MiracleLinux 9 : bind-9.16.23-11.el9.1 (AXSA:2023-6228:06)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6228:06 advisory. bind: named's configured cache size limit can be significantly exceeded CVE-2023-2828 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : c-ares-1.13.0-6.el8.ML.1 (AXSA:2022-3337:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3337:02 advisory. c-ares: Missing input validation of host names may lead to domain hijacking CVE-2021-3672 Tenable has extracted the preceding description block directly from...

MiracleLinux 8 : grub2-2.02-123.el8.ML.1 (AXSA:2022-3578:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3578:03 advisory. grub2: Incorrect permission in grub.cfg allow unprivileged user to read the file content CVE-2021-3981 Tenable has extracted the preceding description block...

MiracleLinux 8 : dotnet8.0-8.0.101-1.el8_9.ML.1 (AXSA:2024-7408:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7408:02 advisory. dotnet: Information Disclosure: MD.SqlClientMDS & System.data.SQLClient SDS CVE-2024-0056 dotnet: X509 Certificates - Validation Bypass across Azure...

MiracleLinux 9 : bubblewrap and flatpak (AXSA:2024-8787:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8787:02 advisory. flatpak: Access to files outside sandbox for apps using persistent= --persist CVE-2024-42472 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : libpq-13.5-1.el8 (AXSA:2022-3378:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3378:01 advisory. postgresql: libpq processes unencrypted bytes from man-in-the-middle CVE-2021-23222 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : gstreamer1-plugins-bad-free-1.16.1-2.el8_9.ML.1 (AXSA:2024-7357:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7357:01 advisory. gstreamer: MXF demuxer use-after-free vulnerability CVE-2023-44446 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : git-2.18.4-2.el8 (AXSA:2020-405:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-405:06 advisory. git: Crafted URL containing new lines, empty host or lacks a scheme can cause credential leak CVE-2020-11008 Tenable has extracted the preceding description...

MiracleLinux 8 : httpd:2.4 (AXSA:2022-3552:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3552:01 advisory. httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: modproxyuwsgi: out-of-bounds read via a crafted request...

MiracleLinux 7 : firefox-128.2.0-1.0.1.el7.AXS7 (AXSA:2024-9386:39)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-9386:39 advisory. firefox: 115.15/128.2 ESR mozilla: Type confusion when looking up a property name in a with block CVE-2024-8381 mozilla: Internal event interfaces...

MiracleLinux 9 : python-jwcrypto-1.5.6-2.el9 (AXSA:2024-9264:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-9264:02 advisory. JWCrypto: denail of service Via specifically crafted JWE CVE-2023-6681 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : ipa-4.11.0-15.el9_4.ML.1 (AXSA:2024-8146:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8146:07 advisory. freeipa: delegation rules allow a proxy service to impersonate any user to access another target service CVE-2024-2698 freeipa: user can obtain a ha...

MiracleLinux 7 : rsyslog-8.24.0-57.el7.3 (AXSA:2022-3197:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3197:02 advisory. rsyslog: Heap-based overflow in TCP syslog server CVE-2022-24903 Tenable has extracted the preceding description block directly from the MiracleLinux securit...

MiracleLinux 8 : perl-App-cpanminus:1.7044 (5.24) (AXSA:2024-9045:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9045:04 advisory. perl-App-cpanminus: Insecure HTTP in App::cpanminus Allows Code Execution Vulnerability CVE-2024-45321 Tenable has extracted the preceding description block...

MiracleLinux 9 : perl-CPAN-2.29-3.el9 (AXSA:2023-6650:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-6650:01 advisory. perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS CVE-2023-31484 Tenable has extracted the preceding description block...

MiracleLinux 8 : nss-3.67.0-7.el8 (AXSA:2021-2574:07)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2574:07 advisory. nss: Memory corruption in decodeECorDsaSignature with DSA signatures and RSA-PSS CVE-2021-43527 Tenable has extracted the preceding description block directl...

MiracleLinux 9 : tomcat-9.0.87-1.el9_4.2 (AXSA:2024-8696:10)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8696:10 advisory. tomcat: Improper Handling of Exceptional Conditions CVE-2024-34750 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : systemd-239-40.el8 (AXSA:2021-1218:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1218:01 advisory. systemd: memory leak in buttonopen in login/logind-button.c when udev events are received CVE-2019-20386 Tenable has extracted the preceding description bloc...

MiracleLinux 9 : ghostscript-9.54.0-16.el9_4 (AXSA:2024-8422:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8422:02 advisory. ghostscript: OPVP device arbitrary code execution via custom Driver library CVE-2024-33871 Tenable has extracted the preceding description block directly fro...

MiracleLinux 8 : kernel-4.18.0-348.12.2.el8_5 (AXSA:2022-3013:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3013:03 advisory. kernel: xfs: raw block device data leak in XFSIOCALLOCSP IOCTL CVE-2021-4155 kernel: fscontext: heap overflow in legacy parameter handling...