MiracleLinux 8 : libtiff-4.0.9-33.el8_10 (AXSA:2024-8966:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8966:06 advisory. libtiff: NULL pointer dereference in tifdirinfo.c CVE-2024-7006 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : dotnet7.0-7.0.110-1.el9.ML.1 (AXSA:2023-6345:24)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6345:24 advisory. dotnet: RCE under dotnet commands CVE-2023-35390 dotnet: Kestrel vulnerability to slow read attacks leading to Denial of Service attack CVE-2023-381...

MiracleLinux 7 : emacs-24.3-23.el7.1 (AXSA:2023-5879:04)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5879:04 advisory. emacs: command injection vulnerability in htmlfontify.el CVE-2022-48339 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : dotnet6.0-6.0.106-1.el9.ML.1 (AXSA:2022-4011:15)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4011:15 advisory. dotnet: NuGet Credential leak due to loss of control of third party symbol server domain CVE-2022-30184 Tenable has extracted the preceding description block...

MiracleLinux 9 : php:8.1 (AXSA:2024-9437:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9437:01 advisory. php: host/secure cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 php: passwordverify can erroneously return true, opening ATO risk...

MiracleLinux 7 : firefox-115.12.0-1.0.1.el7.AXS7 (AXSA:2024-8407:20)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8407:20 advisory. firefox: Use-after-free in networking CVE-2024-5702 firefox: Use-after-free in JavaScript object transplant CVE-2024-5688 firefox: External protocol...

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.412.b08-1.el7 (AXSA:2024-7692:06)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7692:06 advisory. OpenJDK: long Exception message leading to crash 8319851 CVE-2024-21011 OpenJDK: integer overflow in C1 compiler address generation 8322122...

MiracleLinux 8 : libjpeg-turbo-1.5.3-12.el8 (AXSA:2021-2609:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2609:01 advisory. libjpeg-turbo: Stack-based buffer overflow in the transform component CVE-2020-17541 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : libXpm-3.5.12-11.el8 (AXSA:2024-8338:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8338:02 advisory. libXpm: out of bounds read in XpmCreateXpmImageFromBuffer CVE-2023-43788 libXpm: out of bounds read on XPM with corrupted colormap CVE-2023-43789...

MiracleLinux 8 : edk2-20220126gitbb1bba3d77-13.el8_10.4 (AXSA:2024-9443:13)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-9443:13 advisory. edk2: Integer overflows in PeCoffLoaderRelocateImage CVE-2024-38796 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 4 : spice-gtk-0.26-8.AXS4.2 (AXSA:2020-4447:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4447:01 advisory. spice-client: Insufficient encoding checks for LZ can cause different integer/buffer overflows CVE-2018-10893 Tenable has extracted the preceding description...

MiracleLinux 8 : mailman:2.1 (AXSA:2021-2169:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2169:01 advisory. mailman: arbitrary content injection via the options login page CVE-2020-12108 mailman: arbitrary content injection via the private archive login pa...

MiracleLinux 8 : xorg-x11-server-Xwayland-21.1.3-10.el8 (AXSA:2023-5920:02)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-5920:02 advisory. xorg-x11-server: buffer overflow in GetCountedString in xkb/xkb.c CVE-2022-3550 xorg-x11-server: XkbGetKbdByName use-after-free CVE-2022-4283...

MiracleLinux 7 : buildah-1.11.6-8.el7 (AXSA:2020-4680:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4680:01 advisory. proglottis/gpgme: Use-after-free in GPGME bindings during container image pull CVE-2020-8945 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : ghostscript-9.27-13.el8_10 (AXSA:2024-8424:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8424:03 advisory. ghostscript: OPVP device arbitrary code execution via custom Driver library CVE-2024-33871 Tenable has extracted the preceding description block directly fro...

MiracleLinux 9 : php:8.1 (AXSA:2024-7477:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7477:01 advisory. php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: DoS vulnerability when parsing multipart request body CVE-2023-0662 php:...

MiracleLinux 8 : container-tools:rhel8 (AXSA:2023-5977:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5977:01 advisory. golang: net/http: improper sanitization of Transfer-Encoding header CVE-2022-1705 golang: go/parser: stack exhaustion in all Parse functions...

MiracleLinux 8 : tcpdump-4.9.3-1.el8 (AXSA:2021-1229:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-1229:01 advisory. tcpdump: SMB data printing mishandled CVE-2018-10103 tcpdump: SMB data printing mishandled CVE-2018-10105 tcpdump: Out of bounds read/write in...

MiracleLinux 7 : fwupdate-12-6.0.1.el7.AXS7 (AXSA:2020-255:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-255:01 advisory. grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process CVE-2020-10713 grub2: grubmalloc does not validate allocation...

MiracleLinux 7 : ipa-4.6.8-5.4.0.1.el7.AXS7 (AXSA:2021-1615:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1615:01 advisory. jquery: Passing HTML containing elements to manipulation methods could result in untrusted code execution CVE-2020-11023 Tenable has extracted the preceding...