AlmaLinux 9 : php:8.3 (ALSA-2025:7418)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:7418 advisory. php: Header parser of http stream wrapper does not handle folded headers CVE-2025-1217 php: Stream HTTP wrapper header check might omit basic auth header...

AlmaLinux 9 : thunderbird (ALSA-2025:10196)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:10196 advisory. thunderbird: Unsolicited File Download, Disk Space Exhaustion, and Credential Leakage via mailbox:/// Links CVE-2025-5986 Tenable has extracted the preceding...

AlmaLinux 9 : xorg-x11-server (ALSA-2025:7163)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:7163 advisory. xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability CVE-2024-9632 X.Org: Xwayland: Use-after-free of the root cursor...

AlmaLinux 9 : iptraf-ng (ALSA-2025:7064)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:7064 advisory. iptraf-ng: buffer overflow via ifaces.c CVE-2024-52949 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory. Note th...

AlmaLinux 9 : perl-Module-ScanDeps (ALSA-2025:7350)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:7350 advisory. module-scandeps: local privilege escalation via unsanitized input CVE-2024-10224 Tenable has extracted the preceding description block directly from the AlmaLinux...

AlmaLinux 9 : aardvark-dns (ALSA-2025:7094)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:7094 advisory. containers/aardvark-dns: TCP Query Handling Flaw in Aardvark-dns Leading to Denial of Service CVE-2024-8418 Tenable has extracted the preceding description block...

AlmaLinux 8 : varnish:6 (ALSA-2025:8336)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:8336 advisory. varnish: request smuggling attacks CVE-2025-47905 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory. Note that...

AlmaLinux 9 : tigervnc (ALSA-2025:9306)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:9306 advisory. xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors CVE-2025-49175 xorg-x11-server-Xwayland:...

AlmaLinux 9 : python3.11 (ALSA-2025:10148)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:10148 advisory. cpython: Tarfile extracts filtered members when errorlevel=0 CVE-2025-4435 cpython: Bypass extraction filter to modify file metadata outside extraction...

AlmaLinux 8 : .NET 9.0 (ALSA-2025:8815)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:8815 advisory. dotnet: .NET Remote Code Vulnerability CVE-2025-30399 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory. Note tha...

AlmaLinux 9 : python-requests (ALSA-2025:7049)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:7049 advisory. requests: subsequent requests to the same host ignore cert verification CVE-2024-35195 Tenable has extracted the preceding description block directly from the...

AlmaLinux 9 : gstreamer1, gstreamer1-plugins-bad-free, gstreamer1-plugins-ugly-free, and gstreamer1-rtsp-server (ALSA-2025:7178)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:7178 advisory. gstreamer: EXIF Metadata Parsing Integer Overflow CVE-2024-4453 gstreamer: AV1 Video Parsing Stack-based Buffer Overflow CVE-2024-0444 Tenable has extract...

AlmaLinux 9 : apache-commons-beanutils (ALSA-2025:9114)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:9114 advisory. commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default CVE-2025-48734 Tenable has extracted...

AlmaLinux 8 : ruby:3.3 (ALSA-2025:10217)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:10217 advisory. net-imap: Net::IMAP vulnerable to possible DoS by memory exhaustion CVE-2025-25186 CGI: Denial of Service in CGI::Cookie.parse CVE-2025-27219 uri: userin...

AlmaLinux 9 : gstreamer1-plugins-base (ALSA-2025:7243)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:7243 advisory. gstreamer1-plugins-base: ID3v2 parser out-of-bounds read and NULL-pointer dereference CVE-2024-47542 gstreamer1-plugins-base: GStreamer has an out-of-boun...

AlmaLinux 9 : grafana-pcp (ALSA-2025:8916)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:8916 advisory. net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Tenable has extracted the preceding description block directly fro...

AlmaLinux 9 : microcode_ctl (ALSA-2025:7043)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:7043 advisory. microcodectl: Improper input validation in UEFI firmware CVE-2024-28047 microcodectl: Insufficient granularity of access control in UEFI firmware...

AlmaLinux 9 : .NET 9.0 (ALSA-2025:7600)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:7600 advisory. dotnet: .NET and Visual Studio Spoofing Vulnerability CVE-2025-26646 Tenable has extracted the preceding description block directly from the AlmaLinux security...

AlmaLinux 9 : ghostscript (ALSA-2025:7586)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:7586 advisory. Ghostscript: NPDL device: Compression buffer overflow CVE-2025-27832 Tenable has extracted the preceding description block directly from the AlmaLinux security...

AlmaLinux 9 : libtasn1 (ALSA-2025:7077)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:7077 advisory. libtasn1: Inefficient DER Decoding in libtasn1 Leading to Potential Remote DoS CVE-2024-12133 Tenable has extracted the preceding description block directly from t...