Severity: Medium
ID: 326250
File Name: ubuntu_USN-8526-1.nasl
Version: 1.1
Type: Local
Agent: unix
Family: Ubuntu Local Security Checks
Published: 7/10/2026
Updated: 7/10/2026
Supported Sensors: Tenable Cloud Security, Tenable Self-Hosted Container Security, Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Factor: Low
Score: 3.5
Percentile: 51.96
Risk Factor: Medium
Base Score: 5.6
Temporal Score: 4.1
Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:C
CVSS Score Source: CVE-2026-48029
Risk Factor: Medium
Base Score: 6.8
Temporal Score: 5.9
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
CVSS Score Source: CVE-2026-47254
CPE: p-cpe:/a:canonical:ubuntu_linux:heif-view, p-cpe:/a:canonical:ubuntu_linux:heif-thumbnailer, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-ffmpegdec, p-cpe:/a:canonical:ubuntu_linux:libheif-plugins-all, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-jpegenc, p-cpe:/a:canonical:ubuntu_linux:heif-gdk-pixbuf, p-cpe:/a:canonical:ubuntu_linux:libheif-dev, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-j2kenc, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-x265, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-aomdec, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-j2kdec, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-libde265, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-svtenc, p-cpe:/a:canonical:ubuntu_linux:libheif1, p-cpe:/a:canonical:ubuntu_linux:libheif-examples, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-dav1d, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-rav1e, cpe:/o:canonical:ubuntu_linux:26.04:-:lts, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-jpegdec, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-kvazaar, p-cpe:/a:canonical:ubuntu_linux:libheif-plugin-aomenc
Required KB Items: Host/cpu, Host/Ubuntu, Host/Ubuntu/release, Host/Debian/dpkg-l
Exploit Ease: No known exploits are available
Patch Publication Date: 7/9/2026
Vulnerability Publication Date: 6/18/2026
CVE: CVE-2026-47254, CVE-2026-47709, CVE-2026-47714, CVE-2026-48029, CVE-2026-50142
IAVB: 2026-B-0158
USN: 8526-1