Linux Distros Unpatched Vulnerability : CVE-2026-12468

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Race in Updater in Google Chrome on Mac prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer process to potentially perform a...

MINI-W4V9-H425-6JH7

Bulletin has no description...

CVE-2026-47899 Arbitrary File Read, Write, Rename, and Delete in Logseq

The Electron preload script in Logseq exposes an API method that allows the renderer process to invoke IPC handlers without proper path validation. An attacker with JavaScript execution in the renderer e.g. via XSS or a malicious plugin, can read, write, or delete arbitrary files on the user's...

MINI-523C-98Q3-CCX7

Bulletin has no description...

MINI-3444-357Q-3JX2

Bulletin has no description...

MINI-85QG-87VR-HC95

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2026-47192

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kas's late signature validation may allow unnoticed repository manipulations CVE-2026-47192 Note that Nessus relies on the presence of the package as reported b...

Linux Distros Unpatched Vulnerability : CVE-2026-49214

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. Versions prior to 2.10.2 did not reject ASCII control characters, whitespace, or DEL in...

MINI-XW2X-794X-R7HX

Bulletin has no description...

MINI-HC4H-GH4W-FFRW

Bulletin has no description...

MINI-J33C-C77W-J95Q

Bulletin has no description...

MINI-X345-7QV6-8PJ3

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2026-43320

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Fix dsc eDP issue why Need to add function hook check before use CVE-2026-43320 Note that Nessus relies on the presence of the package as...

MINI-GQ4X-M265-2QRP

Bulletin has no description...

CVE-2026-41688

Wallos (versions ≤ 4.8.4) has an incomplete SSRF fix: the webhook URL is validated with gethostbyname(), but the original hostname is passed to curl without CURLOPT_RESOLVE pinning on 10 of 11 outbound HTTP endpoints, creating a DNS rebinding TOCTOU window. At publication, no patches are availabl...

MINI-JM99-79VH-9VG8

Bulletin has no description...

SUSE CVE-2026-3842

unknown...

Linux Distros Unpatched Vulnerability : CVE-2026-6317

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Cast in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security...

SUSE CVE-2024-21061

unknown...

CVE-2026-33879 FLIP doesn't have rate limiting or brute-force protection on login

Federated Learning and Interoperability Platform FLIP is an open-source platform for federated training and evaluation of medical imaging AI models across healthcare institutions. The FLIP login page in versions 0.1.1 and prior has no rate limiting or CAPTCHA, enabling brute-force and...