Lucene search
K
NessusRecent

338622 matches found

Tenable Nessus
Tenable Nessus
•added 2 days ago•5 views

Fedora 44 : python-django-haystack (2026-3e10194134)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-3e10194134 advisory. Fixes GHSA-r3hx-x5rh-p9vv: via eval in Elasticsearch Result Deserialization...

5.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
•added 2 days ago•4 views

Fedora 43 : python-jupytext (2026-31e6b85f4e)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-31e6b85f4e advisory. See https://github.com/jupytext/jupytext/releases/tag/v1.19.4 for changes in version 1.19.4. Notable, this update fixes CVE-2026-45736 and...

7.5CVSS5.9AI score0.00782EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
•added 2 days ago•6 views

CentOS 9 : libgcrypt-1.10.0-12.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the libgcrypt-1.10.0-12.el9 build changelog. - Denial of Service and buffer overflow via crafted ECDH ciphertext CVE-2026-41989 Note that Nessus has not tested for this issue but has instea...

6.7CVSS7AI score0.0018EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 2 days ago•5 views

Fedora 44 : python-jupytext (2026-db770b7d7a)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-db770b7d7a advisory. See https://github.com/jupytext/jupytext/releases/tag/v1.19.4 for changes in version 1.19.4. Notable, this update fixes CVE-2026-45736 and...

7.5CVSS5.9AI score0.00782EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
•added 2 days ago•5 views

Fedora 44 : maradns (2026-7726bdbcf1)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-7726bdbcf1 advisory. Update to 3.5.0037, fixing DNS-over-TCP bug rhbz2488786 Tenable has extracted the preceding description block directly from the Fedora security advisory. Not...

5.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
•added 2 days ago•5 views

Fedora 43 : collectd / varnish / varnish-modules / vmod-querystring (2026-7f36ec4c65)

The remote Fedora 43 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-7f36ec4c65 advisory. Update to latest 7.7.x release available, a security release. Includes fixes for VSV00017 aka CVE-2025-8671, aAdded patches for for VSV00018 aka...

9.8CVSS7.5AI score0.04604EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
•added 2 days ago•6 views

Fedora 45 : jq (2026-b43264dedb)

The remote Fedora 45 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-b43264dedb advisory. Automatic update for jq-1.8.2-4.fc45. Changelog Sat Jun 20 2026 Filipe Rosset - 1.8.2-4 - removed old upstreamed patches Sat Jun 20 2026 Filipe Ross...

7.3CVSS7.4AI score0.00256EPSS
Exploits7References8
Tenable Nessus
Tenable Nessus
•added 2 days ago•4 views

Fedora 43 : chromium (2026-7f29bc3622)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-7f29bc3622 advisory. Update to 149.0.7827.200 CVE-2026-13281: Integer overflow in Mojo CVE-2026-13282: Use after free in Payments CVE-2026-13283: Use after free in...

8.3CVSS5.9AI score0.00229EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
•added 2 days ago•5 views

Fedora 43 : python-django-haystack (2026-1d2c7eaa2f)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-1d2c7eaa2f advisory. Fixes GHSA-r3hx-x5rh-p9vv: via eval in Elasticsearch Result Deserialization...

5.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
•added 2 days ago•5 views

NewStart CGSL MAIN 6.06 : ansible-core Multiple Vulnerabilities (NS-SA-2026-0056)

The remote NewStart CGSL host, running version MAIN 6.06, has ansible-core packages installed that are affected by multiple vulnerabilities: - A flaw was found in Ansible. The ansible-core user module can allow an unprivileged user to silently create or replace the contents of any file on any...

6.3CVSS6.4AI score0.00502EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
•added 2 days ago•7 views

IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.8 (7278580)

The version of IBM WebSphere Application Server Liberty running on the remote host is affected by a vulnerability as referenced in the 7278580 advisory. - IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forgery vulnerability with the...

9.8CVSS5.9AI score0.00186EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 2 days ago•6 views

IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.8 (7278572)

The version of IBM WebSphere Application Server Liberty running on the remote host is affected by a vulnerability as referenced in the 7278572 advisory. - IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forgery vulnerability with the...

9.8CVSS5.9AI score0.00212EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 2 days ago•4 views

NewStart CGSL MAIN 6.06 : gstreamer1-plugins-base Vulnerability (NS-SA-2026-0056)

The remote NewStart CGSL host, running version MAIN 6.06, has gstreamer1-plugins-base packages installed that are affected by a vulnerability: - GStreamer is a library for constructing graphs of media-handling components. An OOB-Write has been detected in the function gstparsevorbissetuppacket...

9.8CVSS7.2AI score0.0111EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 2 days ago•8 views

CentOS 9 : kernel-5.14.0-719.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-719.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: cxl/port: Fix use after free of parentport in cxldetachep cxldetach...

9.8CVSS6AI score0.00415EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
•added 2 days ago•5 views

Fedora 44 : transmission (2026-23d0f010f8)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-23d0f010f8 advisory. Fix qt icon Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this issue...

5.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
•added 2 days ago•5 views

Fedora 45 : ipp-usb (2026-7eaf5e3510)

The remote Fedora 45 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-7eaf5e3510 advisory. Automatic update for ipp-usb-0.9.34-2.fc45. Changelog Tue Jun 30 2026 Zdenek Dohnal - 0.9.34-2 - ipp-usb-0.9.34 is available fedora2463247,...

7.5CVSS5.9AI score0.00763EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 3 days ago•6 views

Debian dsa-6374 : libnginx-mod-http-geoip - security update

The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6374 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6374-1 [email protected] https://www.debian.org/securit...

9.2CVSS7.7AI score0.02887EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
•added 3 days ago•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-46607

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, glances/outdated.py uses pickle.load to read a version-check cache file stored ...

7.8CVSS6.5AI score0.00303EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 3 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-6325

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-bounds write in SetSuitesHashSigAlgo when processing an oversized signature algorithms list, allowing a write past the bounds of the destination buffer...

7.5CVSS5.8AI score0.00175EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 3 days ago•9 views

Oracle Linux 9 : firefox (ELSA-2026-20574)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-20574 advisory. 140.12.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding R...

9.8CVSS7.2AI score0.00446EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
•added 3 days ago•7 views

Dell Wyse Management Suite < 5.5.0.777 Multiple Vulnerabilities (DSA-2026-225)

The version of Dell Wyse Management Suite installed on the remote host is prior to 5.5.0.777 5.5 HF1. It is, therefore, affected by multiple vulnerabilities: - An acceptance of extraneous untrusted data with trusted data vulnerability that could allow a low privileged attacker with remote access ...

9.8CVSS6.1AI score0.00548EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 3 days ago•7 views

AlmaLinux 9 : glibc (ALSA-2026:20597)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:20597 advisory. glibc: glibc: Incorrect DNS response parsing via crafted DNS server response CVE-2026-4437 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr...

7.5CVSS6.5AI score0.00357EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
•added 3 days ago•5 views

Debian dla-4658 : amqp-tools - security update

The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4658 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4658-1 [email protected]...

6.1AI score
Exploits0References7
Tenable Nessus
Tenable Nessus
•added 3 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-53300

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: enetc: fix NTMP DMA use-after-free issue The AI-generated review reported a potential DMA use-after- free issue 1. If netcxmitntmpcmd times out and returns...

7.8CVSS5.9AI score0.00124EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 3 days ago•5 views

RHEL 9 : glibc (RHSA-2026:33231)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:33231 advisory. The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cach...

9.8CVSS5.9AI score0.00451EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
•added 3 days ago•6 views

AlmaLinux 9 : mod_md (ALSA-2026:30844)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2026:30844 advisory. httpd: modmd: unrestricted OCSP response leads to resource exhaustion CVE-2026-29168 Tenable has extracted the preceding description block directly from the...

7.3CVSS7.1AI score0.00628EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 3 days ago•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-11940

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tarfile.extractall with the 'data' or 'tar' filter could be bypassed by a crafted archive where a hardlink references a symlink stored at a deeper name than the...

7.8CVSS6.6AI score0.00767EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
•added 3 days ago•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-13757

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in p11-kit. The RPC message attribute parsing functions p11rpcmessagegetattribute and p11rpcmessagegetattributearrayvalue form a...

6.2CVSS5.8AI score0.0012EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 3 days ago•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-53301

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - reset: amlogic: t7: Fix null reset ops Fix missing reset ops causing kernel null pointer dereference. This SOC's reset is currently not used yet. CVE-2026-53301...

5.8AI score0.00166EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 3 days ago•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-11703

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Missing SNI/ALPN binding on stateful session-ID resumption, which previously skipped the binding check performed for ticket-based resumption. A cached session...

7.5CVSS5.8AI score0.0021EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 3 days ago•3 views

RHEL 9 : glibc (RHSA-2026:33229)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:33229 advisory. The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cach...

9.8CVSS5.9AI score0.00451EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
•added 3 days ago•5 views

Axis Communications AXIS OS Improper Neutralization of Wildcards or Matching Symbols (CVE-2024-0055)

A researcher in the AXIS OS Bug Bounty Program has found that the VAPIX APIs mediaclip.cgi and playclip.cgi were vulnerable for file globbing which could lead to a resource exhaustion attack. Axis has released patched AXIS OS versions for this flaw. This plugin only works with Tenable.ot. Please...

6.5CVSS5.8AI score0.00596EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 3 days ago•5 views

AlmaLinux 9 : perl-Archive-Tar (ALSA-2026:30856)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2026:30856 advisory. perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access CVE-2026-42496 Tenable has extracted the preceding descriptio...

9.1CVSS7.3AI score0.0043EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 3 days ago•6 views

Amazon Linux 2023 : rclone (ALAS2023-2026-1907)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1907 advisory. Rclone is a command-line program to sync files and directories to and from different cloud storage providers. From 1.46.0 until 1.74.3, rclone rcd --rc-serve accepts unauthenticated GET and HEAD reques...

9.8CVSS5.9AI score0.00701EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
•added 3 days ago•8 views

Oracle Linux 9 : firefox (ELSA-2026-21378)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-21378 advisory. 140.12.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding R...

9.8CVSS5.8AI score0.00605EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
•added 3 days ago•5 views

RHEL 10 : perl-IO-Compress (RHSA-2026:30860)

The remote Redhat Enterprise Linux 10 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:30860 advisory. This distribution provides a Perl interface to allow reading and writing of compressed data created with the zlib and bzip2 libraries. IO-Compress...

7.8CVSS6.3AI score0.00292EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
•added 3 days ago•4 views

Apache Tomcat 10.1.0.M1 < 10.1.56 multiple vulnerabilities

The version of Tomcat installed on the remote host is prior to 10.1.56. It is, therefore, affected by multiple vulnerabilities as referenced in the fixedinapachetomcat10.1.56security-10 advisory. - Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in the...

9.1CVSS5.7AI score0.00285EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
•added 3 days ago•5 views

Oracle Linux 8 : perl-Archive-Tar (ELSA-2026-30852)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2026-30852 advisory. - Fix CVE-2026-42496: validate symlink and hardlink targets in secure extract mode - Fixes CVE-2018-12015 directory traversal bug 1588761 Tenable has extracted...

9.1CVSS7.2AI score0.07638EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
•added 3 days ago•6 views

Apache Tomcat 11.0.0.M1 < 11.0.5

The version of Tomcat installed on the remote host is prior to 11.0.5. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat11.0.5security-11 advisory. - Missing Critical Step in Authentication vulnerability in Apache Tomcat when the JNDIRealm was configured to...

7.3CVSS5.8AI score0.00252EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 3 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-55961

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wolfSSLPKCS7verify returning success for a degenerate certs-only PKCS7 object that contains no signer. Such an object has empty signerInfos, so the underlying...

8.2CVSS5.8AI score0.00095EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 3 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-53404

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat's rewrite valve meant that if the first condition in an OR chain matched, subsequent...

7.3CVSS5.8AI score0.00218EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 3 days ago•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-53323

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: dsa: remove redundant netdevlockops from conduit ethtool ops DSA replaces the conduit master device's ethtoolops with its own wrappers that aggregate stats...

5.8AI score0.00155EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 3 days ago•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-6091

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Partial-chain certificate verification may accept chains that terminate at a peer-supplied, untrusted intermediate certificate rather than a trusted anchor. An...

6.5CVSS5.8AI score0.00121EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 3 days ago•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-6731

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - X.509 name constraint bypass via the Subject Common Name when treated as a DNS-type name. A certificate whose Subject CN violates an issuing CA's DNS name...

7.5CVSS5.8AI score0.00124EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 3 days ago•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-53293

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amdgpu: fix AMDGPUINFOREADMMRREG There were multiple issues in that code. First of all the order between the reset semaphore and the mmlock was wrong e.g...

5.8AI score0.00168EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 3 days ago•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-0864

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When using the configparser module to write configuration files containing multi-line text values with carriage return characters \r the resulting file could be...

4.1CVSS5.8AI score0.00128EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
•added 3 days ago•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-11979

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --shell mode. The usershell function processes user inp...

7.8CVSS6.7AI score0.00148EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 3 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-13758

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CryptX versions before 0.088001 for Perl compare AEAD authentication tags in non-constant time in the streaming decryptdone path. The decryptdone$tag form...

3.7CVSS5.8AI score0.00295EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 3 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-53925

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Glances is an open-source system cross-platform monitoring tool. From 4.0.8 until 4.5.5, the securepopen function in glances/secure.py interprets file...

7.8CVSS6AI score0.00184EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 3 days ago•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-56788

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RTKLIB through 2.4.3 contains an out-of-bounds read vulnerability in getcodepri function when processing unrecognized RINEX observation codes, allowing attacker...

7.1CVSS5.8AI score0.00119EPSS
Exploits1References3
Total number of security vulnerabilities338622