insufficient input filtering in chat messages and custom agent functions. An attacker can inject malicious JavaScript by sending an iframe payload e.g., in a chat box, or by having a custom agent function return an X...

6.1CVSS5.7AI score0.00222EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/20 3:24 p.m.7 views

EUVD-2025-210289

Flowise before 3.0.8 contains a cross-site scripting XSS vulnerability caused by insufficient input filtering in chat messages and custom agent functions. An attacker can inject malicious JavaScript by sending an iframe payload e.g., in a chat box, or by having a custom agent function return an X...

6.1CVSS5.7AI score0.00222EPSS
Exploits1References2
Rows per page
Query Builder