13147 matches found
Siemens KACO Blueplanet Inverters
SUMMARY KACO blueplanet Inverters contain multiple vulnerabilities that could allow an attacker to derive the credentials from the devices serial number and misuse them to gain unauthorized access. KACO new energy GmbH has released new versions for several affected products and recommends to...
Siemens SIPROTEC 5
SUMMARY The SIPROTEC 5 devices do not use sufficiently random numbers to generate session identifiers. This could facilitate a brute-force attack against a valid session identifier which could allow an unauthenticated remote attacker to hijack a valid user session. The affected session...
Security Updates for Microsoft Excel Products (May 2026)
The Microsoft Excel Products are missing a security update. They are, therefore, affected by multiple vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-40359 - Heap-based buffer overflow in Microsoft Office Excel allows a...
Fedora 42 : firefox / nss (2026-6acccc3bff)
The remote Fedora 42 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-6acccc3bff advisory. Update NSS to 3.122.2 Update to Firefox 150.0.1 Tenable has extracted the preceding description block directly from the Fedora security advisory. No...
Security Updates for Microsoft Office Products (May 2026)
The Microsoft Office Products are missing a security update. They are, therefore, affected by multiple vulnerabilities: - Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. CVE-2026-40358 - Heap-based buffer overflow in Microsoft Office allows an...
Security Updates for Microsoft SharePoint Server Subscription Edition (May 2026)
The Microsoft SharePoint Server Subscription Edition installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Remote Code Execution CVE-2026-33112, CVE-2026-33110, CVE-2026-35439, CVE-2026-40357, CVE-2026-40368, CVE-2026-45659 Note tha...
Fedora 43 : firefox / nss (2026-8978a60b68)
The remote Fedora 43 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-8978a60b68 advisory. Update NSS to 3.122.2 Updated to Firefox 150.0.1 Tenable has extracted the preceding description block directly from the Fedora security advisory...
Security Updates for Microsoft SharePoint Server 2016 (May 2026)
The Microsoft SharePoint 2016 Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Remote Code Execution CVE-2026-33112, CVE-2026-33110, CVE-2026-35439, CVE-2026-40357, CVE-2026-40365, CVE-2026-40367, CVE-2026-40368,...
Security Updates for Microsoft Office Online Server (May 2026)
The Microsoft Office Online Server or Office Web Apps installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-40359 -...
PT-2026-39535
Critical cPanel vulnerabilities CVE-2026-41940, CVE-2026-41941, CVE-2026-41942 exploited in the wild. Update your servers immediately to protect against unauthorized access. Link: https://t.co/BvY5rEh9wr cPanel Cybersecurity Vulnerabilities Exploits Patching Servers Security Infosec Malware Threa...
Photon OS 5.0: Mysql PHSA-2026-5.0-0842
An update of the mysql package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0842. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
CVE-2026-44575
creationtimestamp| type| source ---|---|--- 2026-05-08 12:09:44+00:00| seen| https://www.acn.gov.it/portale/w/next.js-aggiornamenti-di-sicurezza-1 2026-05-11 06:42:58+00:00| published-proof-of-concept| https://t.me/htfgtps/1107 2026-05-27 04:39:56+00:00| seen|...
CVE-2026-44579
creationtimestamp| type| source ---|---|--- 2026-05-08 12:09:44+00:00| seen| https://www.acn.gov.it/portale/w/next.js-aggiornamenti-di-sicurezza-1 2026-05-11 06:42:58+00:00| published-proof-of-concept| https://t.me/htfgtps/1107 2026-05-13 20:11:10+00:00| seen|...
Photon OS 4.0: Linux PHSA-2026-4.0-0974
An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-0974. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
USN-8245-1 linux-azure, linux-azure-6.17, linux-oem-6.17 vulnerabilities
Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could possibly use this issue to cause load malicious CPU microcod...
traefik-3.6.15-1.1 on GA media (moderate)
traefik-3.6.15-1.1 on GA media Announcement ID: openSUSE-SU-2026:10697-1 Rating: moderate Cross-References: CVE-2026-34986 CVE-2026-35051 CVE-2026-39858 CVE-2026-40912 CVE-2026-41174 CVE-2026-41263 CVSS scores: CVE-2026-34986 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-34986...
Photon OS 4.0: Curl PHSA-2026-4.0-1007
An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-1007. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
RHCOS 4 : OpenShift Container Platform 4.2 (RHSA-2019:3245)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:3245 advisory. - HTTP/2: flood using PING frames results in unbounded memory growth CVE-2019-9512 - HTTP/2: flood using HEADERS frames results in...
Photon OS 4.0: Erlang PHSA-2026-4.0-1005
An update of the erlang package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-1005. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 5.0: Erlang PHSA-2026-5.0-0831
An update of the erlang package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0831. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...