Known Vulnerabilities for Tex Live by Tug
Listed below are 8 of the newest known vulnerabilities associated with "Tex Live" by "Tug".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-47270 json | pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, pam_usb is a PAM module lo... | Not Provided | 2026-05-27 | 2026-05-28 |
| CVE-2026-47068 json | Authorization Bypass Through User-Controlled Key vulnerability in phenixdigital phoenix_storybook allows cross-session PubSub... | Not Provided | 2026-05-20 | 2026-05-21 |
| CVE-2026-46544 json | Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft ... | Not Provided | 2026-05-27 | 2026-05-28 |
| CVE-2026-46431 json | Algernon is a small self-contained pure-Go web server. Prior to 1.17.7, the SSE event server's Access-Control-Allow-Origin re... | Not Provided | 2026-05-26 | 2026-05-26 |
| CVE-2026-46414 json | Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft ... | Not Provided | 2026-05-27 | 2026-06-02 |
| CVE-2026-46238 json | In the Linux kernel, the following vulnerability has been resolved: batman-adv: stop caching unowned originator pointers in ... | Not Provided | 2026-05-28 | 2026-06-01 |
| CVE-2026-45580 json | WWBN AVideo is an open source video platform. In 29.0 and earlier, there is a stored cross-site scripting vulnerability. The ... | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-45578 json | WWBN AVideo is an open source video platform. In 29.0 and earlier, there is a classic shell-metacharacter injection. The YPTS... | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-45397 json | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.5, GET /api/v... | Not Provided | 2026-05-15 | 2026-05-18 |
| CVE-2026-45360 json | Apache Airflow's scheduler-side deadline-reference decoder (`SerializedCustomReference.deserialize_reference`) imported and d... | Not Provided | 2026-06-01 | 2026-06-02 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Tug | Tex Live | 20190410 | |||
| Application | Tug | Tex Live | 20180414 | |||
| Application | Tug | Tex Live | 2018-09-21 | |||
| Application | Tug | Tex Live | 20170524 | |||
| Application | Tug | Tex Live | 20160523 | |||
| Application | Tug | Tex Live | 20150523 | |||
| Application | Tug | Tex Live | 20150521 | |||
| Application | Tug | Tex Live | 20140525 | |||
| Application | Tug | Tex Live | 20130530 | |||
| Application | Tug | Tex Live | 20120701 | |||
| Application | Tug | Tex Live | 20110705 | |||
| Application | Tug | Tex Live | 20100826 | |||
| Application | Tug | Tex Live | 20100722 | |||
| Application | Tug | Tex Live | 20091107 | |||
| Application | Tug | Tex Live | 20080822 | |||
| Application | Tug | Tex Live | 20070212 | |||
| Application | Tug | Tex Live | 20051102 | |||
| Application | Tug | Tex Live | 20041127 | |||
| Application | Tug | Tex Live | 20030928 | |||
| Application | Tug | Tex Live | 20020604 |