MiracleLinux 8 : fetchmail-6.4.24-1.el8.ML.1 (AXSA:2022-3362:02)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3362:02 advisory. fetchmail: DoS or information disclosure when logging long messages CVE-2021-36386 fetchmail: STARTTLS session encryption bypassing CVE-2021-39272...

MiracleLinux 9 : firefox-91.12.0-2.el9.ML.1 (AXSA:2022-4030:33)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-4030:33 advisory. Mozilla: Memory safety bugs fixed in Firefox 103 and 102.1 CVE-2022-2505 Mozilla: Directory indexes for bundled resources reflected URL parameters...

MiracleLinux 9 : nodejs:18 (AXSA:2023-6463:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6463:01 advisory. nodejs: Permissions policies can be bypassed via Module.load CVE-2023-32002 nodejs-semver: Regular expression denial of service CVE-2022-25883 nodej...

MiracleLinux 8 : thunderbird-102.9.0-1.el8.ML.1 (AXSA:2023-5238:12)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-5238:12 advisory. Mozilla: Incorrect code generation during JIT compilation CVE-2023-25751 Mozilla: Memory safety bugs fixed in Firefox 111 and Firefox ESR 102.9...

MiracleLinux 8 : dotnet6.0-6.0.135-1.el8_10.ML.1 (AXSA:2024-8895:16)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8895:16 advisory. dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList CVE-2024-43484 dotnet: Multiple .NET components susceptible to hash flooding...

MiracleLinux 8 : git-2.39.1-1.el8 (AXSA:2023-5936:07)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5936:07 advisory. git: On multi-user machines Git users might find themselves unexpectedly in a Git worktree CVE-2022-24765 git: Bypass of safe.directory protections...

MiracleLinux 8 : redis:6 (AXSA:2021-2495:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2495:01 advisory. redis: Lua scripts can overflow the heap-based Lua stack CVE-2021-32626 redis: Integer overflow issue with Streams CVE-2021-32627 redis: Integer...

MiracleLinux 4 : pacemaker-1.1.15-5.0.1.AXS4 (AXSA:2021-1251:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1251:01 advisory. pacemaker: ACL restrictions bypass CVE-2020-25654 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Not...

MiracleLinux 8 : zziplib-0.13.68-8.el8 (AXSA:2020-278:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-278:02 advisory. zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : open-vm-tools-11.0.5-3.el7.6 (AXSA:2023-6175:05)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6175:05 advisory. open-vm-tools: authentication bypass vulnerability in the vgauth module CVE-2023-20867 Tenable has extracted the preceding description block directly from th...

MiracleLinux 8 : python-jinja2-2.10.1-5.el8_10 (AXSA:2024-8524:03)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8524:03 advisory. jinja2: accepts keys containing non-attribute characters CVE-2024-34064 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 7 : rh-nodejs14-nodejs-nodemon-2.0.3-2.el7, rh-nodejs14-nodejs-14.17.2-1.el7 (AXSA:2021-2260:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2260:01 advisory. nodejs-hosted-git-info: Regular Expression denial of service via shortcutMatch in fromUrl CVE-2021-23362 nodejs-ssri: Regular expression DoS ReDoS...

MiracleLinux 9 : krb5-1.21.1-2.el9_4 (AXSA:2024-8746:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8746:04 advisory. krb5: GSS message token handling CVE-2024-37371 krb5: GSS message token handling CVE-2024-37370 Tenable has extracted the preceding description bloc...

MiracleLinux 8 : kernel-4.18.0-553.72.1.el8_10 (AXSA:2025-10835:64)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10835:64 advisory. kernel: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction CVE-2025-38211 kernel: scsi: lpfc: Use memcpy for BIOS version...

MiracleLinux 9 : linux-firmware-20240603-143.1.el9_4 (AXSA:2024-8596:08)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8596:08 advisory. kernel: Reserved fields in guest message responses may not be zero initialized CVE-2023-31346 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : thunderbird-115.13.0-3.el8_10.ML.1 (AXSA:2024-8588:17)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8588:17 advisory. Mozilla: Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, and Thunderbird 115.13 CVE-2024-6604 Mozilla: Race condition in permission...

MiracleLinux 9 : mod_http2-2.0.26-2.el9 (AXSA:2024-8097:03)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8097:03 advisory. modhttp2: httpd: CONTINUATION frames DoS CVE-2024-27316 Tenable has extracted the preceding description block directly from the MiracleLinux security advisor...

MiracleLinux 8 : aide-0.16-14.el8.1 (AXSA:2022-3054:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-3054:01 advisory. aide: heap-based buffer overflow on outputs larger than B64BUF CVE-2021-45417 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : libreoffice-7.1.8.1-14.el9_4.ML.1 (AXSA:2024-8728:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8728:07 advisory. libreoffice: bility to trust not validated macro signatures removed in high security mode CVE-2024-6472 Tenable has extracted the preceding description block...

MiracleLinux 8 : java-17-openjdk-17.0.7.0.7-1.el8 (AXSA:2023-5307:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5307:05 advisory. OpenJDK: improper connection handling during TLS handshake 8294474 CVE-2023-21930 OpenJDK: Swing HTML parsing issue 8296832 CVE-2023-21939 OpenJDK:...