MiracleLinux 9 : iperf3-3.9-13.el9 (AXSA:2024-9259:02)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-9259:02 advisory. iperf3: possible denial of service CVE-2023-7250,ESNET-SECADV-2023-0002 iperf3: vulnerable to marvin attack if the authentication option is used...

MiracleLinux 8 : nginx:1.16 (AXSA:2021-1530:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1530:01 advisory. nginx: HTTP request smuggling in configurations with URL redirect used as errorpage CVE-2019-20372 Tenable has extracted the preceding description block...

MiracleLinux 9 : traceroute-2.1.0-18.el9 (AXSA:2024-7857:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7857:01 advisory. traceroute: improper command line parsing CVE-2023-46316 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : dotnet8.0-8.0.102-2.el8_9.ML.1 (AXSA:2024-7534:06)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7534:06 advisory. dotnet: Denial of Service in SignalR server CVE-2024-21386 dotnet: Denial of Service in X509Certificate2 CVE-2024-21404 Tenable has extracted the...

MiracleLinux 8 : python3.11-3.11.10-1.el8_10 (AXSA:2024-8969:25)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8969:25 advisory. python: cpython: tarfile: ReDos via excessive backtracking while parsing header values CVE-2024-6232 Tenable has extracted the preceding description block...

MiracleLinux 4 : postgresql-8.4.20-8.0.1.AXS4 (AXSA:2021-1754:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1754:02 advisory. postgresql: Reconnection can downgrade connection security settings CVE-2020-25694 postgresql: Multiple features escape security restricted operatio...

MiracleLinux 9 : emacs-27.2-8.el9.1 (AXSA:2023-6067:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6067:07 advisory. emacs: Regression of CVE-2023-28617 fixes in the MIRACLE LINUX CVE-2023-2491 emacs: command execution via shell metacharacters CVE-2022-48337 emacs:...

MiracleLinux 9 : krb5-1.21.1-1.el9 (AXSA:2023-6633:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6633:07 advisory. krb5: Denial of service through freeing uninitialized pointer CVE-2023-36054 krb5: double-free in KDC TGS processing CVE-2023-39975 Tenable has...

MiracleLinux 9 : python3.11-3.11.9-7.el9_5.2 (AXSA:2024-9495:34)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9495:34 advisory. python: Virtual environment venv activation scripts don't quote paths CVE-2024-9287 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : c-ares-1.13.0-11.el8_10 (AXSA:2024-8518:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8518:03 advisory. c-ares: Out of bounds read in aresreadline CVE-2024-25629 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 7 : nbdkit-1.8.0-3.el7 (AXSA:2020-4543:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4543:01 advisory. nbdkit: denial of service due to premature opening of back-end connection CVE-2019-14850 Tenable has extracted the preceding description block directly from...

MiracleLinux 9 : firefox-128.3.0-1.el9_4.ML.1 (AXSA:2024-8889:32)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8889:32 advisory. firefox: 115.16/128.3 ESR firefox: thunderbird: Memory safety bugs fixed in Firefox 131, Firefox ESR 115.16, Firefox ESR 128.3, Thunderbird 131, and...

MiracleLinux 8 : libexif-0.6.22-5.el8 (AXSA:2021-1382:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1382:02 advisory. libexif: out of bounds write due to an integer overflow in exif-entry.c CVE-2020-0452 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : wpa_supplicant-2.9-5.el8 (AXSA:2021-1816:03)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1816:03 advisory. wpasupplicant: P2P group information processing vulnerability CVE-2021-0326 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : xstream-1.3.1-12.el7 (AXSA:2021-1252:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1252:01 advisory. XStream: remote code execution due to insecure XML deserialization when relying on blocklists CVE-2020-26217 Tenable has extracted the preceding description...

MiracleLinux 8 : evolution-data-server-3.28.5-13.el8, evolution-ews-3.28.5-5.el8, evolution-3.28.5-12.el8 (AXSA:2020-530:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-530:01 advisory. evolution: specially crafted email leading to OpenPGP signatures being spoofed for arbitrary messages CVE-2018-15587 Tenable has extracted the preceding...

MiracleLinux 7 : kernel-3.10.0-1160.76.1.el7 (AXSA:2022-3725:11)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3725:11 advisory. Incomplete cleanup of multi-core shared buffers aka SBDR CVE-2022-21123 Incomplete cleanup of microarchitectural fill buffers aka SBDS CVE-2022-2112...

MiracleLinux 8 : postgresql:13 (AXSA:2026-049:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-049:01 advisory. postgresql: CREATE STATISTICS does not check for schema CREATE privilege CVE-2025-12817 postgresql: libpq undersizes allocations, via integer...

MiracleLinux 4 : bind-9.8.2-0.68.8.0.3.rc1.AXS4 (AXSA:2021-1549:05)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1549:05 advisory. bind: Buffer overflow in the SPNEGO implementation affecting GSSAPI security policy negotiation CVE-2020-8625 Tenable has extracted the preceding description...

MiracleLinux 8 : lynx-2.8.9-4.el8.ML.2 (AXSA:2022-3339:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-3339:02 advisory. lynx: Disclosure of HTTP authentication credentials via SNI data CVE-2021-38165 Tenable has extracted the preceding description block directly from the...