Plugins Pipeline

At Tenable, we use a multitude of approaches to deliver the best possible coverage to our customers and use a number of factors to prioritize vulnerabilities. Browse upcoming plugins that the Tenable Research team is prioritizing by CVE, detection status or keyword search. Please note that this page does not represent an exhaustive list of plugins that Tenable Research intends to provide coverage for nor for which plugin coverage is provided.

Plugins are categorized into one of the following detection statuses:

Development: Tenable Research team is actively working on providing a detection.
Testing: The plugin is in the production build & release pipeline.
Released: The plugin has been published on the displayed date.

RSS Feeds

Title	CVEs	Updated	Status
Apache Airflow < 3.1.6 Log Output Credential Exposre	CVE-2025-68675	2026/2/9	development
redhat RHSA-2026:2328: RHSA-2026:2328: iperf3 security update (Moderate)	CVE-2025-54349	2026/2/9	development
redhat RHSA-2026:2299: RHSA-2026:2299: fence-agents security update (Important)	CVE-2026-23490	2026/2/9	development
redhat RHSA-2026:2330: RHSA-2026:2330: python3 security update (Moderate)	CVE-2025-12084	2026/2/9	development
redhat RHSA-2026:2352: RHSA-2026:2352: kernel security update (Moderate)	CVE-2025-40322, CVE-2025-40294, CVE-2024-54456, CVE-2025-68349, CVE-2025-38568, CVE-2025-21786, CVE-2025-21647, CVE-2025-38022, CVE-2025-38051, CVE-2025-21791	2026/2/9	development
redhat RHSA-2026:2282: RHSA-2026:2282: kernel security update (Moderate)	CVE-2025-40322, CVE-2025-38415, CVE-2025-38403, CVE-2025-38730, CVE-2025-40304, CVE-2025-39933, CVE-2025-68811, CVE-2025-40133	2026/2/9	development
redhat RHSA-2026:2320: RHSA-2026:2320: golang security update (Important)	CVE-2025-61729	2026/2/9	development
redhat RHSA-2026:2303: RHSA-2026:2303: fence-agents security update (Important)	CVE-2026-23490	2026/2/9	development
redhat RHSA-2026:2271: RHSA-2026:2271: firefox security update (Important)	CVE-2026-0882, CVE-2026-0886, CVE-2026-0887, CVE-2026-0877, CVE-2026-0883, CVE-2025-14327, CVE-2026-0885, CVE-2026-0891, CVE-2026-0878, CVE-2026-0879, CVE-2026-0884, CVE-2026-0890, CVE-2026-0880	2026/2/9	development
centos_stream kernel-5.14.0-677.el9: kernel-5.14.0-677.el9	CVE-2025-39840	2026/2/9	development
alma_linux ALSA-2026:1843: ALSA-2026:1843: nodejs22 security update (High)	CVE-2025-55132, CVE-2025-59465, CVE-2026-21637, CVE-2025-55131, CVE-2025-59466, CVE-2025-55130	2026/2/9	development
alma_linux ALSA-2026:2124: ALSA-2026:2124: osbuild-composer security update (High)	CVE-2025-61729	2026/2/9	development
alma_linux ALSA-2026:2215: ALSA-2026:2215: libsoup security update (High)	CVE-2026-0719, CVE-2026-1761	2026/2/9	development
alma_linux ALSA-2026:1831: ALSA-2026:1831: qemu-kvm security update (Medium)	CVE-2025-11234	2026/2/9	development
alma_linux ALSA-2026:1842: ALSA-2026:1842: nodejs24 security update (High)	CVE-2025-55132, CVE-2025-59465, CVE-2026-21637, CVE-2025-55131, CVE-2025-59466, CVE-2025-55130	2026/2/9	development
alma_linux ALSA-2026:2182: ALSA-2026:2182: libsoup3 security update (High)	CVE-2026-0719, CVE-2026-1761	2026/2/9	development
alma_linux ALSA-2026:1837: ALSA-2026:1837: osbuild-composer security update (Medium)	CVE-2025-58183	2026/2/9	development
alma_linux ALSA-2026:2264: ALSA-2026:2264: kernel security update (Medium)	CVE-2025-40170, CVE-2025-38403, CVE-2025-40135, CVE-2025-68349, CVE-2025-40269, CVE-2025-40158, CVE-2022-50673, CVE-2026-22998	2026/2/9	development
alma_linux ALSA-2026:2286: ALSA-2026:2286: thunderbird security update (High)	CVE-2026-0882, CVE-2026-0886, CVE-2026-0887, CVE-2026-0877, CVE-2026-0883, CVE-2025-14327, CVE-2026-0885, CVE-2026-0891, CVE-2026-0878, CVE-2026-0879, CVE-2026-0884, CVE-2026-0890, CVE-2026-0880	2026/2/9	development
alma_linux ALSA-2026:2271: ALSA-2026:2271: firefox security update (High)	CVE-2026-0882, CVE-2026-0886, CVE-2026-0887, CVE-2026-0877, CVE-2026-0883, CVE-2025-14327, CVE-2026-0885, CVE-2026-0891, CVE-2026-0878, CVE-2026-0879, CVE-2026-0884, CVE-2026-0890, CVE-2026-0880	2026/2/9	development
debian_linux dla-4474: Debian dla-4474 : librlottie-dev - security update	CVE-2025-53074, CVE-2025-0634, CVE-2025-53075	2026/2/9	development
JetBrains YouTrack < 2025.3.119033 Information Disclosure	CVE-2026-25846	2026/2/9	testing
OpenClaw < 2026.1.20 Command Injection	CVE-2026-25593	2026/2/9	development
OpenClaw < 2026.1.30 Arbitrary File Read	CVE-2026-25475	2026/2/9	development
[Web App Scanning] Mura CMS < 10.0.580 Authentication Bypass	CVE-2022-47003	2026/2/9	testing
BeyondTrust Remote Support <= 25.3.1 and Privileged Remote Access (PRA) <= 24.3.4 Pre-Authentication Remote Code Execution	CVE-2026-1731	2026/2/9	development
Gogs <= 0.13.3 Multiple Vulnerabilities	CVE-2026-23633, CVE-2025-65852, CVE-2026-23632, CVE-2026-22592, CVE-2025-64111, CVE-2026-24135, CVE-2025-64175	2026/2/9	development
[Web App Scanning] OpenCMS Multiple Vulnerabilities	CVE-2024-41446, CVE-2024-5520, CVE-2024-41447, CVE-2023-6379, CVE-2023-6380, CVE-2023-37602, CVE-2024-42699, CVE-2024-5521	2026/2/5	testing
[Web App Scanning] Roundcube Webmail Multiple Vulnerabilities	CVE-2025-68461, CVE-2025-68460, CVE-2025-49113	2026/2/5	testing
Multiple Vulnerabilities in Notepad++ (CVE-2025-56383)	CVE-2025-15556, CVE-2025-56383	2026/2/5	development
Security Update for Symfony	CVE-2026-24739	2026/2/4	development
Sangoma FreePBX Improper Authentication Vulnerability (CVE-2019-19006)	CVE-2019-19006	2026/2/4	development
[Web App Scanning] Apache Configuration File Detected		2026/2/4	testing
[Web App Scanning] Ansible Configuration File Detected		2026/2/4	testing
[Web App Scanning] Apache Airflow Configuration File Detected		2026/2/4	testing
Brocade Fabric OS Multiple Vulnerabilities Feb 2026	CVE-2025-58379, CVE-2025-58381, CVE-2026-0383, CVE-2025-58382, CVE-2025-58383, CVE-2025-9711, CVE-2025-58380	2026/2/3	development
cisco cisco-sa-iec6400-Pem5uQ7v: Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial of Service Vulnerability	CVE-2026-20080	2026/2/3	development
Multiple Vulnerabilities in SolarWinds Web Help Desk	CVE-2025-40551, CVE-2025-40537, CVE-2025-40552, CVE-2025-40536	2026/1/30	development
Multiple Vulnerabilities in Alteryx Server	CVE-2025-28243, CVE-2025-28245, CVE-2023-26961	2026/1/30	development
Security Update for PyBind	CVE-2024-31884	2026/1/29	development
Security Update for Wireshark	CVE-2026-0962	2026/1/22	development
cisco cisco-sa-ucce-pcce-xss-2JVyg3uD: Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerabilities	CVE-2026-20055, CVE-2026-20109	2026/1/22	development
oracle_linux ELSA-2026-0936: ELSA-2026-0936: glib2 security update (MODERATE)	CVE-2025-13601	2026/1/22	development
oracle_linux ELSA-2026-0975: ELSA-2026-0975: glib2 security update (MODERATE)	CVE-2025-13601	2026/1/22	development
oracle_linux ELSA-2026-0930: ELSA-2026-0930: pcs security update (MODERATE)	CVE-2025-67726, CVE-2025-67725	2026/1/22	development
oracle CPUJan2026: Business Intelligence Enterprise Edition	CVE-2025-8885, CVE-2025-26333, CVE-2025-66418, CVE-2024-57699, CVE-2025-48734, CVE-2025-9230, CVE-2025-59419, CVE-2025-41249, CVE-2025-55039, CVE-2026-21976, CVE-2023-6378, CVE-2021-23926, CVE-2025-48924, CVE-2025-68161, CVE-2024-35195, CVE-2025-31672, CVE-2025-52999, CVE-2024-47554, CVE-2025-48976, CVE-2022-45047, CVE-2025-59250, CVE-2025-58754	2026/1/20	development
oracle CPUJan2026: MySQL Server 8.4.8	CVE-2025-6965, CVE-2026-21941, CVE-2026-21964, CVE-2026-21937, CVE-2026-21948, CVE-2025-9230, CVE-2026-21968, CVE-2026-21936	2026/1/20	development
oracle CPUJan2026: MySQL Cluster 8.4.8	CVE-2025-6965, CVE-2026-21941, CVE-2026-21964, CVE-2026-21937, CVE-2026-21948, CVE-2025-9230, CVE-2026-21968, CVE-2026-21936	2026/1/20	development
oracle CPUJan2026: MySQL Cluster 8.0.45	CVE-2026-21941, CVE-2026-21964, CVE-2026-21937, CVE-2026-21948, CVE-2025-9230, CVE-2026-21968, CVE-2026-21936	2026/1/20	development
oracle CPUJan2026: MySQL Server 8.0.45	CVE-2026-21941, CVE-2026-21964, CVE-2026-21937, CVE-2026-21948, CVE-2025-9230, CVE-2026-21968, CVE-2026-21936	2026/1/20	development