MiracleLinux 8 : kernel-4.18.0-477.15.1.el8_8 (AXSA:2023-6210:20)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6210:20 advisory. kernel: tls: race condition in dotlsgetsockopt may lead to use-after-free or NULL pointer dereference CVE-2023-28466 Tenable has extracted the preceding...

MiracleLinux 8 : java-1.8.0-openjdk-1.8.0.292.b10-0.el8 (AXSA:2021-1703:07)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1703:07 advisory. OpenJDK: Incomplete enforcement of JAR signing disabled algorithms 8249906 CVE-2021-2163 Tenable has extracted the preceding description block directly from...

MiracleLinux 8 : dotnet3.1-3.1.420-1.el8.ML.1 (AXSA:2022-3744:08)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3744:08 advisory. dotnet: NuGet Credential leak due to loss of control of third party symbol server domain CVE-2022-30184 Tenable has extracted the preceding description block...

MiracleLinux 9 : java-11-openjdk-11.0.20.0.8-2.el9.ML.1 (AXSA:2023-6266:17)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6266:17 advisory. OpenJDK: ZIP file parsing infinite loop 8302483 CVE-2023-22036 OpenJDK: weakness in AES implementation 8308682 CVE-2023-22041 OpenJDK: improper...

MiracleLinux 8 : firefox-91.9.1-1.el8.ML.1 (AXSA:2022-3199:13)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3199:13 advisory. Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution CVE-2022-1529 Mozilla: Prototype pollution in Top-Level...

MiracleLinux 9 : dotnet6.0-6.0.135-1.el9_4.ML.1 (AXSA:2024-8898:17)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8898:17 advisory. dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList CVE-2024-43484 dotnet: Denial of Service in System.Text.Json CVE-2024-43485...

MiracleLinux 8 : http-parser-2.8.0-5.el8.2 (AXSA:2020-132:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-132:02 advisory. nodejs: HTTP request smuggling using malformed Transfer-Encoding header CVE-2019-15605 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : firefox-115.3.1-1.el8.ML.1 (AXSA:2023-6496:38)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6496:38 advisory. firefox: use-after-free in workers CVE-2023-3600 Mozilla: Out-of-bounds write in PathOps CVE-2023-5169 Mozilla: Use-after-free in Ion Compiler...

MiracleLinux 4 : glib2-2.28.8-10.0.1.AXS4 (AXSA:2021-1964:02)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1964:02 advisory. glib: integer overflow in gbytesnew function on 64-bit platforms due to an implicit cast from 64 bits to 32 bits CVE-2021-27219 Tenable has extracted the...

MiracleLinux 7 : firefox-91.8.0-1.0.1.el7.AXS7 (AXSA:2022-3144:08)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3144:08 advisory. Mozilla: Use-after-free in NSSToken objects CVE-2022-1097 Mozilla: Out of bounds write due to unexpected WebAuthN Extensions CVE-2022-28281 Mozilla:...

MiracleLinux 9 : pam-1.5.1-22.el9_5 (AXSA:2024-9416:06)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9416:06 advisory. pam: Improper Hostname Interpretation in pamaccess Leads to Access Control Bypass CVE-2024-10963 Tenable has extracted the preceding description block direct...

MiracleLinux 9 : tpm2-tools-5.2-4.el9 (AXSA:2024-9175:01)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-9175:01 advisory. tpm2-tools: arbitrary quote data may go undetected by tpm2checkquote CVE-2024-29038 tpm2-tools: pcr selection value is not compared with the attest...

MiracleLinux 9 : bzip2-1.0.8-10.el9_5 (AXSA:2025-9645:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9645:02 advisory. bzip2: bzip2: Data integrity error when decompressing with data integrity tests fail. CVE-2019-12900 Tenable has extracted the preceding description block...

MiracleLinux 8 : libdb-5.3.28-40.el8 (AXSA:2021-1805:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1805:02 advisory. libdb: Denial of service in the Data Store component CVE-2019-2708 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : postgresql:16 (AXSA:2024-8740:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8740:01 advisory. postgresql: PostgreSQL pgstatsext and pgstatsextexprs lack authorization checks CVE-2024-4317 postgresql: PostgreSQL relation replacement during...

MiracleLinux 8 : poppler-20.11.0-6.el8 (AXSA:2023-5901:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5901:03 advisory. poppler: integer overflow in JBIG2 decoder using malformed files CVE-2022-38784 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : spice-gtk-0.37-1.el8.2, spice-0.14.2-1.el8.1 (AXSA:2020-681:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-681:04 advisory. spice: multiple buffer overflow vulnerabilities in QUIC decoding code CVE-2020-14355 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : libxml2-2.9.13-6.el9 (AXSA:2024-7767:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7767:02 advisory. libxml2: use-after-free in XMLReader CVE-2024-25062 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 8 : gnutls-3.6.16-5.el8 (AXSA:2022-3927:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3927:01 advisory. gnutls: Double free during gnutlspkcs7verify. CVE-2022-2509 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : python3-3.6.8-31.el8 (AXSA:2021-1204:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1204:01 advisory. python: XSS vulnerability in the documentation XML-RPC server in servertitle field CVE-2019-16935 python: infinite loop in the tarfile module via...