检测

Plugins Pipeline

At Tenable, we use a multitude of approaches to deliver the best possible coverage to our customers and use a number of factors to prioritize vulnerabilities. Browse upcoming plugins that the Tenable Research team is prioritizing by CVE, detection status or keyword search. Please note that this page does not represent an exhaustive list of plugins that Tenable Research intends to provide coverage for nor for which plugin coverage is provided.

Plugins are categorized into one of the following detection statuses:

  • Development: Tenable Research team is actively working on providing a detection.
  • Testing: The plugin is in the production build & release pipeline.
  • Released: The plugin has been published on the displayed date.

RSS Feeds

TitleCVEsUpdatedStatus
freebsd 9fdad262-2e0f-11f1-88c7-00a098b42aeb: Python -- The webbrowser.open() API allows leading dashesCVE-2026-45192026/4/2testing
freebsd 0be929a5-2e0f-11f1-88c7-00a098b42aeb: Python -- imaplib module, when passed a user-controlled command, can have additional commands injected using newlinesCVE-2025-153662026/4/2testing
freebsd 1dc2aae1-0793-4dbd-8548-e63ae0e1bdaf: chromium -- security fixesCVE-2026-5279, CVE-2026-5286, CVE-2026-5290, CVE-2026-5292, CVE-2026-5288, CVE-2026-5276, CVE-2026-5283, CVE-2026-5291, CVE-2026-5289, CVE-2026-5285, CVE-2026-5278, CVE-2026-5281, CVE-2026-5274, CVE-2026-5280, CVE-2026-5282, CVE-2026-5275, CVE-2026-5273, CVE-2026-5284, CVE-2026-5272, CVE-2026-5277, CVE-2026-52872026/4/2testing
freebsd 6d3488ae-2e0f-11f1-88c7-00a098b42aeb: Python -- poplib module, when passed a user-controlled command, can have additional commands injected using newlinesCVE-2025-153672026/4/2testing
cisco cisco-sa-nd-ssrf-NAen4O7r: Cisco Nexus Dashboard and Nexus Dashboard Insights Server-Side Request Forgery VulnerabilityCVE-2026-200412026/4/2development
cisco cisco-sa-ndi-afw-rJuRC5dZ: Cisco Nexus Dashboard Insights Arbitrary File Write VulnerabilityCVE-2026-201742026/4/2development
cisco cisco-sa-cimc-cmd-inj-3hKN3bVt: Cisco Integrated Management Controller Command Injection and Remote Code Execution VulnerabilitiesCVE-2026-20096, CVE-2026-20095, CVE-2026-20094, CVE-2026-200972026/4/2development
cisco cisco-sa-nd-cbid-5YqkOSHu: Cisco Nexus Dashboard Configuration Backup REST API Unauthorized Access VulnerabilityCVE-2026-200422026/4/2development
cisco cisco-sa-cimc-auth-bypass-AgG2BxTn: Cisco Integrated Management Controller Authentication Bypass VulnerabilityCVE-2026-200932026/4/2development
cisco cisco-sa-cimc-xss-A2tkgVAB: Cisco Integrated Management Controller Cross-Site Scripting VulnerabilitiesCVE-2026-20090, CVE-2026-20085, CVE-2026-20087, CVE-2026-20089, CVE-2026-200882026/4/2development
rocky_linux RLSA-2026:6435: RLSA-2026:6435: mariadb:10.11 security update (Moderate)CVE-2023-52969, CVE-2025-30722, CVE-2023-52970, CVE-2025-30693, CVE-2026-21968, CVE-2025-21490, CVE-2023-529712026/4/2development
redhat RHSA-2026:6436: RHSA-2026:6436: rsync security update (Moderate)CVE-2025-101582026/4/2development
redhat RHSA-2026:6445: RHSA-2026:6445: libpng12 security update (Important)CVE-2026-256462026/4/2development
redhat RHSA-2026:6435: RHSA-2026:6435: mariadb:10.11 security update (Moderate)CVE-2023-52969, CVE-2025-30722, CVE-2023-52970, CVE-2025-30693, CVE-2026-21968, CVE-2025-21490, CVE-2023-529712026/4/2development
redhat RHSA-2026:6463: RHSA-2026:6463: openssh security update (Important)CVE-2026-34972026/4/2development
redhat RHSA-2026:6464: RHSA-2026:6464: python3 security update (Moderate)CVE-2026-1299, CVE-2025-15367, CVE-2025-153662026/4/2development
redhat RHSA-2026:6439: RHSA-2026:6439: libpng15 security update (Important)CVE-2026-256462026/4/2development
redhat RHSA-2026:6427: RHSA-2026:6427: nginx:1.26 security update (Moderate)CVE-2026-16422026/4/2development
miracle_linux AXSA:2026-388:10: AXSA:2026-388:10: python3.12-3.12.12-4.el8_10CVE-2026-45192026/4/2development
miracle_linux AXSA:2026-389:23: AXSA:2026-389:23: kernel-4.18.0-553.115.1.el8_10CVE-2026-23204, CVE-2026-23209, CVE-2025-381802026/4/2development
miracle_linux AXSA:2026-391:09: AXSA:2026-391:09: freerdp-2.11.7-1.el9_7.3CVE-2026-26965, CVE-2026-269552026/4/2development
miracle_linux AXSA:2026-385:07: AXSA:2026-385:07: python3.11-3.11.13-5.2.el9_7CVE-2026-45192026/4/2development
miracle_linux AXSA:2026-386:01: AXSA:2026-386:01: libxslt-1.1.34-14.el9_7.1CVE-2023-404032026/4/2development
miracle_linux AXSA:2026-387:02: AXSA:2026-387:02: squid-5.5-22.el9_7.4CVE-2026-32748, CVE-2026-335262026/4/2development
miracle_linux AXSA:2026-390:11: AXSA:2026-390:11: python3.12-3.12.12-4.el9_7.2CVE-2026-45192026/4/2development
microsoft_mariner CVE-2026-33416: CVE-2026-33416CVE-2026-334162026/4/2development
debian_linux dsa-6190: Debian dsa-6190 : gir1.2-gst-plugins-bad-1.0 - security updateCVE-2026-3086, CVE-2026-3081, CVE-2026-2923, CVE-2026-3082, CVE-2026-30842026/4/2development
debian_linux dsa-6191: Debian dsa-6191 : gstreamer1.0-plugins-ugly - security updateCVE-2026-2922, CVE-2026-29202026/4/2development
Devolutions Server < 2026.1.12 Multiple Vulnerabilities (DEVO-2026-0010)CVE-2026-4925, CVE-2026-4828, CVE-2026-4829, CVE-2026-4989, CVE-2026-4924, CVE-2026-5175, CVE-2026-49272026/4/1development
Docker Desktop < 4.67.0 SSRF in Docker Model Runner OCI Registry Client (CVE-2026-33990)CVE-2026-339902026/4/1development
Notepad++ < 8.9.3 libcurl TLS CA Store Caching (CVE-2025-14819)CVE-2025-148192026/4/1development
Multiple Vulnerabilities in FreeRDP2026/4/1development
Multiple Vulnerabilities in Zabbix2026/4/1development
Multiple Vulnerabilities in Suricata2026/4/1development
Security Update for Docker Desktop2026/4/1development
Multiple Vulnerabilities in ImageMagick2026/4/1development
nginx nginx-CVE-2026-27651.html: NULL pointer dereference while using CRAM-MD5 or APOPCVE-2026-276512026/3/31development
nginx nginx-CVE-2026-1642.html: SSL upstream injectionCVE-2026-16422026/3/31development
cisco cisco-sa-asa-ftd-ios-dos-kPEpQGGK: Cisco IOS, IOS XE, Secure Firewall Adaptive Security Appliance, and Secure Firewall Threat Defense Software IKEv2 Denial of Service VulnerabilityCVE-2026-200122026/3/31development
nginx nginx-CVE-2026-27784.html: Buffer overflow in the ngx_http_mp4_moduleCVE-2026-277842026/3/31development
nginx nginx-CVE-2026-28753.html: Injection in auth_http and XCLIENTCVE-2026-287532026/3/31development
nginx nginx-CVE-2026-32647.html: Buffer overflow in the ngx_http_mp4_moduleCVE-2026-326472026/3/31development
nginx nginx-CVE-2026-27654.html: Buffer overflow in ngx_http_dav_moduleCVE-2026-276542026/3/31development
nginx nginx-CVE-2026-28755.html: OCSP result bypass in streamCVE-2026-287552026/3/31development
cisco cisco-sa-asa-ftd-ios-dos-kPEpQGGK: Cisco IOS, IOS XE, Secure Firewall Adaptive Security Appliance, and Secure Firewall Threat Defense Software IKEv2 Denial of Service VulnerabilityCVE-2026-200122026/3/31development
PaperCut NG/MF Security Bulletin (March 2026)CVE-2026-5115, CVE-2026-47942026/3/31development
LangChain Core < 1.2.22 Path Traversal (CVE-2026-34070)CVE-2026-340702026/3/31development
Grafana March 2026 Multiple VulnerabilitiesCVE-2026-27880, CVE-2026-27879, CVE-2026-27877, CVE-2026-283752026/3/30development
suse_linux SUSE-SU-2026:1126-1: SUSE SLED15 / SLES15 / openSUSE 15 : Security update for MozillaFirefox (Important) (SUSE-SU-2026:1126-1)CVE-2026-4702, CVE-2025-59375, CVE-2026-4705, CVE-2026-4688, CVE-2026-4716, CVE-2026-4713, CVE-2026-4706, CVE-2026-4687, CVE-2026-4708, CVE-2026-4696, CVE-2026-4694, CVE-2026-4720, CVE-2026-4715, CVE-2026-4684, CVE-2026-4700, CVE-2026-4691, CVE-2026-4707, CVE-2026-4717, CVE-2026-4704, CVE-2026-4686, CVE-2026-4712, CVE-2026-4710, CVE-2026-4709, CVE-2026-4697, CVE-2026-4689, CVE-2026-4718, CVE-2026-4699, CVE-2026-4701, CVE-2026-4693, CVE-2026-4719, CVE-2026-4721, CVE-2026-4711, CVE-2026-4695, CVE-2026-4685, CVE-2026-4714, CVE-2026-4690, CVE-2026-4692, CVE-2026-46982026/3/29development
suse_linux SUSE-SU-2026:1125-1: SUSE SLES15 : Security update for the Linux Kernel (Live Patch 0 for SUSE Linux Enterprise 15 SP7) (Important) (SUSE-SU-2026:1125-1)CVE-2025-68813, CVE-2025-71085, CVE-2025-68285, CVE-2025-68284, CVE-2025-40258, CVE-2025-40297, CVE-2025-38488, CVE-2025-40284, CVE-2025-381592026/3/29development