Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Tenable Research Advisories

This page contains information regarding security vulnerabilities in third-party software discovered by a dedicated team supported by researchers and engineers at Tenable. Tenable believes in coordinated disclosure, working with vendors to better protect our customers. Here is our public key. Please refer to our Vulnerability Disclosure Policy for additional details.

For issues that impact Tenable products, please visit the Tenable Product Security Advisories. For more details on submitting vulnerability information for Tenable products, please see our Vulnerability Reporting Guidelines page.

Date Advisory ID Name Severity CVE ID
TRA-2026-50 Gogs - Authentication Bypass via Unvalidated Reverse Proxy Headers Medium CVE-2026-25119
TRA-2026-49 iba ibaPDA / ibaDatCoordinator .NET Deserialization Remote Code Execution Critical CVE-2026-8024
TRA-2026-48 SolarWinds Web Help Desk Unauthenticated File Upload High CVE-2026-28299
TRA-2026-47 Amazon Cognito 1-Click Open Redirection via OAuth Error Handling Abuse Low
TRA-2026-51 Microsoft Entra ID 1-Click Open Redirection via OAuth Error Handling Abuse Low
TRA-2026-46 ScadaBR - Multiple Vulnerabilities Critical CVE-2026-9645
CVE-2026-9646
TRA-2026-45 Gladinet Triofox Server Agent Multiple Vulnerabilities Critical CVE-2026-8364
CVE-2026-8363
CVE-2026-8362
CVE-2026-8361
CVE-2026-8360
CVE-2026-8359
TRA-2026-44 Delta Electronics DIAView Patch Bypass Critical CVE-2025-62582
TRA-2026-43 Surecart - SQL Injection Medium CVE-2026-9065
TRA-2026-42 NextGEN Gallery - SQL Injection Medium CVE-2026-9059
TRA-2026-41 Chatwoot - Second Order Time-Based Blind SQL Injection via Custom Attribute Key High CVE-2026-44706
TRA-2026-40 Microsoft Foundry Toolkit for VS Code: Command Injection via Python Interpreter Path Leading to Arbitrary Code Execution High
TRA-2026-39 Open WebUI Multiple Vulnerabilities High CVE-2026-45398
CVE-2026-45401
TRA-2026-38 aria2c Improper Certificate Validation Medium CVE-2026-8367
TRA-2026-37 wget2 Improper Certificate Validation Medium CVE-2026-1858
TRA-2026-36 Spring AI SQL Injection in PgVectorStore and friends High CVE-2026-40967
TRA-2026-35 Yuma AI - Unauthenticated personal data and order information disclosure High
TRA-2026-30 Microsoft GitHub Repository Windows-driver-samples Workflow Remote Code Execution Critical
TRA-2026-32 Flowise - Path Traversal in Vector Store basePath Medium
TRA-2026-31 Flowise - Cypher Injection in GraphCypherQAChain High CVE-2026-41274
TRA-2026-33 Flowise - Missing Authentication on NVIDIA NIM Endpoints High CVE-2026-30824
TRA-2026-34 Flowise - PII Disclosure on Unauthenticated Forgot Password Endpoint Medium
TRA-2026-28 gnutls-cli Lack of Size Restriction on X.509 AIA CA Issuers Certificate Medium
TRA-2026-27 Anthropic Claude Code Action Runner Arbitrary Code Execution via Malicious MCP Server Configuration Medium CVE-2026-47751
TRA-2026-26 Langflow - Path Traversal Arbitrary File Write via upload_user_file High CVE-2026-5027
TRA-2026-25 Langflow - Stored XSS via Malicious SVG Upload High CVE-2026-5026
TRA-2026-24 Langflow - Application Logs Exposed to All Authenticated Users Medium CVE-2026-5025
TRA-2026-23 Langflow - Missing Authorization on download_image endpoint Low CVE-2026-5022
TRA-2026-22 Botpress - Credential Disclosure via Twilio Webhook Handler High CVE-2026-4984
TRA-2026-21 Midday - Authorization Bypass Medium
TRA-2026-20 mod_gnutls Multiple Vulnerabilities High CVE-2026-33307
CVE-2026-33308
TRA-2026-19 Google Cloud Platform (GCP) BigQuery Cross Tenant Data Sources Exfiltration through Canvas Assistant High
TRA-2026-18 Delta Electronics COMMGR Multiple Vulnerabilities Critical CVE-2026-3630
CVE-2026-3631
TRA-2026-17 Nginx UI - Unauthenticated Backup Download with Encryption Key Disclosure Critical CVE-2026-27944
TRA-2026-16 Samsung MagicINFO Server Multiple Vulnerabilities High
TRA-2026-15 Google Cloud Platform (GCP) Eventarc PE to Service Agent with Pipelines High
TRA-2026-14 Microsoft Azure Data Explorer Cross-Tenant Data Leak with Custom Dashboard Critical CVE-2026-21524
TRA-2026-13 Sim Studio AI - Unauthenticated OAuth Token Theft Critical CVE-2026-3432
TRA-2026-12 Sim Studio AI - MongoDB SSRF and Arbitrary Document Deletion Critical CVE-2026-3431
TRA-2026-11 Gradio - Mocked OAuth Login Exposes Server Credentials and Uses Hardcoded Session Secret High CVE-2026-27167
TRA-2026-10 Google Cloud Platform (GCP) Vertex AI Workbench Cross-Tenant Full Account Takeover with Managed End User Credentials High CVE-2026-2244
TRA-2026-09 Nanobot Unauthenticated WhatsApp Session Hijack via WebSocket Bridge Critical CVE-2026-2577
TRA-2026-08 Gogs Cross-Repository Comment Deletion via DeleteComment Medium CVE-2026-25120
TRA-2026-07 Google Cloud Platform (GCP) Cloud Logging Cross-Tenant Denial of Wallet with Log Analytics Medium
TRA-2026-06 Google Cloud Platform (GCP) Cloud Logging Cross-Tenant BigQuery Leak with Log Analytics High
TRA-2026-05 Google Cloud Platform (GCP) Cloud Monitoring PE to Cloud Run Using Uptime Checks Service Agent Authentication High
TRA-2026-04 Google Cloud Platform (GCP) Cloud Monitoring Cross-Tenant BigQuery Leak with Custom Dashboard High
TRA-2026-03 Blind SSRF/DoS in Java TLS x509 AIA Extension High CVE-2026-21945
TRA-2026-02 Delta Electronics DIAView Multiple Vulnerabilities Critical CVE-2025-62581
CVE-2025-62582
TRA-2026-01 Trend Micro Apex Central Multiple Vulnerabilities Critical CVE-2025-69258
CVE-2025-69259
CVE-2025-69260
TRA-2025-53 Github Copilot Chat Prompt Injection via Filename Medium
TRA-2025-52 Google Cloud Platform (GCP) Google Security Operations SIEM Tenant Service Account of the SecOps Instance Access Token Leak High
TRA-2025-51 Google Cloud Platform (GCP) Google Security Operations IDE Code Execution Protection Bypass Medium
TRA-2025-50 WordPress - Ultimate Dashboard exposed API Key High
TRA-2025-49 Dell Storage Manager Multiple Vulnerabilities Critical CVE-2025-43995
CVE-2025-43994
TRA-2025-48 Google Cloud Platform (GCP) Dialogflow Service Agent Token Leak and Abuse Through Conversational Agents Low
TRA-2025-47 Windsurf Prompt Injection via Filename Medium CVE-2025-36730
TRA-2025-46 Siemens TeleControl Server Basic V3.1.2.2 Password Hash Disclosure Critical CVE-2025-40765
TRA-2025-45 Google Cloud Platform (GCP) SSRF on GCP Action Hub Extension to IP Restriction Bypass in Looker Low
TRA-2025-44 Google Cloud Platform (GCP) RCE through Git Config Hooks Override and Path Traversal Abuse in Looker High
TRA-2025-43 Google Cloud Platform (GCP) Full Internal Connection DB Exfiltration in Looker High
TRA-2025-42 Google Cloud Platform (GCP) SQL Runner Privilege Escalation to Big Query in Looker High
TRA-2025-41 Google Cloud Platform (GCP) Cross-Tenant Denial of Wallet Through Big Query in Looker Studio Low
TRA-2025-40 Google Cloud Platform (GCP) Cross-Tenant Data Sources Leak With Hyperlinks in Looker Studio High
TRA-2025-39 Google Cloud Platform (GCP) Cross-Tenant Data Sources Exfiltration through Conversational Analytics in Looker Studio High
TRA-2025-38 Google Cloud Platform (GCP) Cross Tenant SQL Injection on Spanner and Big Query Through Custom Queries on a Victim’s Data Source in Looker High
TRA-2025-37 Google Cloud Platform (GCP) Cross-Tenant SQL Injection on Big Query and Spanner Through the Linking API in Looker Studio High
TRA-2025-36 Microsoft Learn MCP Server Server-Side Request Forgery Medium
TRA-2025-35 Siemens User Management Component V2.15.1.1 Multiple Vulnerabilities Critical CVE-2025-40795
CVE-2025-40796
CVE-2025-40797
CVE-2025-40798
TRA-2025-34 BentoML CVE-2025-54381 (SSRF) Bypass High
TRA-2025-33 WordPress - Feed Them Social exposed API Key Medium
TRA-2025-32 WordPress - WP Social Ninja exposed API Key Medium
TRA-2025-31 Google Cloud Platform (GCP) Cross-Site Leak on Data Sources in Looker Studio Low
TRA-2025-30 Google Cloud Platform (GCP) Cross-Tenant Data Sources Leak With Image Rendering in Looker Studio High
TRA-2025-29 Google Cloud Platform (GCP) Zero-Click Cross-Tenant SQL Injection Vulnerability Through Stored Credentials in Looker Studio Critical
TRA-2025-28 Google Cloud Platform (GCP) Zero-Click Cross-Tenant SQL Injection Vulnerability on Big Query in Looker Studio Critical
TRA-2025-27 Google Cloud Platform (GCP) Cross-Tenant SQL Injection Vulnerability on Big Query Through Native Functions in Looker Studio High
TRA-2025-26 Johnson Controls iSTAR Configuration Utility (ICU) Tool Multiple Vulnerabilities High CVE-2025-26386
TRA-2025-25 RACOM M!DGE2 Privilege Escalation via SDK Testing Endpoint High CVE-2025-36729
TRA-2025-24 SimpleHelp - Multiple Vulnerabilities High CVE-2025-36727
CVE-2025-36728
TRA-2025-23 Gemini Search Personalization Model - Prompt Injection Enables Memory and Location Exfiltration Medium
TRA-2025-22 OpenAI ChatGPT Prompt Injection via ?q= Parameter in Web Interface High
TRA-2025-21 Gemini Browsing Tool - User’s Saved Information & Location Exfiltration via Prompt Injection High
TRA-2025-20 Anthropic MCP Inspector Remote Code Execution Critical CVE-2025-49596
TRA-2025-19 Oracle Cloud Remote Code Execution Vulnerability on Cloud Shell and Code Editor's integrated services High
TRA-2025-18 mySCADA PRO Manager Password Disclosure Medium CVE-2025-35941
TRA-2025-17 GFI Archiver v15.7 Multiple vulnerabilities Critical CVE-2025-35940
CVE-2019-18935
CVE-2017-11317
CVE-2014-2217
TRA-2025-16 LLaVA-NeXT HuggingFace Token Disclosure Critical
TRA-2025-15 HPE Insight Remote Support Multiple Vulnerabilities High CVE-2025-37097
CVE-2025-37098
TRA-2025-14 Siemens User Management Component V2.15 Multiple Vulnerabilities High CVE-2025-30174
CVE-2025-30175
CVE-2025-30176
TRA-2025-13 Progress WhatsUp Gold Unauthenticated Wireless MAC Group Manipulation High CVE-2025-2572
TRA-2025-12 OpenAI SearchGPT Results Tampering with Prompt Injection Medium
TRA-2025-11 OpenAI ChatGPT “Command Memories” Injection via SearchGPT Medium
TRA-2025-10 Google Cloud Platform (GCP) Gemini Cloud Assist Prompt Injection Vulnerability Medium
TRA-2025-09 Camaleon CMS Privilege Escalation High CVE-2025-2304
TRA-2025-08 Multiple Vulnerabilities in Sante PACS Server Critical CVE-2025-2263
CVE-2025-2264
CVE-2025-2265
CVE-2025-2284
TRA-2025-07 Granola API Endpoint Information Disclosure Medium
TRA-2025-06 OpenAI ChatGPT url_safe Mechanism Bypass Medium
TRA-2025-05 Google Gerrit Unauthorized Access to Code Tickets Supply Chain Attack High
TRA-2025-04 Google Cloud Platform (GCP) Privilege Escalation Vulnerability in GCP Cloud Run Medium
TRA-2025-03 Google Cloud Platform (GCP) Privilege Escalation Vulnerability in GCP Composer Medium
TRA-2025-02 Microsoft Azure AI/ML Studio Information Disclosure Low
TRA-2025-01 CyberPower PowerPanel Business Unauthenticated Restart DoS High CVE-2024-11322