631 matches found
MiracleLinux 7 : tomcat-7.0.76-12.el7 (AXSA:2020-138:02)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-138:02 advisory. tomcat: deserialization flaw in session persistence storage leading to RCE CVE-2020-9484 Tenable has extracted the preceding description block directly from t...
MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.422.b05-1.0.1.el7.AXS7 (AXSA:2024-8735:15)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8735:15 advisory. OpenJDK: RangeCheckElimination array index overflow 8323231 CVE-2024-21147 OpenJDK: potential UTF8 size overflow 8314794 CVE-2024-21131 OpenJDK:...
MiracleLinux 7 : firefox-115.11.0-1.0.1.el7.AXS7 (AXSA:2024-7743:18)
The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7743:18 advisory. firefox: Arbitrary JavaScript execution in PDF.js CVE-2024-4367 firefox: IndexedDB files retained in private browsing mode CVE-2024-4767 firefox:...
MiracleLinux 7 : firefox-115.12.0-1.0.1.el7.AXS7 (AXSA:2024-8407:20)
The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8407:20 advisory. firefox: Use-after-free in networking CVE-2024-5702 firefox: Use-after-free in JavaScript object transplant CVE-2024-5688 firefox: External protocol...
MiracleLinux 7 : keycloak-httpd-client-install-0.8-1.el7 (AXSA:2019-4175:01)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4175:01 advisory. keycloak-httpd-client-install: unsafe /tmp log file in --log-file option in keycloakcli.py CVE-2017-15111 keycloak-httpd-client-install: unsafe use ...
MiracleLinux 7 : java-11-openjdk-11.0.22.0.7-1.el7 (AXSA:2024-7426:01)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7426:01 advisory. OpenJDK: array out-of-bounds access due to missing range check in C1 compiler 8314468 CVE-2024-20918 OpenJDK: RSA padding issue and timing...
MiracleLinux 7 : firefox-91.13.0-1.0.1.el7.AXS7 (AXSA:2022-3756:21)
The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3756:21 advisory. Mozilla: Address bar spoofing via XSLT error handling CVE-2022-38472 Mozilla: Cross-origin XSLT Documents would have inherited the parent's...
MiracleLinux 7 : rsyslog-8.24.0-52.el7 (AXSA:2020-4536:02)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4536:02 advisory. rsyslog: heap-based overflow in contrib/pmaixforwardedfrom/pmaixforwardedfrom.c CVE-2019-17041 rsyslog: heap-based overflow in...
MiracleLinux 7 : libksba-1.3.0-6.el7 (AXSA:2022-3916:02)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3916:02 advisory. libksba: integer overflow may lead to remote code execution CVE-2022-3515 Tenable has extracted the preceding description block directly from the MiracleLinu...
MiracleLinux 7 : rh-nodejs12-nodejs-12.18.4-3.el7 (AXSA:2020-894:04)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-894:04 advisory. nodejs-dot-prop: prototype pollution CVE-2020-8116 nodejs: HTTP request smuggling due to CR-to-Hyphen conversion CVE-2020-8201 npm: Sensitive...
MiracleLinux 7 : mailman-2.1.15-30.el7.2 (AXSA:2021-2576:01)
The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2576:01 advisory. mailman: CSRF token bypass allows to perform CSRF attacks and account takeover CVE-2021-42097 mailman: CSRF token bypass allows to perform CSRF...
MiracleLinux 7 : pango-1.42.4-4.el7 (AXSA:2020-060:01)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-060:01 advisory. pango: pangolog2visgetembeddinglevels heap-based buffer overflow CVE-2019-1010238 CVE-2019-1010238 Gnome Pango 1.42 and later is affected by: Buffer Overflow...
MiracleLinux 7 : sssd-1.16.5-10.el7.15 (AXSA:2023-4853:02)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4853:02 advisory. sssd: libssscertmap fails to sanitise certificate data used in LDAP filters CVE-2022-4254 Tenable has extracted the preceding description block directly from...
MiracleLinux 7 : firefox-115.7.0-1.0.1.el7.AXS7 (AXSA:2024-7492:05)
The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7492:05 advisory. Mozilla: Out of bounds write in ANGLE CVE-2024-0741 Mozilla: Failure to update user input timestamp CVE-2024-0742 Mozilla: Crash when listing printe...
MiracleLinux 7 : freerdp-2.1.1-5.0.1.el7.AXS7 (AXSA:2024-8644:02)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8644:02 advisory. CVE-2023-39352: add bound check in gdiSolidFill CVE-2023-39353: check indices are within range CVE-2023-39356: fix checks for multi opaque rect...
MiracleLinux 7 : cpio-2.11-28.el7 (AXSA:2020-579:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-579:01 advisory. CVE-2019-14866 In all versions of cpio before 2.13 does not properly validate input files when generating TAR archives. When cpio is used to create TAR archiv...
MiracleLinux 7 : e2fsprogs-1.42.9-19.el7 (AXSA:2020-637:03)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-637:03 advisory. e2fsprogs: Crafted ext4 partition leads to out-of-bounds write CVE-2019-5094 e2fsprogs: Out-of-bounds write in e2fsck/rehash.c CVE-2019-5188 Tenable...
MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.252.b09-2.el7 (AXSA:2020-012:08)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-012:08 advisory. OpenJDK: Incorrect bounds checks in NIO Buffers Libraries, 8234841 CVE-2020-2803 OpenJDK: Incorrect type checks in MethodType.readObject Libraries,...
MiracleLinux 7 : qemu-kvm-1.5.3-175.el7.1 (AXSA:2020-748:04)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-748:04 advisory. QEMU: usb: out-of-bounds r/w access issue while processing usb packets CVE-2020-14364 QEMU: slirp: use-after-free in ipreass function in ipinput.c...
MiracleLinux 7 : firefox-91.6.0-1.0.1.el7.AXS7 (AXSA:2022-3070:05)
The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3070:05 advisory. Mozilla: Extensions could have bypassed permission confirmation during update CVE-2022-22754 Mozilla: Memory safety bugs fixed in Firefox 97 and...