CVE-2026-2026
published 2026-02-13CVE-2026-2026: A vulnerability has been identified where weak file permissions in the Nessus Agent directory on Windows hosts could allow unauthorized access, potentially…
PriorityP425medium6.1CVSS 3.1
AVLACLPRLUINSUCLINAH
EPSS
0.11%
1.3th percentile
A vulnerability has been identified where weak file permissions in the Nessus Agent directory on Windows hosts could allow unauthorized access, potentially permitting Denial of Service (DoS) attacks.
Affected
40 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | microsoft.netcore.app.runtime.linux-arm | >= 10.0.0 < 10.0.6 | 10.0.6 |
| microsoft | microsoft.netcore.app.runtime.linux-arm | >= 8.0.0 < 8.0.26 | 8.0.26 |
| microsoft | microsoft.netcore.app.runtime.linux-arm | >= 9.0.0 < 9.0.15 | 9.0.15 |
| microsoft | microsoft.netcore.app.runtime.linux-arm64 | >= 10.0.0 < 10.0.6 | 10.0.6 |
| microsoft | microsoft.netcore.app.runtime.linux-arm64 | >= 8.0.0 < 8.0.26 | 8.0.26 |
| microsoft | microsoft.netcore.app.runtime.linux-arm64 | >= 9.0.0 < 9.0.15 | 9.0.15 |
| microsoft | microsoft.netcore.app.runtime.linux-musl-arm | >= 10.0.0 < 10.0.6 | 10.0.6 |
| microsoft | microsoft.netcore.app.runtime.linux-musl-arm | >= 8.0.0 < 8.0.26 | 8.0.26 |
| microsoft | microsoft.netcore.app.runtime.linux-musl-arm | >= 9.0.0 < 9.0.15 | 9.0.15 |
| microsoft | microsoft.netcore.app.runtime.linux-musl-arm64 | >= 10.0.0 < 10.0.6 | 10.0.6 |
| microsoft | microsoft.netcore.app.runtime.linux-musl-arm64 | >= 8.0.0 < 8.0.26 | 8.0.26 |
| microsoft | microsoft.netcore.app.runtime.linux-musl-arm64 | >= 9.0.0 < 9.0.15 | 9.0.15 |
| microsoft | microsoft.netcore.app.runtime.linux-musl-x64 | >= 10.0.0 < 10.0.6 | 10.0.6 |
| microsoft | microsoft.netcore.app.runtime.linux-musl-x64 | >= 8.0.0 < 8.0.26 | 8.0.26 |
| microsoft | microsoft.netcore.app.runtime.linux-musl-x64 | >= 9.0.0 < 9.0.15 | 9.0.15 |
| microsoft | microsoft.netcore.app.runtime.linux-x64 | >= 10.0.0 < 10.0.6 | 10.0.6 |
| microsoft | microsoft.netcore.app.runtime.linux-x64 | >= 8.0.0 < 8.0.26 | 8.0.26 |
| microsoft | microsoft.netcore.app.runtime.linux-x64 | >= 9.0.0 < 9.0.15 | 9.0.15 |
| microsoft | microsoft.netcore.app.runtime.osx-arm64 | >= 10.0.0 < 10.0.6 | 10.0.6 |
| microsoft | microsoft.netcore.app.runtime.osx-arm64 | >= 8.0.0 < 8.0.26 | 8.0.26 |
| microsoft | microsoft.netcore.app.runtime.osx-arm64 | >= 9.0.0 < 9.0.15 | 9.0.15 |
| microsoft | microsoft.netcore.app.runtime.osx-x64 | >= 10.0.0 < 10.0.6 | 10.0.6 |
| microsoft | microsoft.netcore.app.runtime.osx-x64 | >= 8.0.0 < 8.0.26 | 8.0.26 |
| microsoft | microsoft.netcore.app.runtime.osx-x64 | >= 9.0.0 < 9.0.15 | 9.0.15 |
| microsoft | microsoft.netcore.app.runtime.win-arm | >= 10.0.0 < 10.0.6 | 10.0.6 |
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
nvdv4.05.4MEDIUMCVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
ghsa7.5HIGH
vendor_redhat8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Keycloak: Access token disclosure and implicit flow bypass via forged client data
ghsa·2026-05-19
CVE-2026-7571 [HIGH] CWE-472 Keycloak: Access token disclosure and implicit flow bypass via forged client data
Keycloak: Access token disclosure and implicit flow bypass via forged client data
A flaw was found in Keycloak. A low-privilege user, with knowledge of user credentials and client ID, can bypass a security control intended to disable the implicit flow in OpenID Connect (OIDC) clients. By manipulating client data during a session restart, an attacker can obtain an access token that should not be available. This vulnerability can also lead to the exposure of these access tokens in server logs, proxy logs, and HTTP Referrer headers, resulting in sensitive information disclosure.
GHSA
GHSA-w7w9-2vjv-7r67: A vulnerability has been identified where weak file permissions in the Nessus Agent directory on Windows hosts could allow unauthorized access, potent
ghsa_unreviewed·2026-02-13
CVE-2026-2026 [MEDIUM] CWE-276 GHSA-w7w9-2vjv-7r67: A vulnerability has been identified where weak file permissions in the Nessus Agent directory on Windows hosts could allow unauthorized access, potent
A vulnerability has been identified where weak file permissions in the Nessus Agent directory on Windows hosts could allow unauthorized access, potentially permitting Denial of Service (DoS) attacks.
Red Hat
chromium-browser: Integer overflow in ANGLE
vendor_redhat·2026-03-03·CVSS 8.8
CVE-2026-3536 [HIGH] chromium-browser: Integer overflow in ANGLE
chromium-browser: Integer overflow in ANGLE
Integer overflow in ANGLE in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Critical)
An integer overflow flaw was found in the ANGLE component of the Chromium browser.
Upstream bug(s):
https://code.google.com/p/chromium/issues/detail?id=485622239
Statement: Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.
No detection rules found.
No public exploits indexed.
Bleepingcomputer
New Linux 'Dirty Frag' zero-day gives root on all major distros
blogs_bleepingcomputer·2026-05-08
CVE-2026-43284 New Linux 'Dirty Frag' zero-day gives root on all major distros
## New Linux 'Dirty Frag' zero-day gives root on all major distros
## Sergiu Gatlan
Kim released complete Dirty Frag documentation and a PoC exploit with distribution maintainers' agreement after an embargo on full public disclosure was broken on May 7, 2026, when an unrelated third party independently published the exploit.
"Because the embargo has currently been broken, no patch or CVE exists. After consultation with the maintainers on [email protected] and at their request, this Dirty Frag document is being published," Kim said.
To secure systems against attacks, Linux users can use the following command to remove the vulnerable esp4, esp6, and rxrpc kernel modules (however, it's important to note that this will break IPsec VPNs and AFS distributed network file systems)
Wiz
CVE-2026-2026 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.2
CVE-2026-2026 [HIGH] CVE-2026-2026 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2026 :
Tenable Nessus Agent vulnerability analysis and mitigation
A vulnerability has been identified where weak file permissions in the Nessus Agent directory on Windows hosts could allow unauthorized access, potentially permitting Denial of Service (DoS) attacks.
Source : NVD
## 5.4
Score
Published February 13, 2026
Severity MEDIUM
CNA Score 5.4
Affected Technologies
Tenable Nessus Agent
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 1.3
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:tenable:nessus_agent
Sources
Linux Severity MEDIUM Has Fix Added at: Feb 25, 2026
Windows Severity MEDIUM Has Fix Added at: Feb 25, 2026
Linux Severity
Wiz
CVE-2025-20805 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.7
CVE-2025-20805 [MEDIUM] CVE-2025-20805 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-20805 :
NixOS vulnerability analysis and mitigation
In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114696; Issue ID: MSV-4480.
Source : NVD
## 6.7
Score
Published January 6, 2026
Severity MEDIUM
CNA Score 6.7
Affected Technologies
NixOS
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 0.4
Exploitation Probability (EPSS) N/A
Affected packages and libraries
android
Sources
NVD
Nix Severity MEDIUM No Fix Added at: Jan 12, 2026
## Get a CVE risk assessment
Get a prioritize
Wiz
CVE-2026-21362 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 7.8
CVE-2026-21362 [HIGH] CVE-2026-21362 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-21362 :
Adobe Illustrator vulnerability analysis and mitigation
Illustrator versions 29.8.4, 30.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Source : NVD
## 7.8
Score
Published March 10, 2026
Severity HIGH
CNA Score 7.8
Affected Technologies
Adobe Illustrator
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 9.7
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:adobe:illustrator
Sources
Windows Severity HIGH Has Fix Added at: Mar 12, 2026
Windo
Wiz
CVE-2025-13652 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 6.5
CVE-2025-13652 [MEDIUM] CVE-2025-13652 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-13652 :
WordPress vulnerability analysis and mitigation
The CBX Bookmark & Favorite plugin for WordPress is vulnerable to generic SQL Injection via the ‘orderby’ parameter in all versions up to, and including, 2.0.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Source : NVD
## 6.5
Score
Published January 6, 2026
Severity MEDIUM
CNA Score 6.5
Affected Technologies
WordPress
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
E
Bugzilla
CVE-2026-7571 keycloak: Keycloak: Access token disclosure and implicit flow bypass via forged client data
bugzilla·2026-04-30·CVSS 7.1
CVE-2026-7571 [HIGH] CVE-2026-7571 keycloak: Keycloak: Access token disclosure and implicit flow bypass via forged client data
CVE-2026-7571 keycloak: Keycloak: Access token disclosure and implicit flow bypass via forged client data
A flaw was found in Keycloak. A low-privilege user, with knowledge of user credentials and client ID, can bypass a security control intended to disable the implicit flow in OpenID Connect (OIDC) clients. By manipulating client data during a session restart, an attacker can obtain an access token that should not be available. This vulnerability can also lead to the exposure of these access tokens in server logs, proxy logs, and HTTP Referrer headers, resulting in sensitive information disclosure.
Bugzilla
CVE-2025-43718 poppler: Poppler stack overflow [fedora-42]
bugzilla·2025-10-02·CVSS 2.9
CVE-2025-43718 [LOW] CVE-2025-43718 poppler: Poppler stack overflow [fedora-42]
CVE-2025-43718 poppler: Poppler stack overflow [fedora-42]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
The following link provides references to all essential vulnerability management information. If something is wrong or missing, please contact a member of PSIRT.
https://spaces.redhat.com/display/PRODSEC/Vulnerability+Management+-+Essential+Documents+for+Engineering+Teams
Discussion:
This message is a reminder that Fedora Linux 42 is nearing its end of life.
Fedora will stop maintaining and issuing updates for Fedora Linux 42 on 2026-05-13.
It is Fedora's policy to close all bug reports from releases that ar
2026-02-13
Published