Plugins

As information about new vulnerabilities is discovered and released into the general public domain, Tenable Research designs programs to detect them. These programs are named plugins and are written in the Nessus Attack Scripting Language (NASL). The plugins contain vulnerability information, a simplified set of remediation actions and the algorithm to test for the presence of the security issue. Tenable Research has published 417876 plugins, covering 140064 CVE IDs and 32952 Bugtraq IDs.

Search

Newest

IDNameProductFamilySeverity
505542Siemens SCALANCE, RUGGEDCOM, and SIPLUS Out-of-bounds Write (CVE-2025-15467)Tenable OT SecurityTenable.ot
critical
505541Siemens SIPROTEC 5 Unrestricted Upload of File with Dangerous Type (CVE-2025-40808)Tenable OT SecurityTenable.ot
medium
444624SCA: security update for org.infinispan:infinispan-core (GHSA-4hhg-8ghq-vwq6)Tenable Cloud SecuritySCA Checks
high
444624SCA: security update for org.infinispan:infinispan-core (GHSA-4hhg-8ghq-vwq6)Tenable Self-Hosted Container SecuritySCA Checks
high
444623SCA: security update for code-index-mcp (GHSA-647r-72hf-4vmh)Tenable Cloud SecuritySCA Checks
medium
444623SCA: security update for code-index-mcp (GHSA-647r-72hf-4vmh)Tenable Self-Hosted Container SecuritySCA Checks
medium
444622SCA: security update for @wonderwhy-er/desktop-commander (GHSA-r87g-78mx-3wg4)Tenable Cloud SecuritySCA Checks
medium
444622SCA: security update for @wonderwhy-er/desktop-commander (GHSA-r87g-78mx-3wg4)Tenable Self-Hosted Container SecuritySCA Checks
medium
444621SCA: security update for mcp-atlassian (GHSA-489g-7rxv-6c8q)Tenable Cloud SecuritySCA Checks
high
444621SCA: security update for mcp-atlassian (GHSA-489g-7rxv-6c8q)Tenable Self-Hosted Container SecuritySCA Checks
high
444620SCA: security update for morgan (GHSA-4vj7-5mj6-jm8m)Tenable Cloud SecuritySCA Checks
medium
444620SCA: security update for morgan (GHSA-4vj7-5mj6-jm8m)Tenable Self-Hosted Container SecuritySCA Checks
medium
444619SCA: security update for api-platform/core, api-platform/hal, api-platform/json-api (GHSA-pjhx-3c3w-9v23)Tenable Cloud SecuritySCA Checks
medium
444619SCA: security update for api-platform/core, api-platform/hal, api-platform/json-api (GHSA-pjhx-3c3w-9v23)Tenable Self-Hosted Container SecuritySCA Checks
medium
444618SCA: security update for @libp2p/gossipsub (GHSA-cwc9-cp4j-mcvv)Tenable Cloud SecuritySCA Checks
high
444618SCA: security update for @libp2p/gossipsub (GHSA-cwc9-cp4j-mcvv)Tenable Self-Hosted Container SecuritySCA Checks
high
444617SCA: security update for kimai/kimai (GHSA-pj8j-p4g4-4vw8)Tenable Cloud SecuritySCA Checks
medium
444617SCA: security update for kimai/kimai (GHSA-pj8j-p4g4-4vw8)Tenable Self-Hosted Container SecuritySCA Checks
medium
444616SCA: security update for tarteaucitronjs (GHSA-jxj7-g6gm-49j7)Tenable Cloud SecuritySCA Checks
medium
444616SCA: security update for tarteaucitronjs (GHSA-jxj7-g6gm-49j7)Tenable Self-Hosted Container SecuritySCA Checks
medium
326293Linux Distros Unpatched Vulnerability : CVE-2026-55689NessusMisc.
medium
326292Linux Distros Unpatched Vulnerability : CVE-2026-59858NessusMisc.
high
326291Linux Distros Unpatched Vulnerability : CVE-2026-15028NessusMisc.
low
326290Linux Distros Unpatched Vulnerability : CVE-2026-58459NessusMisc.
high
326289Linux Distros Unpatched Vulnerability : CVE-2026-59831NessusMisc.
medium
326288Linux Distros Unpatched Vulnerability : CVE-2026-59856NessusMisc.
high
326287Linux Distros Unpatched Vulnerability : CVE-2026-59857NessusMisc.
medium
326286Fedora 45 : sssd (2026-8fad0036a5)NessusFedora Local Security Checks
high
326285Kibana 8.x < 8.19.17 / 9.x < 9.3.6 / 9.4.x < 9.4.3 DoS (ESA-2026-45)NessusCGI abuses
medium
326284Kibana 7.x < 7.17.15 / 8.x < 8.11.1 Log Injection (ESA-2026-53)NessusCGI abuses
high
326283Kibana 8.x < 8.16.3 / 8.17.x < 8.17.2 Authorization Bypass (ESA-2026-51)NessusCGI abuses
medium
326282Kibana 8.x < 8.19.15 / 9.x < 9.3.4 DoS (ESA-2026-49)NessusCGI abuses
medium
326281Kibana 8.x < 8.18.9 / 8.19.x < 8.19.6 / 9.0.x < 9.0.8 / 9.1.x < 9.1.6 Information Disclosure (ESA-2026-50)NessusCGI abuses
medium
326280Coder < 2.29.17 / 2.30.x < 2.32.7 / 2.33.x < 2.33.8 / 2.34.x < 2.34.2 Multiple VulnerabilitiesNessusMisc.
high
326279Coder < 2.29.7 / 2.30.x < 2.30.2 Workspace Auto-Creation Without Consent (CVE-2026-44454)NessusMisc.
high
326278Coder 2.30.x < 2.32.7 / 2.33.x < 2.33.8 / 2.34.x < 2.34.2 AI Bridge Proxy TLS Verification BypassNessusMisc.
high
326277MiracleLinux 8 : gstreamer1-plugins-good-1.16.1-7.el8_10 (AXSA:2026-1245:01)NessusMiracle Linux Local Security Checks
high
326276MiracleLinux 8 : [security - high] ruby:3.3, rubygem-pg-1.5.4-1.module+el8+2002+f8aade84.ML.1, ruby-3.3.10-7.module+el8+2002+f8aade84 (AXSA:2026-1246:01)NessusMiracle Linux Local Security Checks
high
326275Oracle Linux 7 : tigervnc (ELSA-2026-22456)NessusOracle Linux Local Security Checks
critical
326274Oracle Linux 9 : buildah (ELSA-2026-37410)NessusOracle Linux Local Security Checks
high
326273Oracle Linux 9 : podman (ELSA-2026-37123)NessusOracle Linux Local Security Checks
high
326272Jinja2 < 3.1.6 Sandbox Bypass (CVE-2025-27516)NessusMisc.
high
326271AlmaLinux 8 : tomcat (ALSA-2026:37137)NessusAlma Linux Local Security Checks
high
326270RockyLinux 9 : gstreamer1-plugins-good (RLSA-2026:37129)NessusRocky Linux Local Security Checks
high
326269RockyLinux 10 : tomcat (RLSA-2026:36788)NessusRocky Linux Local Security Checks
high
326268RockyLinux 9 : gstreamer1-plugins-bad-free (RLSA-2026:36834)NessusRocky Linux Local Security Checks
high
326267RockyLinux 10 : tomcat9 (RLSA-2026:36790)NessusRocky Linux Local Security Checks
high
326266RockyLinux 10 : gstreamer1-plugins-bad-free (RLSA-2026:36749)NessusRocky Linux Local Security Checks
high
326265RockyLinux 9 : freerdp (RLSA-2026:37207)NessusRocky Linux Local Security Checks
high
326264RockyLinux 10 : gstreamer1-plugins-good (RLSA-2026:36675)NessusRocky Linux Local Security Checks
high

Updated

IDNameProductFamilySeverity
99364Microsoft .NET Security Rollup EnumerationNessusWindows
info
93121Oracle Access Manager Webgate Information Disclosure (July 2016 CPU)NessusMisc.
medium
90860Oracle Application Testing Suite DetectionNessusMisc.
info
90679Oracle WebLogic Server Multiple Vulnerabilities (April 2016 CPU)NessusMisc.
critical
88087Oracle WebLogic Portal DetectionNessusMisc.
info
88086Oracle WebLogic Portal Apache Commons File Upload (January 2016 CPU)NessusMisc.
high
88053Oracle WebLogic Server Multiple Vulnerabilities (January 2016 CPU)NessusMisc.
high
87209Oracle WebLogic Server Java Object Deserialization RCE (Local Check)NessusMisc.
critical
86575Oracle Enterprise Manager Agent Installation Detection (credentialed check)NessusMisc.
info
84823Oracle WebLogic Server Multiple Vulnerabilities (July 2015 CPU)NessusMisc.
medium
82822Oracle WebLogic Server Multiple Vulnerabilities (April 2015 CPU) (POODLE)NessusMisc.
medium
81777MongoDB Service Without Authentication DetectionNessusDatabases
critical
81048Oracle Forms and Reports Multiple Unspecified Vulnerabilities (January 2015 CPU)NessusMisc.
medium
80965Oracle Enterprise Manager Cloud Control Installation Detection (credentialed check)NessusMisc.
info
80909Oracle WebLogic Server Multiple Vulnerabilities (January 2015 CPU)NessusMisc.
high
78910Oracle JDeveloper Installation DetectionNessusMisc.
info
78699Oracle Adaptive Access Manager Server DetectionNessusMisc.
info
78541Oracle WebLogic Server Multiple Vulnerabilities (October 2014 CPU)NessusMisc.
high
78076Oracle Application Express (APEX) / REST Data Services Listener Installation DetectionNessusMisc.
info
77421Oracle Access Manager Unspecified Vulnerability (credentialed check, April 2014 CPU)NessusWindows
medium
76708Oracle BI Publisher Installation DetectionNessusMisc.
info
76617Oracle HTTP Server InstalledNessusMisc.
info
76527Oracle WebLogic Server Multiple Vulnerabilities (July 2014 CPU)NessusMisc.
high
74466Oracle Siebel CRM Server DetectionNessusWindows
info
74151Oracle Event Processing CVE-2014-2424 Unspecified Vulnerability (April 2014 CPU)NessusMisc.
medium
74150Oracle Event Processing Installation Detection (credentialed check)NessusMisc.
info
74042Oracle WebLogic Server Multiple Vulnerabilities (April 2013 CPU)NessusCGI abuses
medium
73914Oracle WebLogic Server Security Subcomponent Unspecified Vulnerability (April 2014 CPU)NessusMisc.
medium
73913Oracle WebLogic Server DetectionNessusMisc.
info
73825Oracle Data Quality and Profiling Client DetectionNessusWindows
info
73614Oracle Access Manager Unspecified WebGate Webserver Plugin VulnerabilityNessusMisc.
medium
72776Oracle WebCenter Sites Local Installation DetectionNessusWindows
info
72213Oracle Access Manager Server Installation Detection (credentialed check)NessusMisc.
info
72064Oracle WebCenter Portal Installation DetectionNessusMisc.
info
72043Oracle Internet Directory LDAP Server Unspecified Remote Information DisclosureNessusMisc.
medium
72042Oracle Identity Manager DetectionNessusMisc.
info
71644Oracle Database Patch Info (credentialed check)NessusDatabases
info
71643Oracle Installed Software Enumeration (Windows)NessusWindows
info
71642Oracle Installed Software Enumeration (Linux / Unix)NessusMisc.
info
63062VMware vCenter Data CollectionNessusVMware ESX Local Security Checks
info
63060VMware vCenter SOAP API SettingsNessusSettings
info
57396VMware vSphere DetectNessusService detection
info
57395VMware SOAP API SettingsNessusSettings
info
503279Siemens SCALANCE, RUGGEDCOM, SIPLUS, and SINEC RADIUS Protocol Forgery Attacks (CVE-2024-3596)Tenable OT SecurityTenable.ot
critical
444563SCA: security update for css_parser (GHSA-9pmc-p236-855h)Tenable Cloud SecuritySCA Checks
high
444563SCA: security update for css_parser (GHSA-9pmc-p236-855h)Tenable Self-Hosted Container SecuritySCA Checks
high
444558SCA: security update for soupsieve (GHSA-836r-79rf-4m37)Tenable Cloud SecuritySCA Checks
high
444558SCA: security update for soupsieve (GHSA-836r-79rf-4m37)Tenable Self-Hosted Container SecuritySCA Checks
high
444557SCA: security update for github.com/enchant97/note-mark/backend (GHSA-588f-fvcv-xhvf)Tenable Cloud SecuritySCA Checks
medium
444557SCA: security update for github.com/enchant97/note-mark/backend (GHSA-588f-fvcv-xhvf)Tenable Self-Hosted Container SecuritySCA Checks
medium