MiracleLinux 8 : qt5-qtsvg-5.15.2-4.el8 (AXSA:2022-3608:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3608:01 advisory. qt: out-of-bounds write may lead to DoS CVE-2021-45930 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 7 : ipa-4.6.8-5.16.0.1.el7.AXS7 (AXSA:2024-7410:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7410:02 advisory. ipa: Invalid CSRF protection CVE-2023-5455 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

MiracleLinux 8 : openjpeg2-2.4.0-5.el8 (AXSA:2022-4149:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4149:01 advisory. openjpeg: segmentation fault in opj2decompress due to uninitialized pointer CVE-2022-1122 Tenable has extracted the preceding description block directly from...

MiracleLinux 8 : python3-3.6.8-47.el8.ML.1 (AXSA:2022-3849:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3849:02 advisory. pythonmailcap: findmatch function does not sanitise the second argument CVE-2015-20107 python: urllib.parse does not sanitize URLs containing ASCII...

MiracleLinux 9 : python3.9-3.9.18-1.el9 (AXSA:2023-6804:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6804:05 advisory. python: tarfile module directory traversal CVE-2007-4559 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : java-17-openjdk-17.0.10.0.7-2.el8 (AXSA:2024-7459:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7459:03 advisory. OpenJDK: array out-of-bounds access due to missing range check in C1 compiler 8314468 CVE-2024-20918 OpenJDK: incorrect handling of ZIP files with...

MiracleLinux 8 : firefox-91.10.0-1.el8.ML.1 (AXSA:2022-3739:18)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3739:18 advisory. Mozilla: Cross-Origin resource's length leaked CVE-2022-31736 Mozilla: Heap buffer overflow in WebGL CVE-2022-31737 Mozilla: Browser window spoof...

MiracleLinux 8 : python-dns-1.15.0-12.el8 (AXSA:2024-8211:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8211:01 advisory. dnspython: denial of service in stub resolver CVE-2023-29483 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : raptor2-2.0.15-16.el8 (AXSA:2021-2011:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2011:01 advisory. raptor: heap-based buffer overflows due to an error in calculating the maximum nspace declarations for the XML writer CVE-2017-18926 raptor2:...

MiracleLinux 8 : dotnet8.0-8.0.105-1.el8_10.ML.1 (AXSA:2024-8469:12)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8469:12 advisory. dotnet: stack buffer overrun in Double Parse CVE-2024-30045 dotnet: denial of service in ASP.NET Core due to deadlock in Http2OutputProducer.Stop...

MiracleLinux 9 : thunderbird-115.11.0-1.el9_4.ML.1 (AXSA:2024-8308:12)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8308:12 advisory. firefox: Arbitrary JavaScript execution in PDF.js CVE-2024-4367 firefox: IndexedDB files retained in private browsing mode CVE-2024-4767 firefox:...

MiracleLinux 8 : poppler-20.11.0-11.el8 (AXSA:2024-8323:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8323:02 advisory. poppler: NULL pointer dereference in FoFiType1C::convertToType1 CVE-2020-36024 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : pcp-6.2.0-5.el9_4 (AXSA:2024-8828:05)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8828:05 advisory. pcp: pmpost symlink attack allows escalating pcp to root user CVE-2024-45770 pcp: pmcd heap corruption through metric pmstore operations...

MiracleLinux 9 : mysql-8.0.36-1.el9_3.ML.1 (AXSA:2024-7606:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7606:01 advisory. mysql: InnoDB unspecified vulnerability CPU Apr 2023 CVE-2023-21911 mysql: Server: DDL unspecified vulnerability CPU Apr 2023 CVE-2023-21919,...

MiracleLinux 9 : thunderbird-102.5.0-2.el9.ML.1 (AXSA:2023-5045:06)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-5045:06 advisory. Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen notification bypass CVE-2022-45404...

MiracleLinux 4 : icu-4.2.1-15.AXS4 (AXSA:2020-4503:02)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4503:02 advisory. ICU: Integer overflow in UnicodeString::doAppend CVE-2020-10531 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : python39:3.9 and python39-devel:3.9 (AXSA:2023-6552:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6552:01 advisory. python: TLS handshake bypass CVE-2023-40217 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

MiracleLinux 8 : idm:DL1 (AXSA:2021-2291:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2291:01 advisory. jquery: Passing HTML containing elements to manipulation methods could result in untrusted code execution CVE-2020-11023 Tenable has extracted the preceding...

MiracleLinux 9 : pcs-0.11.3-4.el9.3.ML.1 (AXSA:2023-5266:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5266:07 advisory. webpack: avoid cross-realm objects CVE-2023-28154 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Not...

MiracleLinux 9 : openssl-3.0.1-43.el9 (AXSA:2022-3967:08)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3967:08 advisory. OpenSSL: X.509 Email Address Buffer Overflow CVE-2022-3602 OpenSSL: X.509 Email Address Variable Length Buffer Overflow CVE-2022-3786 Tenable has...