13147 matches found
Photon OS 4.0: Python3 PHSA-2026-4.0-1008
An update of the python3 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-1008. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
SUSE-SU-2026:21543-1 Security update for java-25-openjdk
This update for java-25-openjdk fixes the following issues: Update to upstream tag jdk-25.0.3+9 April 2026 CPU. Security issues fixed: - CVE-2026-22007: Security: unauthenticated attacker with logon to the infrastructure where java executes can gain unauthorized read access to a subset of...
RHCOS 4 / 9 : OpenShift Container Platform 4.15.35 (RHSA-2024:7182)
The remote Red Hat Enterprise Linux CoreOS 4 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:7182 advisory. - containers/image: digest type does not guarantee valid type CVE-2024-3727 - webob: WebOb's location header normalization durin...
RHCOS 1 : rubygem-passenger (RHSA-2013:1136)
The remote Red Hat Enterprise Linux CoreOS 1 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2013:1136 advisory. - rubygem-passenger: incorrect temporary file usage CVE-2013-2119 - rubygem-passenger: insecure temporary directory usage due to reu...
RHCOS 1 : rubygems (RHSA-2013:1203)
The remote Red Hat Enterprise Linux CoreOS 1 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2013:1203 advisory. - rubygems: Two security fixes in v1.8.23 CVE-2012-2125, CVE-2012-2126 Note that Nessus has not tested for these issues but has...
RHCOS 3 : Red Hat OpenShift Container Platform 3.10 (RHSA-2018:2709)
The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2709 advisory. - atomic-openshift: oc patch with json causes masterapi service crash CVE-2018-14632 - haproxy: Out-of-bounds read in HPACK decoder...
RHCOS 4 : OpenShift Container Platform 4.10.33 (RHSA-2022:6531)
The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6531 advisory. - jenkins-plugin/junit: Stored XSS vulnerability in JUnit Plugin CVE-2022-34176 - jenkins-plugin: Arbitrary file write vulnerability...
RHCOS 4 / 9 : OpenShift Container Platform 4.16.4 (RHSA-2024:4616)
The remote Red Hat Enterprise Linux CoreOS 4 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:4616 advisory. - golang: net: malformed DNS message can cause infinite loop CVE-2024-24788 - jinja2: accepts keys containing non-attribute...
RHCOS 4 : OpenShift Container Platform 4.14.34 (RHSA-2024:4963)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:4963 advisory. - go-retryablehttp: url might write sensitive information to log file CVE-2024-6104 - gorilla/schema: Potential memory exhaustion...
RHCOS 9 : OpenShift Container Platform 4.15.45 (RHSA-2025:1130)
The remote Red Hat Enterprise Linux CoreOS 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:1130 advisory. - jinja2: Jinja has a sandbox breakout through malicious filenames CVE-2024-56201 - jinja2: Jinja has a sandbox breakout through...
RHCOS 4 : OpenShift Container Platform 4.16.1 (RHSA-2024:4159)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:4159 advisory. - containers/image: digest type does not guarantee valid type CVE-2024-3727 - cri-o: malicious container can create symlink on host...
RHCOS 6 : ruby193-ruby, rubygem-json and rubygem-rdoc (RHSA-2013:0701)
The remote Red Hat Enterprise Linux CoreOS 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2013:0701 advisory. - rubygem-rdoc: Cross-site scripting in the documentation created by Darkfish Rdoc HTML generator / template CVE-2013-0256 -...
RHCOS 4 : OpenShift Container Platform 4.19.27 (RHSA-2026:5876)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:5876 advisory. - golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 - crypto/tls: crypto/tls: Incorrect certifica...
RHCOS 4 : OpenShift Container Platform 4.18.35 (RHSA-2026:3875)
The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:3875 advisory. - golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 - golang: net/url: Memory exhaustion in query...
Fedora 43 : python3.9 (2026-7986d7f994)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-7986d7f994 advisory. Security fixes for CVE-2026-4786 and CVE-2026-6100 Tenable has extracted the preceding description block directly from the Fedora security advisory...
Photon OS 5.0: Imagemagick PHSA-2026-5.0-0830
An update of the ImageMagick package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0830. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Fedora 42 : python3.9 (2026-60a694a385)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-60a694a385 advisory. Security fixes for CVE-2026-4786 and CVE-2026-6100 Tenable has extracted the preceding description block directly from the Fedora security advisory...
Fedora 42 : asterisk (2026-98decbde87)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-98decbde87 advisory. Update to Asterisk 18.26.4, addressing numerous security vulnerabilities accumulated since the long-stale 18.12.1 package. The following CVEs are...
java-21-openjdk security update
An update is available for java-21-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The OpenJDK 21 packages provide the OpenJDK 21 Java Runtime Environme...
Photon OS 5.0: Mesa PHSA-2026-5.0-0833
An update of the mesa package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0833. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...