MiracleLinux 9 : unbound-1.16.2-3.el9_3.5 (AXSA:2024-7682:03)

🗓️ 20 Jan 2026 00:00:00Reported by TenableType

Unbound on MiracleLinux Nine allows local modification of runtime config; apply remote-control file and update to address AXSA-2024-7682.

Reporter	Title	Published	Views	Family All 145
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified with the DS8900F and DS8A00 Hardware Management Console (HMC)	3 Mar 202600:44	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities	15 Apr 202502:36	–	ibm
Tenable Nessus	Amazon Linux 2023 : python3-unbound, unbound, unbound-anchor (ALAS2023-2024-604)	29 Apr 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2 : unbound (ALASUNBOUND-1.17-2024-002)	26 Jun 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2 : unbound (ALASUNBOUND-2024-002)	24 Jun 202400:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0109: unbound (ALINUX3-SA-2024:0109)	14 May 202500:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0020: unbound (ALINUX3-SA-2025:0020)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : unbound (ALSA-2024:1750)	12 Apr 202400:00	–	nessus
Tenable Nessus	AlmaLinux 8 : unbound (ALSA-2024:1751)	12 Apr 202400:00	–	nessus
Tenable Nessus	AlmaLinux 8 : unbound (ALSA-2025:0837)	31 Jan 202500:00	–	nessus

Source	Link
tsn	www.tsn.miraclelinux.com/en/node/18866
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# Miracle Linux Security Advisory AXSA:2024-7682:03.
##

include('compat.inc');

if (description)
{
  script_id(293034);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/01/20");

  script_cve_id("CVE-2024-1488");

  script_name(english:"MiracleLinux 9 : unbound-1.16.2-3.el9_3.5 (AXSA:2024-7682:03)");

  script_set_attribute(attribute:"synopsis", value:
"The remote MiracleLinux host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the
AXSA:2024-7682:03 advisory.

    * A vulnerability was found in Unbound due to incorrect default permissions,
    allowing any process outside the unbound group to modify the unbound runtime
    configuration. The default combination of the control-use-cert: no option with
    either explicit or implicit use of an IP address in the control-interface
    option could allow improper access. If a process can connect over localhost to
    port 8953, it can alter the configuration of unbound.service. This flaw allows
    an unprivileged local process to manipulate a running instance, potentially
    altering forwarders, allowing them to track all queries forwarded by the local
    resolver, and, in some cases, disrupting resolving altogether.
    To mitigate the vulnerability, a new file
    /etc/unbound/conf.d/remote-control.conf has been added and included in the
    main unbound configuration file, unbound.conf. The file contains two
    directives that should limit access to unbound.conf:
    control-interface: /run/unbound/control
    control-use-cert: yes
    For details about these directives, run man unbound.conf.
    Updating to the version of unbound provided by this advisory should, in most
    cases, address the vulnerability. To verify that your configuration is not
    vulnerable, use the unbound-control status | grep control command. If the
    output contains control(ssl) or control(namedpipe), your configuration is
    not vulnerable. If the command output returns only control, the configuration
    is vulnerable because it does not enforce access only to the unbound group
    members. To fix your configuration, add the line include:
    /etc/unbound/conf.d/remote-control.conf to the end of the file
    /etc/unbound/unbound.conf. If you use a custom
    /etc/unbound/conf.d/remote-control.conf file, add the new directives to this
    file. (CVE-2024-1488)

Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://tsn.miraclelinux.com/en/node/18866");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:P/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-1488");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_severity", value:"High");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/02/15");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/04/15");
  script_set_attribute(attribute:"plugin_publication_date", value:"2026/01/20");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:python3-unbound");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:unbound");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:unbound-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:unbound-libs");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:miracle:linux:9");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Miracle Linux Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/MiracleLinux/release", "Host/MiracleLinux/rpm-list", "Host/cpu");

  exit(0);
}


include('rpm2.inc');

if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_product = get_kb_item('installed_os/local/SSH/0/product');
if (isnull(os_product) || 'MIRACLE LINUX' >!< os_product) audit(AUDIT_OS_NOT, 'MIRACLE LINUX');
var os_version = get_kb_item('installed_os/local/SSH/0/version');
if (isnull(os_version)) audit(AUDIT_UNKNOWN_APP_VER, 'MIRACLE LINUX');
if (! preg(pattern:"^9([^0-9]|$)", string:os_version)) audit(AUDIT_OS_NOT, 'MiracleLinux 9.x', 'MIRACLE LINUX ' + os_version);

if (!get_kb_item('Host/MiracleLinux/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('aarch64' >!< cpu && 'ppc' >!< cpu && 's390' >!< cpu && 'x86_64' >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'MIRACLE LINUX', cpu);

var constraints = [
  {
    'release': '9',
    'pkgs': [
      {'reference':'python3-unbound-1.16.2-3.el9_3.5', 'cpu':'x86_64', 'el_string':'el9_3', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'unbound-1.16.2-3.el9_3.5', 'cpu':'x86_64', 'el_string':'el9_3', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'unbound-devel-1.16.2-3.el9_3.5', 'cpu':'i686', 'el_string':'el9_3', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'unbound-devel-1.16.2-3.el9_3.5', 'cpu':'x86_64', 'el_string':'el9_3', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'unbound-libs-1.16.2-3.el9_3.5', 'cpu':'i686', 'el_string':'el9_3', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'unbound-libs-1.16.2-3.el9_3.5', 'cpu':'x86_64', 'el_string':'el9_3', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'}
    ]
  }
];

var os_release = get_one_kb_item('installed_os/local/SSH/0/release');
var os_sp = get_one_kb_item('Host/*/minor_release');

var flag = 0;
var reference;
var sp;
var _cpu;
var el_string;
var rpm_spec_vers_cmp;
var epoch;
var allowmaj;
var exists_check;
var cves;
foreach var constraint ( constraints ) {
  # Check that the target release is equal to the affected release
  if (!empty_or_null(constraint['release'])){
    if (constraint['release'] != os_release) continue;
  }
  if (!empty_or_null(constraint['sp'])){
    if (constraint['sp'] != os_sp) continue;
  }
  foreach var pkg ( constraint['pkgs'] ) {
    reference = NULL;
    sp = NULL;
    _cpu = NULL;
    el_string = NULL;
    rpm_spec_vers_cmp = NULL;
    epoch = NULL;
    allowmaj = NULL;
    exists_check = NULL;
    cves = NULL;
    if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
    if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
    if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
    if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
    if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
    if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
    if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
    if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
    if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
    if (reference &&
        ## (no known rpm to check OR known rpm_exists)
        (!exists_check || rpm_exists(rpm:exists_check)) &&
        rpm_check(sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
  }
}
if (flag)
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'python3-unbound / unbound / unbound-devel / unbound-libs');
}

20 Jan 2026 00:00Current

5.6Medium risk

Vulners AI Score5.6

CVSS 3.17.3 - 8

EPSS0.00111

SSVC