MiracleLinux 8 : idm:DL1 (AXSA:2021-2291:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2291:01 advisory. jquery: Passing HTML containing elements to manipulation methods could result in untrusted code execution CVE-2020-11023 Tenable has extracted the preceding...

MiracleLinux 9 : podman-4.6.1-7.el9_3 (AXSA:2023-7058:08)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-7058:08 advisory. golang: crypto/tls: slow verification of certificate chains containing large RSA keys CVE-2023-29409 golang: html/template: improper handling of...

MiracleLinux 9 : libtiff-4.4.0-2.el9 (AXSA:2022-4563:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-4563:04 advisory. libtiff: Denial of Service via crafted TIFF file CVE-2022-0561 libtiff: Null source pointer lead to Denial of Service via crafted TIFF file...

MiracleLinux 9 : grub2-2.06-70.el9_3.2.ML.1 (AXSA:2024-7491:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7491:01 advisory. grub2: bypass the GRUB password protection feature CVE-2023-4001 Tenable has extracted the preceding description block directly from the MiracleLinux securit...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2024-8433:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8433:01 advisory. libvirt: negative gnew0 length can lead to unbounded memory allocation CVE-2024-2494 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : tpm2-tss-3.2.2-2.el9 (AXSA:2023-6873:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6873:02 advisory. tpm2-tss: Buffer Overlow in TSS2RCDecode CVE-2023-22745 Tenable has extracted the preceding description block directly from the MiracleLinux security advisor...

MiracleLinux 9 : texlive-20200406-26.el9 (AXSA:2023-6081:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6081:02 advisory. texlive: arbitrary code execution allows document complied with older version CVE-2023-32700 Tenable has extracted the preceding description block directly...

MiracleLinux 9 : dotnet8.0-8.0.110-1.el9_4.ML.1 (AXSA:2024-8897:18)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8897:18 advisory. dotnet: kestrel: closing an HTTP/3 stream can cause a race condition and lead to remote code execution CVE-2024-38229 dotnet: Multiple .NET componen...

MiracleLinux 9 : python3.9-3.9.18-1.el9 (AXSA:2023-6804:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6804:05 advisory. python: tarfile module directory traversal CVE-2007-4559 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : nano-5.6.1-6.el9 (AXSA:2024-9155:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-9155:02 advisory. nano: running chmod and chown on the filename allows malicious user to replace the emergency file with a malicious symlink to a root-owned file CVE-2024-5742...

MiracleLinux 9 : gdb-10.2-11.el9 (AXSA:2023-6781:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6781:02 advisory. libiberty: Heap/stack buffer overflow in the dlanglname function in d-demangle.c CVE-2021-3826 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : cryptsetup-2.3.3-2.el8 (AXSA:2021-1216:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1216:01 advisory. cryptsetup: Out-of-bounds write when validating segments CVE-2020-14382 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : python3.11-pip-22.3.1-4.el9 (AXSA:2023-6924:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6924:01 advisory. python: tarfile module directory traversal CVE-2007-4559 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 4 : thunderbird-68.10.0-1.AXS4 (AXSA:2020-225:05)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-225:05 advisory. Mozilla: Information disclosure due to manipulated URL object CVE-2020-12418 Mozilla: Use-after-free in nsGlobalWindowInner CVE-2020-12419 Mozilla:...

MiracleLinux 8 : bind-9.11.20-5.el8 (AXSA:2021-1277:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1277:01 advisory. bind: asterisk character in an empty non-terminal can cause an assertion failure in rbtdb.c CVE-2020-8619 bind: truncated TSIG response can lead to ...

MiracleLinux 7 : httpd-2.4.6-99.1.0.3.el7.AXS7 (AXSA:2024-8720:05)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8720:05 advisory. CVE-2024-39884: modules: source code disclosure with handlers configured via AddType. Resolving regression introduced by CVE-2024-38476 fix...

MiracleLinux 7 : rh-postgresql12-postgresql-12.9-1.el7 (AXSA:2021-2788:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2788:01 advisory. postgresql: memory disclosure in certain queries CVE-2021-3677 postgresql: server processes unencrypted bytes from man-in-the-middle CVE-2021-23214...

MiracleLinux 8 : go-toolset:rhel8 (AXSA:2024-7631:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7631:01 advisory. golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-1394 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : libtiff-4.0.9-28.el8 (AXSA:2023-6178:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6178:06 advisory. libtiff: heap-based buffer overflow in processCropSelections in tools/tiffcrop.c CVE-2022-48281 Tenable has extracted the preceding description block directl...

MiracleLinux 8 : kernel-4.18.0-240.22.1.el8_3 (AXSA:2021-1696:08)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1696:08 advisory. kernel: use after free in eventpoll.c may lead to escalation of privilege CVE-2020-0466 kernel: SCSI target LIO write to any block on ILO backstore...