857 matches found
EUVD-2026-23494
Anviz CX2 Lite and CX7 are vulnerable to unverified update packages that can be uploaded. The device unpacks and executes a script resulting in unauthenticated remote code execution...
CVE-2026-40066
Anviz CX2 Lite and CX7 are vulnerable to unverified update packages that can be uploaded. The device unpacks and executes a script resulting in unauthenticated remote code execution...
Anviz CX7和Anviz CX2 Lite 安全漏洞
Both Anviz CX7 and Anviz CX2 Lite are products of the American company Anviz. The Anviz CX7 is a smart terminal device integrated with biometric identification and access control functions. The Anviz CX2 Lite is also a smart terminal device that integrates face recognition and access control...
PT-2026-33494
Name of the Vulnerable Software and Affected Versions Anviz CX2 Lite affected versions not specified Anviz CX7 affected versions not specified Description Anviz CX2 Lite and CX7 allow the upload of unverified update packages. The device unpacks and executes a script from these packages, which lea...
Oracle Linux 10 : kea (ELSA-2026-7342)
The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-7342 advisory. 3.0.1-3 - Fixes CVE-2026-3608 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...
MiracleLinux 8 : bind-9.11.36-16.el8_10.7 (AXSA:2026-451:02)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-451:02 advisory. bind: BIND: Denial of Service via maliciously crafted DNSSEC-validated zone CVE-2026-1519 Tenable has extracted the preceding description block directly from...
RockyLinux 10 : bind (RLSA-2026:8312)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:8312 advisory. bind: BIND: Denial of Service via maliciously crafted DNSSEC-validated zone CVE-2026-1519 Tenable has extracted the preceding description block directly from the...
AlmaLinux 9 : bind (ALSA-2026:8075)
The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:8075 advisory. bind: BIND: Denial of Service via maliciously crafted DNSSEC-validated zone CVE-2026-1519 Tenable has extracted the preceding description block directly from the...
AlmaLinux 9 : nghttp2 (ALSA-2026:7668)
The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:7668 advisory. nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination CVE-2026-27135 Tenable has extracted the preceding description block...
Oracle Linux 9 : bind9.18 (ELSA-2026-7915)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-7915 advisory. - Correct backport issue in the patch CVE-2026-1519 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...
RockyLinux 9 : nghttp2 (RLSA-2026:7668)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:7668 advisory. nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination CVE-2026-27135 Tenable has extracted the preceding description block...
Oracle Linux 8 : bind9.16 (ELSA-2026-8155)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-8155 advisory. 32:9.16.23-0.22.5 - Prevent Denial of Service via maliciously crafted DNSSEC-validated zone CVE-2026-1519 Tenable has extracted the preceding description block...
Photon OS 4.0: Rubygem PHSA-2026-4.0-0995
An update of the rubygem package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-0995. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
RockyLinux 10 : git-lfs (RLSA-2026:7005)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:7005 advisory. net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 Tenable has extracted the preceding description block directly from the RockyLinux...
AlmaLinux 9 : python3.9 (ALSA-2026:6766)
The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:6766 advisory. python: Python: Command-line option injection in webbrowser.open via crafted URLs CVE-2026-4519 Tenable has extracted the preceding description block directly from...
RockyLinux 10 : libtiff (RLSA-2026:7081)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:7081 advisory. libtiff: Segment fault in libtiff in TIFFReadRGBATileExt leading to denial of service CVE-2023-52356 Tenable has extracted the preceding description block direct...
Oracle Linux 10 : capstone (ELSA-2026-6817)
The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-6817 advisory. - Fix CVE-2025-67873 heap buffer overflow Resolves: RHEL-141551 Tenable has extracted the preceding description block directly from the Oracle Linux...
RockyLinux 10 : ncurses (RLSA-2026:5913)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:5913 advisory. ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution. CVE-2025-69720 Tenable has extracted the preceding description block direct...
RockyLinux 9 : python3.12 (RLSA-2026:6285)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:6285 advisory. python: Python: Command-line option injection in webbrowser.open via crafted URLs CVE-2026-4519 Tenable has extracted the preceding description block directly fro...
RockyLinux 9 : opencryptoki (RLSA-2026:5603)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:5603 advisory. openCryptoki: openCryptoki: Privilege Escalation or Data Exposure via Symlink Following CVE-2026-23893 Tenable has extracted the preceding description block...