MiracleLinux 4 : log4j-1.2.14-6.4.0.1.AXS4 (AXSA:2021-2880:02)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-2880:02 advisory. log4j: Remote code execution in Log4j 1.x when application is configured to use JMSAppender CVE-2021-4104 Tenable has extracted the preceding description blo...

MiracleLinux 8 : xz-5.2.4-4.el8 (AXSA:2022-3662:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3662:02 advisory. gzip: arbitrary-file-write vulnerability CVE-2022-1271 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 9 : skopeo-1.14.5-1.el9_4 (AXSA:2024-8757:04)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8757:04 advisory. golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm CVE-2024-24783 Tenable has extracted the preceding description block...

MiracleLinux 8 : nginx:1.18 (AXSA:2021-2309:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2309:01 advisory. nginx: Off-by-one in ngxresolvercopy when labels are followed by a pointer to a root domain name CVE-2021-23017 Tenable has extracted the preceding descripti...

MiracleLinux 9 : thunderbird-128.3.1-1.el9_4.ML.1 (AXSA:2024-8907:24)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8907:24 advisory. firefox: Use-after-free in Animation timeline 128.3.1 ESR Chemspill CVE-2024-9680 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : webkit2gtk3-2.36.7-1.el8.ML.1 (AXSA:2022-3856:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3856:02 advisory. webkitgtk: processing maliciously crafted web content may lead to arbitrary code execution CVE-2022-32893 Tenable has extracted the preceding description blo...

MiracleLinux 7 : firefox-78.13.0-2.0.1.el7.AXS7 (AXSA:2021-2372:23)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2372:23 advisory. Mozilla: Uninitialized memory in a canvas object could have led to memory corruption CVE-2021-29980 Mozilla: Incorrect instruction reordering during...

MiracleLinux 9 : skopeo-1.9.2-1.el9 (AXSA:2023-5066:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5066:01 advisory. containers/storage: DoS via malicious image CVE-2021-20291 golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs...

MiracleLinux 9 : logrotate-3.18.0-7.el9 (AXSA:2023-4595:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-4595:01 advisory. logrotate: potential DoS from unprivileged users via the state file CVE-2022-1348 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : motif-2.3.4-28.el9 (AXSA:2024-7932:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7932:01 advisory. libXpm: out of bounds read in XpmCreateXpmImageFromBuffer CVE-2023-43788 libXpm: out of bounds read on XPM with corrupted colormap CVE-2023-43789...

MiracleLinux 9 : firefox-91.9.1-1.el9.ML.1 (AXSA:2022-4012:30)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-4012:30 advisory. Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution CVE-2022-1529 Mozilla: Prototype pollution in Top-Level...

MiracleLinux 8 : dotnet7.0-7.0.107-1.el8.ML.1 (AXSA:2023-6203:20)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6203:20 advisory. dotnet: .NET Kestrel: Denial of Service processing X509 Certificates CVE-2023-29331 dotnet: vulnerability exists in NuGet where a potential race...

MiracleLinux 8 : sysstat-11.7.3-11.el8 (AXSA:2023-7101:05)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-7101:05 advisory. sysstat: checkoverflow function can work incorrectly that lead to an overflow CVE-2023-33204 Tenable has extracted the preceding description block directly...

MiracleLinux 9 : thunderbird-102.15.0-1.el9.ML.1 (AXSA:2023-6387:25)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6387:25 advisory. Mozilla: Memory corruption in IPC CanvasTranslator CVE-2023-4573 Mozilla: Memory corruption in IPC ColorPickerShownCallback CVE-2023-4574 Mozilla:...

MiracleLinux 9 : webkit2gtk3-2.38.5-1.el9.2 (AXSA:2023-5997:11)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5997:11 advisory. webkitgtk: a use-after-free when processing maliciously crafted web content CVE-2023-32373 webkitgtk: an out-of-bounds read when processing maliciou...

MiracleLinux 8 : python3-3.6.8-51.el8.2.ML.1 (AXSA:2023-6551:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6551:06 advisory. python: TLS handshake bypass CVE-2023-40217 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

MiracleLinux 4 : firefox-78.12.0-1.0.1.AXS4 (AXSA:2021-2238:17)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2238:17 advisory. Mozilla: Use-after-free in accessibility features of a document CVE-2021-29970 Mozilla: Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12...

MiracleLinux 7 : fontforge-20120731b-13.el7 (AXSA:2020-749:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-749:01 advisory. fontforge: out-of-bounds write in SFDGetFontMetaData function in sfd.c CVE-2020-5395 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : freetype-2.9.1-4.el8.1 (AXSA:2021-1386:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1386:01 advisory. freetype: Heap-based buffer overflow due to integer truncation in LoadSBitPng CVE-2020-15999 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : rust-toolset:rhel8 (AXSA:2022-3550:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3550:02 advisory. rust: Race condition in removedirall leading to removal of files outside of the directory being removed CVE-2022-21658 Tenable has extracted the preceding...