MiracleLinux 7 : bind-9.11.4-16.P2.6.0.1.el7.AXS7 (AXSA:2020-120:04)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-120:04 advisory. bind: BIND does not sufficiently limit the number of fetches performed when processing referrals CVE-2020-8616 bind: A logic error in code which chec...

MiracleLinux 7 : microcode_ctl-2.1-73.2.el7 (AXSA:2020-892:06)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-892:06 advisory. hw: Information disclosure issue in Intel SGX via RAPL interface CVE-2020-8695 hw: Vector Register Leakage-Active CVE-2020-8696 hw: Fast forward stor...

MiracleLinux 4 : net-snmp-5.5-60.AXS4.2 (AXSA:2020-924:07)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-924:07 advisory. net-snmp: Improper Privilege Management in EXTEND MIB may lead to privileged commands execution CVE-2020-15862 Tenable has extracted the preceding description...

MiracleLinux 7 : librabbitmq-0.8.0-3.el7 (AXSA:2020-608:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-608:01 advisory. librabbitmq: integer overflow in amqphandleinput in amqpconnection.c leads to heap-based buffer overflow CVE-2019-18609 Tenable has extracted the preceding...

MiracleLinux 9 : python3.9-3.9.19-8.el9.1 (AXSA:2024-9260:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9260:07 advisory. python: cpython: tarfile: ReDos via excessive backtracking while parsing header values CVE-2024-6232 Tenable has extracted the preceding description block...

MiracleLinux 8 : webkit2gtk3-2.36.7-1.el8.ML.1 (AXSA:2022-3856:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3856:02 advisory. webkitgtk: processing maliciously crafted web content may lead to arbitrary code execution CVE-2022-32893 Tenable has extracted the preceding description blo...

MiracleLinux 8 : java-1.8.0-openjdk-1.8.0.362.b09-2.el8 (AXSA:2023-4869:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4869:03 advisory. OpenJDK: improper restrictions in CORBA deserialization Serialization, 8285021 CVE-2023-21830 OpenJDK: soundbank URL remote loading Sound, 8293742...

MiracleLinux 9 : podman-5.2.2-13.el9_5 (AXSA:2025-9649:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9649:01 advisory. podman: buildah: Container breakout by using --jobs=2 and a race condition when building a malicious Containerfile CVE-2024-11218 Tenable has extracted the...

MiracleLinux 7 : orc-0.4.26-1.0.1.el7.AXS7 (AXSA:2024-8902:03)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8902:03 advisory. CVE-2024-40897: fix stack buffer overflow while construct error messages Disable gtk-doc building due lack of gtkdoc-mktmpl command in gtk-doc-1.28-2.el7 CVE...

MiracleLinux 9 : thunderbird-128.3.1-1.el9_4.ML.1 (AXSA:2024-8907:24)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8907:24 advisory. firefox: Use-after-free in Animation timeline 128.3.1 ESR Chemspill CVE-2024-9680 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : GStreamer, and libmad, gstreamer1-1.16.1-2.el8, libmad-0.15.1b-25.el8, orc-0.4.28-3.el8 (AXSA:2021-1743:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1743:01 advisory. libmad: Double-free in the maddecoderrun function CVE-2018-7263 CVEs: CVE-2018-7263 The maddecoderrun function in decoder.c in Underbit libmad through 0.15.1...

MiracleLinux 9 : nss-3.79.0-17.el9 (AXSA:2023-5231:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5231:02 advisory. nss: Arbitrary memory write via PKCS 12 CVE-2023-0767 Bug Fixes: In FIPS mode, nss should reject RSASSA-PSS salt lengths larger than the output size of the...

MiracleLinux 8 : go-toolset:rhel8 (AXSA:2024-7720:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7720:01 advisory. golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS CVE-2023-45288 Tenable has extracted the preceding description block direct...

MiracleLinux 9 : rust-1.66.1-2.el9 (AXSA:2023-6341:10)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6341:10 advisory. rust-cargo: cargo does not respect the umask when extracting dependencies CVE-2023-38497 Tenable has extracted the preceding description block directly from...

MiracleLinux 7 : file-5.11-36.el7 (AXSA:2020-4555:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4555:01 advisory. file: out-of-bounds read via a crafted ELF file CVE-2018-10360 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : firefox-115.10.0-1.el8_9.ML.1 (AXSA:2024-7711:17)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7711:17 advisory. GetBoundName in the JIT returned the wrong object CVE-2024-3852 Out-of-bounds-read after mis-optimized switch statement CVE-2024-3854 Incorrect...

MiracleLinux 8 : libwebp-1.0.0-8.el8.1 (AXSA:2023-6428:05)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6428:05 advisory. libwebp: Heap buffer overflow in WebP Codec CVE-2023-4863 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : kernel-5.14.0-427.16.1.el9_4 (AXSA:2024-8387:14)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8387:14 advisory. kernel: Marvin vulnerability side-channel leakage in the RSA decryption operation CVE-2023-6240 CVE-2024-25743 hw: amd: Instruction raise VC excepti...

MiracleLinux 9 : logrotate-3.18.0-7.el9 (AXSA:2023-4595:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-4595:01 advisory. logrotate: potential DoS from unprivileged users via the state file CVE-2022-1348 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : firefox-91.9.1-1.el9.ML.1 (AXSA:2022-4012:30)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-4012:30 advisory. Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution CVE-2022-1529 Mozilla: Prototype pollution in Top-Level...