Plugins

As information about new vulnerabilities is discovered and released into the general public domain, Tenable Research designs programs to detect them. These programs are named plugins and are written in the Nessus Attack Scripting Language (NASL). The plugins contain vulnerability information, a simplified set of remediation actions and the algorithm to test for the presence of the security issue. Tenable Research has published 317779 plugins, covering 116349 CVE IDs and 30933 Bugtraq IDs.

Search

Newest

IDNameProductFamilySeverity
303479macOS 14.x < 14.8.5 Multiple Vulnerabilities (126796)NessusMacOS X Local Security Checks
high
303478macOS 15.x < 15.7.5 Multiple Vulnerabilities (126795)NessusMacOS X Local Security Checks
high
303477Linux Distros Unpatched Vulnerability : CVE-2026-4538NessusMisc.
high
303476Linux Distros Unpatched Vulnerability : CVE-2026-4675NessusMisc.
high
303475Linux Distros Unpatched Vulnerability : CVE-2026-4680NessusMisc.
high
303474Mozilla Firefox < 149.0NessusWindows
high
303473Mozilla Firefox ESR < 140.9NessusMacOS X Local Security Checks
high
303472Mozilla Firefox ESR < 140.9NessusWindows
high
303471Mozilla Firefox < 149.0NessusMacOS X Local Security Checks
high
303470Mozilla Firefox ESR < 115.34NessusMacOS X Local Security Checks
high
303469Mozilla Firefox ESR < 115.34NessusWindows
high
303468Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50160)NessusOracle Linux Local Security Checks
critical
303467Linux Distros Unpatched Vulnerability : CVE-2026-4678NessusMisc.
high
303466Linux Distros Unpatched Vulnerability : CVE-2026-30836NessusMisc.
critical
303465Linux Distros Unpatched Vulnerability : CVE-2026-4679NessusMisc.
high
303464Linux Distros Unpatched Vulnerability : CVE-2026-4677NessusMisc.
high
303463Linux Distros Unpatched Vulnerability : CVE-2026-33191NessusMisc.
high
303462Linux Distros Unpatched Vulnerability : CVE-2026-33040NessusMisc.
high
303461Linux Distros Unpatched Vulnerability : CVE-2026-33064NessusMisc.
high
303460Linux Distros Unpatched Vulnerability : CVE-2026-33065NessusMisc.
medium
303459Linux Distros Unpatched Vulnerability : CVE-2026-33192NessusMisc.
high
303458Linux Distros Unpatched Vulnerability : CVE-2026-33186NessusMisc.
critical
303457Linux Distros Unpatched Vulnerability : CVE-2026-30924NessusMisc.
critical
303456Linux Distros Unpatched Vulnerability : CVE-2026-29111NessusMisc.
medium
303455Linux Distros Unpatched Vulnerability : CVE-2026-4676NessusMisc.
high
303454Linux Distros Unpatched Vulnerability : CVE-2026-4674NessusMisc.
high
303453Linux Distros Unpatched Vulnerability : CVE-2026-4673NessusMisc.
high
303452ConnectWise ScreenConnect < 26.1 Authentication BypassNessusMisc.
critical
303451Unraid < 7.2.4 Multiple Vulnerabilities (ZDI-26-171 / ZDI-26-172)NessusCGI abuses
high
303450MantisBT 2.28.x < 2.28.2 Timeline Tag Name XSS (GHSA-73vx-49mv-v8w5)NessusCGI abuses : XSS
medium
303449MantisBT < 2.28.1 SOAP API Authentication Bypass (GHSA-phrq-pc6r-f6gh)NessusCGI abuses
critical
303448MantisBT 2.28.0 Tag Deletion XSS (GHSA-fh48-f69w-7vmp)NessusCGI abuses : XSS
medium
303447RHEL 8 : 389-ds:1.4 (RHSA-2026:5511)NessusRed Hat Local Security Checks
high
303446RHEL 9 : osbuild-composer (RHSA-2026:5533)NessusRed Hat Local Security Checks
high
303445RHEL 8 : redhat-ds:11 (RHSA-2026:5514)NessusRed Hat Local Security Checks
high
303444RHEL 8 : 389-ds:1.4 (RHSA-2026:5513)NessusRed Hat Local Security Checks
high
303443RHEL 8 : redhat-ds:11 (RHSA-2026:5512)NessusRed Hat Local Security Checks
high
303442RHEL 9 : thunderbird (RHSA-2026:3516)NessusRed Hat Local Security Checks
critical
303441Linux Distros Unpatched Vulnerability : CVE-2019-25586NessusMisc.
medium
303440Linux Distros Unpatched Vulnerability : CVE-2019-25591NessusMisc.
medium
303439Linux Distros Unpatched Vulnerability : CVE-2019-25585NessusMisc.
medium
303438Alibaba Cloud Linux 3 : 0060: container-tools (ALINUX3-SA-2026:0060)NessusAlibaba Cloud Linux Local Security Checks
critical
303437Alibaba Cloud Linux 3 : 0059: postgresql:13 (ALINUX3-SA-2026:0059)NessusAlibaba Cloud Linux Local Security Checks
high
303436Alibaba Cloud Linux 3 : 0057: vim (ALINUX3-SA-2026:0057)NessusAlibaba Cloud Linux Local Security Checks
medium
303435Alibaba Cloud Linux 3 : 0055: libpng (ALINUX3-SA-2026:0055)NessusAlibaba Cloud Linux Local Security Checks
high
303434Alibaba Cloud Linux 3 : 0056: grub2 (ALINUX3-SA-2026:0056)NessusAlibaba Cloud Linux Local Security Checks
high
303433Alibaba Cloud Linux 3 : 0058: osbuild-composer (ALINUX3-SA-2026:0058)NessusAlibaba Cloud Linux Local Security Checks
critical
303432Alibaba Cloud Linux 3 : 0061: python3.11 (ALINUX3-SA-2026:0061)NessusAlibaba Cloud Linux Local Security Checks
medium
303431RockyLinux 8 : virt:rhel and virt-devel:rhel (RLSA-2026:5578)NessusRocky Linux Local Security Checks
high
303430RockyLinux 8 : mysql:8.0 (RLSA-2026:5580)NessusRocky Linux Local Security Checks
medium

Updated

IDNameProductFamilySeverity
66334Patch ReportNessusGeneral
info
53545Plone DetectionNessusCGI abuses
info
505309Qnap QTS and QuTS hero Improper Neutralization of Special Elements used in an OS Command (CVE-2024-14026)Tenable OT SecurityTenable.ot
medium
505308Qnap QTS and QuTS hero Improper Neutralization of Special Elements used in a Command (CVE-2024-14026)Tenable OT SecurityTenable.ot
medium
505307Qnap QTS and QuTS hero Improper Neutralization of CRLF Sequences (CVE-2024-14026)Tenable OT SecurityTenable.ot
medium
505306Qnap QTS and QuTS hero Improper Neutralization of CRLF Sequences (CVE-2024-14026)Tenable OT SecurityTenable.ot
medium
505305Siemens APE1808 Inconsistent Interpretation of HTTP Requests (CVE-2025-55018)Tenable OT SecurityTenable.ot
medium
505304Siemens SIMATIC S7-1500 NULL Pointer Dereference (CVE-2025-38364)Tenable OT SecurityTenable.ot
medium
505303Siemens SIMATIC S7-1500 Improper Input Validation(CVE-2025-38457)Tenable OT SecurityTenable.ot
medium
505302Siemens APE1808 Improper Neutralization of Script in Attributes in a Web Page (CVE-2025-4615)Tenable OT SecurityTenable.ot
high
505301Siemens APE1808 Insertion of Sensitive Information into Sent Data (CVE-2024-46665)Tenable OT SecurityTenable.ot
low
505300Siemens APE1808 Heap-based Buffer Overflow (CVE-2023-27997)Tenable OT SecurityTenable.ot
critical
505299Siemens SIMATIC S7-1500 Use After Free (CVE-2025-38212)Tenable OT SecurityTenable.ot
high
505298Siemens APE1808 Improper Restriction of Communication Channel to Intended Endpoints (CVE-2024-26013)Tenable OT SecurityTenable.ot
high
505297Siemens SIMATIC S7-1500 Use After Free(CVE-2025-38236)Tenable OT SecurityTenable.ot
high
505296Siemens APE1808 Improper Check for Unusual or Exceptional Conditions (CVE-2026-0227)Tenable OT SecurityTenable.ot
high
505295Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2025-38067)Tenable OT SecurityTenable.ot
medium
505294Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2025-38071)Tenable OT SecurityTenable.ot
medium
505293Siemens APE1808 Integer Overflow or Wraparound (CVE-2024-46669)Tenable OT SecurityTenable.ot
medium
505292Siemens SIMATIC S7-1500 NULL Pointer Dereference(CVE-2025-38231)Tenable OT SecurityTenable.ot
medium
505291Siemens APE1808 Use of Externally-Controlled Format String (CVE-2025-64157)Tenable OT SecurityTenable.ot
high
505290Siemens SIMATIC S7-1500 NULL Pointer Dereference (CVE-2025-38100)Tenable OT SecurityTenable.ot
medium
505289Siemens APE1808 Improper Restriction of Communication Channel to Intended Endpoints (CVE-2024-50565)Tenable OT SecurityTenable.ot
high
505288Siemens SIMATIC S7-1500 NULL Pointer Dereference (CVE-2025-38198)Tenable OT SecurityTenable.ot
high
505287Siemens SIMATIC S7-1500 NULL Pointer Dereference(CVE-2025-38214)Tenable OT SecurityTenable.ot
medium
505286Siemens APE1808 Heap-based Buffer Overflow (CVE-2022-42475)Tenable OT SecurityTenable.ot
critical
505285Siemens SIMATIC S7-1500 Integer Overflow or Wraparound (CVE-2025-38222)Tenable OT SecurityTenable.ot
medium
505284Siemens SIMATIC S7-1500 Concurrent Execution using Shared Resource with Improper Synchronization (CVE-2025-38393)Tenable OT SecurityTenable.ot
medium
505283Siemens SIMATIC S7-1500 Improper Locking (CVE-2025-38058)Tenable OT SecurityTenable.ot
medium
505282Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2025-38470)Tenable OT SecurityTenable.ot
medium
505281Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2025-38280)Tenable OT SecurityTenable.ot
high
505280Siemens SIMATIC S7-1500 Missing Release of Memory after Effective Lifetime (CVE-2025-38124)Tenable OT SecurityTenable.ot
medium
505279Siemens APE1808 Weak Authentication (CVE-2024-50563)Tenable OT SecurityTenable.ot
critical
505278Siemens APE1808 Improper Check for Unusual or Exceptional Conditions(CVE-2026-0229)Tenable OT SecurityTenable.ot
high
505277Siemens APE1808 Exposure of Sensitive Information to an Unauthorized Actor (CVE-2025-68686)Tenable OT SecurityTenable.ot
medium
505276Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2025-38400)Tenable OT SecurityTenable.ot
medium
505275Siemens SIMATIC S7-1500 Concurrent Execution using Shared Resource with Improper Synchronization (CVE-2025-38083)Tenable OT SecurityTenable.ot
medium
505274Siemens APE1808 Improper Restriction of Communication Channel to Intended Endpoints (CVE-2025-22251)Tenable OT SecurityTenable.ot
medium
505273Siemens SIMATIC S7-1500 Double Free (CVE-2025-38079)Tenable OT SecurityTenable.ot
high
505272Siemens APE1808 Insufficient Session Expiration (CVE-2025-25252)Tenable OT SecurityTenable.ot
medium
505271Siemens APE1808 Insertion of Sensitive Information into Sent Data (CVE-2024-47569)Tenable OT SecurityTenable.ot
medium
505270Siemens APE1808 Improper Limitation of a Pathname to a Restricted Directory (CVE-2024-48885)Tenable OT SecurityTenable.ot
critical
505269Siemens APE1808 Authentication Bypass Using an Alternate Path or Channel (CVE-2026-24858)Tenable OT SecurityTenable.ot
critical
505268Siemens SIMATIC S7-1500 NULL Pointer Dereference(CVE-2025-38215)Tenable OT SecurityTenable.ot
medium
505267Siemens SIMATIC S7-1500 NULL Pointer Dereference (CVE-2025-38167)Tenable OT SecurityTenable.ot
medium
505266Siemens APE1808 Improper Limitation of a Pathname to a Restricted Directory (CVE-2024-48884)Tenable OT SecurityTenable.ot
critical
505265Siemens APE1808 Improper Certificate Validation (CVE-2026-0228)Tenable OT SecurityTenable.ot
medium
505264Siemens SIMATIC S7-1500 Reachable Assertion (CVE-2025-38285)Tenable OT SecurityTenable.ot
medium
505263Siemens APE1808 Incorrect Provision of Specified Functionality (CVE-2025-58325)Tenable OT SecurityTenable.ot
medium
505262Siemens APE1808 Exposure of Sensitive System Information to an Unauthorized Control Sphere (CVE-2025-4229)Tenable OT SecurityTenable.ot
medium