Lucene search
K
NessusRecent

338597 matches found

Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53283

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iommu/amd: Bounds-check devid in rlookupamdiommu iommudeviceregister walks every device on the PCI bus via busforeachdev and calls amdiommuprobedevice for each...

5.8AI score0.00166EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-56766

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Hydra through 9.7, fixed in commit 9cc84c2, contains a stack buffer overflow in NTLM authentication across SMTP, POP3, IMAP, NNTP, HTTP, HTTP-Proxy, and...

8.8CVSS6.6AI score0.00474EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53286

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - idpf: fix double free and use-after-free in aux device error paths When auxiliarydeviceadd fails in idpfplugvportauxdev or idpfplugcoreauxdev, the errauxdevadd...

5.8AI score0.00169EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-54371

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - attr before version 2.6.0 contains a symlink traversal vulnerability in the getfattr and setfattr utilities that allows local attackers to escalate privileges b...

8.4CVSS6AI score0.00142EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-55895

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vim is an open source, command line text editor. Prior to 9.2.0663, a Vimscript code injection vulnerability exists in s:NetrwLocalRmFile in the netrw plugin...

8.4CVSS6.2AI score0.00154EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53315

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/ras: Fix NULL deref in rascoregetutcsecondtimestamp rascoregetutcsecondtimestamp retrieves the current UTC timestamp in seconds since the Unix epoch...

5.8AI score0.00148EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-39894

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cacti is an open source performance and fault management framework. In versions 1.2.30 and below, the locale-dependent decimal formatting in rrdtoolfunctionupda...

2.9CVSS5.8AI score0.00104EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-40080

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Open Redirect through a substring check rather...

6.1CVSS5.8AI score0.00151EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-40083

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have SQL Injection through unsanitized unserialize+implode in...

7.2CVSS6AI score0.00279EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Oracle Linux 9 : firefox (ELSA-2026-19370)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-19370 advisory. 140.12.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding R...

9.6CVSS7.4AI score0.00375EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-55964

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Chain intermediate CA:TRUE without keyCertSign accepted as a signing CA. Intermediate CA certificates are required to have the keyCertSign key usage when a Key...

6.3CVSS5.8AI score0.00118EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-40084

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Path Traversal through the Report formatfile...

6.5CVSS5.9AI score0.00324EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-56876

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - extract-zip does not validate symlink targets when extracting zip archives. When processing a malicious zip file containing a symlink with a relative path like...

8.6CVSS6AI score0.00319EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday3 views

Linux Distros Unpatched Vulnerability : CVE-2026-39900

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Reflected XSS via tab parameter in the...

6.1CVSS5.8AI score0.00155EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-12844

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - List::SomeUtils::XS versions before 0.59 for Perl have a heap buffer overflow in the pairwise function. pairwise collects the values returned by the block into ...

7.5CVSS6.1AI score0.00419EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-56787

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RTKLIB through 2.4.3 contains an off-by-one out-of-bounds read vulnerability in the decodessr3 function at src/rtcm3.c:1446 that allows remote attackers to...

7.5CVSS6.1AI score0.00325EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-6094

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overread in wcPKCS7DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData. This could theoretically be triggered by attacker-supplied data...

9.1CVSS6AI score0.00294EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-54370

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - acl before version 2.4.0 contains a time-of-check to time-of-use TOCTOU race condition vulnerability that allows local attackers to escalate privileges by...

7.2CVSS6AI score0.00091EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-41991

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU gzip contains a vulnerability in the gzexe utility related to insecure temporary file handling. When the mktemp utility is not available in the user's PATH,...

2CVSS6AI score0.00117EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53302

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: eip93 - fix hmac setkey algo selection eip93hmacsetkey allocates a temporary ahash transform for computing HMAC ipad/opad key material. The allocation...

5.8AI score0.00166EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-39899

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Path Traversal via filename parameter in...

6.9CVSS5.8AI score0.00261EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday3 views

Linux Distros Unpatched Vulnerability : CVE-2026-11310

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - X.509 trust-chain bypass in the OpenSSL compatibility certificate verifier wolfSSLX509verifycert. This affects only builds with --enable-opensslextra OPENSSLEXT...

8.7CVSS5.9AI score0.00145EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Oracle Linux 7 : libxml2 (ELSA-2026-22420)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-22420 advisory. - Backport fix for CVE-2025-9714 Orabug: 39476695 - Fix CVE-2025-32415: Fix heap buffer overflow Orabug: 38310750 - Fix CVE-2025-7425: heap-use-after-free in...

9.8CVSS7.2AI score0.01437EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-56789

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RTKLIB through 2.4.3 contains a heap buffer overflow vulnerability in the readrnxobsb function in src/rinex.c that allows attackers to trigger memory corruption...

7.1CVSS6.1AI score0.00239EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53288

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arm64: Reserve an extra page for early kernel mapping The final part of data, end segment may overflow into the next page of initpgend1 which is the gap page...

5.8AI score0.00168EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday3 views

Linux Distros Unpatched Vulnerability : CVE-2026-10592

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Certificates with wildcard DNS SANs e.g. .example.com bypassed CA name-constraint checks. A certificate with a wildcard DNS SAN that should be rejected by the...

6.3CVSS5.8AI score0.00124EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-10097

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wolfSSL's AVX2-optimized ML-KEM implementation mlkemcmpavx2 compares only 1536 of the 1568 ciphertext bytes during the Fujisaki-Okamoto re-encryption check in...

8.3CVSS5.8AI score0.00161EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53307

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pinctrl: pinconf-generic: Fully validate 'pinmux' property The pinconfgenericparsedtpinmux assumes that the 'pinmux' property is not empty when present. This...

5.8AI score0.00154EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-56018

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify, allowing unbounded memory growth. In JsMinify XS.xs the cleanup free...

7.5CVSS6AI score0.00609EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53312

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iommu/riscv: Remove overflows on the invalidation path Since RISC-V supports a sign extended page table it should support a gather-end of ULONGMAX, but if this...

6AI score0.00154EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-6658

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in jupyter/nbconvert versions tag. This vulnerability impacts any server using nbconvert to render notebooks as HTML, allowing attackers to...

5.4CVSS6.3AI score0.00134EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53282

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - x86/kexec: Push kjump return address even for non-kjump kexec The version of purgatory code shipped by kexec-tools attempts to look above the top of its stack t...

5.9AI score0.00166EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday3 views

Linux Distros Unpatched Vulnerability : CVE-2026-57451

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vim is an open source, command line text editor. Prior to 9.2.0670, gettextprops in src/textprop.c reads a uint16 property count stored inline after a line's te...

6.1CVSS5.8AI score0.00113EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53298

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: airoha: Move ndesc initialization at end of airohaqdmainitrxqueue If queue entry or DMA descriptor list allocation fails in airohaqdmainitrxqueue routine,...

5.8AI score0.00168EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

IBM WebSphere eXtreme Scale 8.6.1.0 < 8.6.1.6 (7278346)

The version of IBM WebSphere eXtreme Scale installed on the remote host is prior to 8.6.1.6 IBM. It is, therefore, affected by a vulnerability as referenced in the 7278346 advisory. - IBM WebSphere eXtreme Scale could allow an adjacent attacker to cause a denial of service due to improper...

6.5CVSS5.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53311

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fuse: fix uninit-value in fusedentryrevalidate fusedentryrevalidate may be called with a dentry that didn't had -dtime initialised. The issue was found with...

5.8AI score0.00154EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53299

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: airoha: Move ndesc initialization at end of airohaqdmainittx If queue entry list allocation fails in airohaqdmainittxqueue routine, airohaqdmacleanuptxqueu...

5.8AI score0.00166EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53319

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - blk-wbt: remove WARNONONCE from wbtinitenabledefault wbtinitenabledefault uses WARNONONCE to check for failures from wbtalloc and wbtinit. However, both are...

5.8AI score0.00145EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-39948

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cacti is an open source performance and fault management framework. In versions 1.2.30 and prior, the rfilter request parameter is retrieved via the raw accesso...

9.8CVSS6AI score0.00456EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Apache Tomcat 10.1.0.M1 < 10.1.39

The version of Tomcat installed on the remote host is prior to 10.1.39. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat10.1.39security-10 advisory. - Missing Critical Step in Authentication vulnerability in Apache Tomcat when the JNDIRealm was configured to...

7.3CVSS5.8AI score0.00213EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-56017

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first meaningful token of the input is a slash. The regexp...

7.5CVSS5.8AI score0.00488EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-46606

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, the Glances KVM/QEMU monitoring engine glances/plugins/vms/engines/virsh.py...

7.8CVSS6AI score0.00213EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-46608

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, the Glances XML-RPC server glances -s introduced a configurable CORS origin lis...

7.4CVSS5.8AI score0.00409EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-57452

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vim is an open source, command line text editor. Prior to 9.2.0671, when Vim opens a file encrypted with the VimCrypt04! or VimCrypt05! method xchacha20poly1305...

5.5CVSS5.8AI score0.0012EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53318

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925txcheckaggr Move the NULL check for 'sta' before dereferencing it to prevent a possible crash...

5.8AI score0.00157EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-53310

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - soc/tegra: cbb: Fix cross-fabric target timeout lookup When a fabric receives an error interrupt, the error may have occurred on a different fabric. The target...

5.8AI score0.00154EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added yesterday2 views

Fedora 43 : perl-DBI (2026-d74dd170ab)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-d74dd170ab advisory. Update to 1.648; Fix CVE-2026-9698 and CVE-2026-10879 Tenable has extracted the preceding description block directly from the Fedora security...

9.8CVSS5.9AI score0.00413EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-46611

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, the Glances XML-RPC server glances -s, implemented in glances/server.py does no...

5.3CVSS5.8AI score0.00156EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added yesterday2 views

Linux Distros Unpatched Vulnerability : CVE-2026-40082

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have missing sessionregenerateid after login, leading to Session...

5.4CVSS5.8AI score0.00183EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added yesterday4 views

Linux Distros Unpatched Vulnerability : CVE-2026-57453

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vim is an open source, command line text editor. From 9.1.1784 until 9.2.0678, when the bundled zip plugin autoload/zip.vim falls back to PowerShell to browse,...

7.3CVSS6.1AI score0.00137EPSS
Exploits0References3
Total number of security vulnerabilities338597