PT-2026-45048

Summary An authenticated Nezha dashboard user can create or update a DDNS profile with provider webhook and configure an arbitrary webhook url, HTTP method, request body, and headers. When DDNS is triggered for a server that uses that profile, the dashboard process sends the configured request wi...

RHSA-2026:19125 Red Hat Security Advisory: xorg-x11-server-Xwayland security update

Bulletin has no description...

SUSE SLES15 Security Update : rmt-server (SUSE-SU-2026:1964-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1964-1 advisory. This update for rmt-server fixes the following issues - CVE-2026-26961: rack: mismatch in header handling can allow to smuggle...

SUSE SLES15 Security Update : rmt-server (SUSE-SU-2026:1745-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1745-1 advisory. Update to version 2.27. Security issues fixed: - CVE-2026-26961: rack: greedy multipart boundary parsing can lead to parser...

xorg-x11-server-Xwayland security update

21.1.3-20 - CVE fix for: CVE-2026-33999, CVE-2026-34000, CVE-2026-34001 CVE-2026-34002, CVE-2026-34003 Resolves: https://redhat.atlassian.net/browse/RHEL-163191 Resolves: https://redhat.atlassian.net/browse/RHEL-163287 Resolves: https://redhat.atlassian.net/browse/RHEL-163245...

Important: xorg-x11-server

Issue Overview: XKB Integer Underflow in XkbSetCompatMap CVE-2026-33999 XKB Out-of-bounds Read in CheckSetGeom CVE-2026-34000 XSYNC Use-after-free in miSyncTriggerFence CVE-2026-34001 XKB Out-of-bounds read in CheckModifierMap CVE-2026-34002 XKB Buffer overflow in CheckKeyTypes CVE-2026-34003...

TencentOS Server 2: ImageMagick (TSSA-2026:0256)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0256 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...

[SECURITY] Fedora 44 Update: xorg-x11-server-Xwayland-24.1.10-1.fc44

Xwayland is an X server for running X clients under Wayland...

TencentOS Server 3: mysql:8.0 (TSSA-2026:0245)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0245 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

CVE-2026-26154

Improper input validation in Windows Server Update Service allows an unauthorized attacker to perform tampering over a network...

[slackware-security] xorg-server

New xorg-server packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/xorg-server-1.20.14-i586-19slack15.0.txz: Rebuilt. This update fixes security issues: XKB Integer Underflow in XkbSetCompatMap. X...

EUVD-2026-22612

Use after free in Windows Server Update Service allows an authorized attacker to elevate privileges locally...

EUVD-2026-22376

Improper input validation in Windows Server Update Service allows an unauthorized attacker to perform tampering over a network...

CVE-2026-32224

Use after free in Windows Server Update Service allows an authorized attacker to elevate privileges locally...

CVE-2026-32224 Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability

...

CVE-2026-32224 Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability

...

CVE-2026-26174

CVE-2026-26174 is a race-condition vulnerability in Windows Server Update Services (WSUS) that enables a locally authenticated attacker to achieve elevation of privileges. The issue is described as concurrent execution using a shared resource with improper synchronization. Multiple connected docu...

Microsoft Windows 资源管理错误漏洞

Microsoft Windows is an operating system used by personal devices by the American company Microsoft. The Microsoft Windows Server Update Service has a resource management vulnerability. Attackers can exploit this vulnerability to gain higher privileges. The following products and versions are...

Microsoft Windows 资源管理错误漏洞

Microsoft Windows is an operating system used by personal devices by the American company Microsoft. The Microsoft Windows Server Update Service has a resource management vulnerability. Attackers can exploit this vulnerability to gain higher privileges. The following products and versions are...

Photon OS 4.0: Mysql PHSA-2026-4.0-0991

An update of the mysql package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-0991. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...