Detections
Analytics

Plugins Pipeline

At Tenable, we use a multitude of approaches to deliver the best possible coverage to our customers and use a number of factors to prioritize vulnerabilities. Browse upcoming plugins that the Tenable Research team is prioritizing by CVE, detection status or keyword search. Please note that this page does not represent an exhaustive list of plugins that Tenable Research intends to provide coverage for nor for which plugin coverage is provided.

Plugins are categorized into one of the following detection statuses:

  • Development: Tenable Research team is actively working on providing a detection.
  • Testing: The plugin is in the production build & release pipeline.
  • Released: The plugin has been published on the displayed date.

RSS Feeds

TitleCVEsUpdatedStatus
[Web App Scanning] Spam protection, Anti-Spam, FireWall Plugin for WordPress Multiple VulnerabilitiesCVE-2024-10781, CVE-2024-1054211/29/2024testing
[Web App Scanning] PhpSysInfo Detected11/29/2024testing
[Web App Scanning] Spring Eureka Detected11/28/2024testing
oracle_linux ELSA-2024-10281: ELSA-2024-10281: kernel:4.18.0 security update (MODERATE)CVE-2024-46858, CVE-2024-27399, CVE-2024-27043, CVE-2024-3856411/28/2024development
oracle_linux ELSA-2024-10379: ELSA-2024-10379: pam security update (IMPORTANT)CVE-2024-10963, CVE-2024-1004111/28/2024development
Multiple Ruckus Wireless Products CSRF and RCE Vulnerability (CVE-2023-25717)CVE-2023-2571711/27/2024development
Cisco Adaptive Security Appliance (ASA) Cross-Site Scripting (XSS) Vulnerability (CVE-2014-2120)CVE-2014-212011/27/2024development
Oracle Agile Product Lifecycle Management (PLM) Incorrect Authorization Vulnerability (CVE-2024-21287)CVE-2024-2128711/27/2024development
Array Networks AG and vxAG ArrayOS Improper Authentication Vulnerability (CVE-2023-28461)CVE-2023-2846111/27/2024development
[Web App Scanning] Ivanti EPM XML External EntityCVE-2024-3739711/27/2024testing
Security Update for Zimbra Collaboration SuiteCVE-2024-45511, CVE-2024-4551011/21/2024development
Progress Telerik Document Processing Libraries CVE-2024-8049CVE-2024-804911/21/2024development
CVE-2024-0012: PAN-OS Authentication Bypass Exploited In The Wild (Operation Lunar Peek)CVE-2024-001211/18/2024development
Security Update for QEMU (CVE-2024-7730)CVE-2024-773011/14/2024development
cisco cisco-sa-3550-acl-bypass-mhskZc2q: Cisco Nexus 3550-F Switches Access Control List Programming VulnerabilityCVE-2024-2037111/13/2024development
CyberPanel Incorrect Default Permissions Vulnerability (CVE-2024-51567)CVE-2024-5156711/13/2024development
cisco cisco-sa-ise-multi-vuln-DBQdWRy: Cisco Identity Services Engine VulnerabilitiesCVE-2024-20527, CVE-2024-20529, CVE-2024-20530, CVE-2024-20537, CVE-2024-20528, CVE-2024-20532, CVE-2024-20525, CVE-2024-20476, CVE-2024-20538, CVE-2024-20531, CVE-2024-20487, CVE-2024-2053911/7/2024development
cisco cisco-sa-backhaul-ap-cmdinj-R7E28Ecs: Cisco Unified Industrial Wireless Software for Ultra-Reliable Wireless Backhaul Access Point Command Injection VulnerabilityCVE-2024-2041811/7/2024development
cisco cisco-sa-ccmp-sxss-qBTDBZDD: Cisco Unified Contact Center Management Portal Stored Cross-Site Scripting VulnerabilityCVE-2024-2054011/7/2024development
cisco cisco-sa-ndhs-idv-Bk8VqEDc: Cisco Nexus Dashboard Hosted Services Information Disclosure VulnerabilitiesCVE-2024-20490, CVE-2024-20448, CVE-2024-20444, CVE-2024-20491, CVE-2024-20449, CVE-2024-20477, CVE-2024-20536, CVE-2024-20442, CVE-2024-20441, CVE-2024-20432, CVE-2024-20385, CVE-2024-2043811/7/2024development
cisco cisco-sa-ndo-tlsvld-FdUF3cpw: Cisco Nexus Dashboard Orchestrator SSL/TLS Certificate Validation VulnerabilityCVE-2024-20490, CVE-2024-20448, CVE-2024-20444, CVE-2024-20491, CVE-2024-20449, CVE-2024-20477, CVE-2024-20536, CVE-2024-20442, CVE-2024-20441, CVE-2024-20432, CVE-2024-20385, CVE-2024-2043811/7/2024development
cisco cisco-sa-ndfc-sqli-CyPPAxrL: Cisco Nexus Dashboard Fabric Controller SQL Injection VulnerabilityCVE-2024-20490, CVE-2024-20448, CVE-2024-20444, CVE-2024-20491, CVE-2024-20449, CVE-2024-20477, CVE-2024-20536, CVE-2024-20442, CVE-2024-20441, CVE-2024-20432, CVE-2024-20385, CVE-2024-2043811/7/2024development
cisco cisco-sa-ndhs-uaapi-Jh4V6zpN: Cisco Nexus Dashboard and Nexus Dashboard Fabric Controller Unauthorized REST API VulnerabilitiesCVE-2024-20490, CVE-2024-20448, CVE-2024-20444, CVE-2024-20491, CVE-2024-20449, CVE-2024-20477, CVE-2024-20536, CVE-2024-20442, CVE-2024-20441, CVE-2024-20432, CVE-2024-20385, CVE-2024-2043811/7/2024development
juniper JSA82988: JSA82988 : 2024-07 Security Bulletin: Junos OS: SRX Series: If DNS traceoptions are configured in a DGA or tunnel detection scenario specific DNS traffic leads to a PFE crash (CVE-20CVE-2024-39523, CVE-2024-39522, CVE-2024-39559, CVE-2024-39513, CVE-2024-39535, CVE-2024-39553, CVE-2024-39521, CVE-2024-39529, CVE-2024-39539, CVE-2024-39558, CVE-2024-39540, CVE-2024-39538, CVE-2024-39548, CVE-2024-39549, CVE-2024-39518, CVE-2024-39552, CVE-2024-39537, CVE-2024-39532, CVE-2024-39524, CVE-2024-39511, CVE-2024-21586, CVE-2024-39560, CVE-2024-39512, CVE-2024-39520, CVE-2024-39557, CVE-2024-3953311/6/2024development
PTZOptics PT30X-SDI/NDI Cameras Authentication Bypass Vulnerability (CVE-2024-8956)CVE-2024-895611/5/2024development
PTZOptics PT30X-SDI/NDI Cameras OS Command Injection Vulnerability (CVE-2024-8957)CVE-2024-895711/5/2024development
ScienceLogic SL1 Unspecified Vulnerability (CVE-2024-9537)CVE-2024-953711/4/2024development
Cisco ASA and FTD Denial-of-Service Vulnerability (CVE-2024-20481)CVE-2024-2048110/24/2024development
Security Update for SolarWinds Kiwi CatToolsCVE-2024-4571310/23/2024development
Security Update for SolarWinds Platform (2024 October)CVE-2024-45715, CVE-2024-4571010/17/2024development
oracle CPUOct2024: MySQL Cluster 8.0.39CVE-2024-21203, CVE-2023-45853, CVE-2024-21201, CVE-2024-21199, CVE-2024-5535, CVE-2024-21194, CVE-2024-21241, CVE-2024-21238, CVE-2024-6119, CVE-2024-21218, CVE-2024-21198, CVE-2024-21262, CVE-2024-21196, CVE-2024-21244, CVE-2024-28182, CVE-2024-21247, CVE-2024-21207, CVE-2024-21232, CVE-2024-21243, CVE-2024-21212, CVE-2024-21213, CVE-2024-21237, CVE-2024-21230, CVE-2024-21231, CVE-2024-21236, CVE-2024-37371, CVE-2024-21219, CVE-2024-7264, CVE-2024-21239, CVE-2024-21200, CVE-2024-21272, CVE-2024-21193, CVE-2024-39689, CVE-2024-21197, CVE-2024-21209, CVE-2024-2120410/15/2024development
oracle CPUOct2024: MySQL Cluster 8.0.40CVE-2024-21203, CVE-2023-45853, CVE-2024-21201, CVE-2024-21199, CVE-2024-5535, CVE-2024-21194, CVE-2024-21241, CVE-2024-21238, CVE-2024-6119, CVE-2024-21218, CVE-2024-37370, CVE-2024-23807, CVE-2024-21198, CVE-2024-21262, CVE-2024-21196, CVE-2024-21244, CVE-2024-28182, CVE-2024-21247, CVE-2024-21207, CVE-2024-21232, CVE-2024-2511, CVE-2024-21243, CVE-2024-21212, CVE-2024-21213, CVE-2024-21237, CVE-2024-21230, CVE-2024-21231, CVE-2024-21236, CVE-2024-37371, CVE-2024-21219, CVE-2024-7264, CVE-2024-21239, CVE-2024-21200, CVE-2024-21272, CVE-2024-21193, CVE-2024-39689, CVE-2024-21197, CVE-2024-40898, CVE-2024-21209, CVE-2024-2120410/15/2024development
oracle CPUOct2024: MySQL Server 8.4.3CVE-2024-21203, CVE-2024-21201, CVE-2024-21199, CVE-2024-5535, CVE-2024-21194, CVE-2024-21241, CVE-2024-21238, CVE-2024-6119, CVE-2024-21218, CVE-2024-37370, CVE-2024-21198, CVE-2024-21196, CVE-2024-21244, CVE-2024-21247, CVE-2024-21232, CVE-2024-21243, CVE-2024-21213, CVE-2024-21237, CVE-2024-21230, CVE-2024-21231, CVE-2024-21236, CVE-2024-37371, CVE-2024-21219, CVE-2024-7264, CVE-2024-21239, CVE-2024-21193, CVE-2024-21197, CVE-2024-2120910/15/2024development
oracle CPUOct2024: MySQL Server 8.0.40CVE-2024-21203, CVE-2024-21201, CVE-2024-21199, CVE-2024-5535, CVE-2024-21194, CVE-2024-21241, CVE-2024-21238, CVE-2024-6119, CVE-2024-21218, CVE-2024-37370, CVE-2024-21198, CVE-2024-21196, CVE-2024-21247, CVE-2024-21212, CVE-2024-21213, CVE-2024-21237, CVE-2024-21230, CVE-2024-21231, CVE-2024-21236, CVE-2024-37371, CVE-2024-21219, CVE-2024-7264, CVE-2024-21239, CVE-2024-21193, CVE-2024-2119710/15/2024development
oracle CPUOct2024: MySQL Cluster 7.5.36CVE-2024-21203, CVE-2023-45853, CVE-2024-21201, CVE-2024-21199, CVE-2024-5535, CVE-2024-21194, CVE-2024-21241, CVE-2024-21238, CVE-2024-6119, CVE-2024-21218, CVE-2024-21198, CVE-2024-21262, CVE-2024-21196, CVE-2024-21244, CVE-2024-28182, CVE-2024-21247, CVE-2024-21207, CVE-2024-21232, CVE-2024-21243, CVE-2024-21212, CVE-2024-21213, CVE-2024-21237, CVE-2024-21230, CVE-2024-21231, CVE-2024-21236, CVE-2024-37371, CVE-2024-21219, CVE-2024-7264, CVE-2024-21239, CVE-2024-21200, CVE-2024-21272, CVE-2024-21193, CVE-2024-39689, CVE-2024-21197, CVE-2024-21209, CVE-2024-2120410/15/2024development
oracle CPUOct2024: MySQL Cluster 8.4.2CVE-2024-21203, CVE-2023-45853, CVE-2024-21201, CVE-2024-21199, CVE-2024-5535, CVE-2024-21194, CVE-2024-21241, CVE-2024-21238, CVE-2024-21218, CVE-2024-21198, CVE-2024-21262, CVE-2024-21196, CVE-2024-21244, CVE-2024-28182, CVE-2024-21247, CVE-2024-21207, CVE-2024-21232, CVE-2024-21243, CVE-2024-21212, CVE-2024-21213, CVE-2024-21237, CVE-2024-21230, CVE-2024-21231, CVE-2024-21236, CVE-2024-37371, CVE-2024-21219, CVE-2024-7264, CVE-2024-21239, CVE-2024-21200, CVE-2024-21272, CVE-2024-21193, CVE-2024-39689, CVE-2024-21197, CVE-2024-21209, CVE-2024-2120410/15/2024development
oracle CPUOct2024: MySQL Cluster 8.4.3CVE-2024-21203, CVE-2023-45853, CVE-2024-21201, CVE-2024-21199, CVE-2024-5535, CVE-2024-21194, CVE-2024-21241, CVE-2024-21238, CVE-2024-6119, CVE-2024-21218, CVE-2024-37370, CVE-2024-23807, CVE-2024-21198, CVE-2024-21262, CVE-2024-21196, CVE-2024-21244, CVE-2024-28182, CVE-2024-21247, CVE-2024-21207, CVE-2024-21232, CVE-2024-2511, CVE-2024-21243, CVE-2024-21212, CVE-2024-21213, CVE-2024-21237, CVE-2024-21230, CVE-2024-21231, CVE-2024-21236, CVE-2024-37371, CVE-2024-21219, CVE-2024-7264, CVE-2024-21239, CVE-2024-21200, CVE-2024-21272, CVE-2024-21193, CVE-2024-39689, CVE-2024-21197, CVE-2024-40898, CVE-2024-21209, CVE-2024-2120410/15/2024development
Security Update for Apache TomcatCVE-2024-382869/26/2024testing
cisco cisco-sa-c9800-cwa-acl-nPSbHSnA: Cisco IOS XE Software for Wireless Controllers CWA Pre-Authentication ACL Bypass VulnerabilityCVE-2024-205109/26/2024development
cisco cisco-sa-pim-APbVfySJ: Cisco IOS XE Software Protocol Independent Multicast Denial of Service VulnerabilityCVE-2024-204649/26/2024development
cisco cisco-sa-rsvp-dos-OypvgVZf: Cisco IOS and IOS XE Software Resource Reservation Protocol Denial of Service VulnerabilityCVE-2024-204339/26/2024development
cisco cisco-sa-ios-xe-sda-edge-dos-MBcbG9k: Cisco IOS XE Software SD-Access Fabric Edge Node Denial of Service VulnerabilityCVE-2024-204809/26/2024development
cisco cisco-sa-sdwan-utd-dos-hDATqxs: Cisco Catalyst SD-WAN Routers Denial of Service VulnerabilityCVE-2024-204559/26/2024development
cisco cisco-sa-sdwan-utd-dos-hDATqxs: Cisco Catalyst SD-WAN Routers Denial of Service VulnerabilityCVE-2024-204559/26/2024development
Multiple Vulnerabilities in LibpcapCVE-2023-7256, CVE-2024-80069/4/2024development