MiracleLinux 8 : dotnet6.0-6.0.109-1.el8.ML.1 (AXSA:2022-3851:12)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3851:12 advisory. dotnet: DenialOfService - ASP.NET Core MVC vulnerable to stack overflow via ModelStateDictionary recursion. CVE-2022-38013 CVEs: CVE-2022-38013 Tenable has...

MiracleLinux 7 : rh-mariadb105-mariadb (AXSA:2022-3124:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3124:01 advisory. mysql: Server: DML unspecified vulnerability CPU Apr 2021 CVE-2021-2154 mysql: Server: DML unspecified vulnerability CPU Apr 2021 CVE-2021-2166 mysq...

MiracleLinux 7 : openjpeg2-2.3.1-2.el7 (AXSA:2020-4445:02)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4445:02 advisory. openjpeg: Heap-based buffer overflow in opjt1clbldecodeprocessor CVE-2020-6851 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : linux-firmware-20230404-117.git2e92a49f.el8.ML.1 (AXSA:2023-6487:08)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6487:08 advisory. hw: amd: Cross-Process Information Leak CVE-2023-20593 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 8 : libssh-0.9.4-3.el8 (AXSA:2021-2641:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2641:02 advisory. libssh: NULL pointer dereference in sftpserver.c if sshbuffernew returns NULL CVE-2020-16135 Tenable has extracted the preceding description block directly...

MiracleLinux 9 : grafana-pcp-5.1.1-1.el9 (AXSA:2023-5597:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5597:02 advisory. golang: net/http: handle server errors after sending GOAWAY CVE-2022-27664 Tenable has extracted the preceding description block directly from the MiracleLin...

MiracleLinux 8 : microcode_ctl-20210216-1.20210608.1.el8 (AXSA:2021-2304:10)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2304:10 advisory. hw: Special Register Buffer Data Sampling SRBDS CVE-2020-0543 hw: Vector Register Data Sampling CVE-2020-0548 hw: L1D Cache Eviction Sampling...

MiracleLinux 9 : thunderbird-102.14.0-1.el9.ML.1 (AXSA:2023-6344:22)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6344:22 advisory. Mozilla: Offscreen Canvas could have bypassed cross-origin restrictions CVE-2023-4045 Mozilla: Incorrect value used during WASM compilation...

MiracleLinux 7 : python-2.7.5-93.0.1.el7.AXS7 (AXSA:2023-6068:37)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6068:37 advisory. python: urllib.parse url blocklisting bypass CVE-2023-24329 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 7 : java-11-openjdk-11.0.10.0.9-0.el7 (AXSA:2021-1297:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1297:02 advisory. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Bug Fixes and Enhancements:...

MiracleLinux 7 : rh-nginx118-nginx-1.18.0-3.el7 (AXSA:2021-1813:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1813:01 advisory. nginx: Off-by-one in ngxresolvercopy when labels are followed by a pointer to a root domain name CVE-2021-23017 Tenable has extracted the preceding descripti...

MiracleLinux 8 : booth-1.0-199.1.ac1d34c.git.el8.1 (AXSA:2022-3841:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3841:01 advisory. booth: authfile directive in booth config file is completely ignored. CVE-2022-2553 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : dovecot-2.3.16-6.el8_10 (AXSA:2024-8878:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8878:05 advisory. dovecot: using a large number of address headers may trigger a denial of service CVE-2024-23184 dovecot: very large headers can cause resource...

MiracleLinux 8 : c-ares-1.13.0-6.el8.2 (AXSA:2023-6142:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6142:03 advisory. c-ares: 0-byte UDP payload Denial of Service CVE-2023-32067 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : grafana-pcp-5.1.1-9.el8_10 (AXSA:2024-9021:07)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-9021:07 advisory. golang-fips: Golang FIPS zeroed buffer CVE-2024-9355 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 8 : thunderbird-91.3.0-2.el8.ML.1 (AXSA:2021-2532:20)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2532:20 advisory. Mozilla: Use-after-free in HTTP2 Session object Mozilla: Memory safety bugs fixed in Firefox 94 and Firefox ESR 91.3 Mozilla: iframe sandbox rules d...

MiracleLinux 8 : bind-9.11.36-8.el8 (AXSA:2023-5855:05)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5855:05 advisory. bind: processing large delegations may severely degrade resolver performance CVE-2022-2795 Tenable has extracted the preceding description block directly fro...

MiracleLinux 7 : containernetworking-plugins-0.8.3-3.el7 (AXSA:2020-186:02)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-186:02 advisory. containernetworking/plugins: IPv6 router advertisements allow for MitM attacks on IPv4 clusters CVE-2020-10749 Tenable has extracted the preceding description...

MiracleLinux 8 : unbound-1.16.2-5.8.el8_10 (AXSA:2025-9618:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9618:01 advisory. unbound: unrestricted reconfiguration enabled to anyone that may lead to local privilege escalation CVE-2024-1488 unbound: Unbounded name compressio...

MiracleLinux 7 : firefox-91.11.0-2.0.1.el7.AXS7 (AXSA:2022-3440:15)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3440:15 advisory. Mozilla: CSP sandbox header without allow-scripts can be bypassed via retargeted javascript: URI CVE-2022-34468 Mozilla: Use-after-free in nsSHistor...