MiracleLinux 8 : dotnet5.0-5.0.203-1.el8.ML.1 (AXSA:2021-2298:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2298:06 advisory. dotnet: .NET Core single-file application privilege escalation CVE-2021-31204 In order for the update to be complete, self-contained applications deployed...

MiracleLinux 9 : firefox-102.4.0-1.el9.ML.1 (AXSA:2023-4980:05)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-4980:05 advisory. Mozilla: Same-origin policy violation could have leaked cross-origin URLs CVE-2022-42927 Mozilla: Memory Corruption in JS Engine CVE-2022-42928...

MiracleLinux 8 : openjpeg2-2.4.0-5.el8 (AXSA:2022-4149:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4149:01 advisory. openjpeg: segmentation fault in opj2decompress due to uninitialized pointer CVE-2022-1122 Tenable has extracted the preceding description block directly from...

MiracleLinux 9 : ghostscript-9.54.0-10.el9 (AXSA:2023-6481:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6481:03 advisory. ghostscript: vulnerable to OS command injection due to mishandles permission validation for pipe devices CVE-2023-36664 Tenable has extracted the preceding...

MiracleLinux 9 : buildah-1.31.5-1.el9_3 (AXSA:2024-7725:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7725:02 advisory. buildah: full container escape at build time CVE-2024-1753 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : perl-HTTP-Tiny-0.074-2.el8 (AXSA:2023-7126:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-7126:02 advisory. http-tiny: insecure TLS cert default CVE-2023-31486 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 8 : java-11-openjdk-11.0.12.0.7-0.el8 (AXSA:2021-2247:11)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2247:11 advisory. OpenJDK: Incorrect comparison during range check elimination Hotspot, 8264066 CVE-2021-2388 OpenJDK: FTP PASV command response can cause FtpClient t...

MiracleLinux 9 : python3.9-3.9.18-1.el9 (AXSA:2023-6804:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6804:05 advisory. python: tarfile module directory traversal CVE-2007-4559 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : targetcli-2.1.51-4.el8 (AXSA:2020-296:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-296:01 advisory. targetcli: world writable /var/run/targetclid.sock allows unprivileged user to execute commands CVE-2020-10699 Tenable has extracted the preceding description...

MiracleLinux 7 : bluez-5.44-7.el7 (AXSA:2020-565:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-565:03 advisory. bluez: Improper access control in subsystem could result in privilege escalation and DoS CVE-2020-0556 Tenable has extracted the preceding description block...

MiracleLinux 7 : ipa-4.6.5-11.4.0.1.el7.AXS7 (AXSA:2020-4468:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4468:01 advisory. ipa: Denial of service in IPA server due to wrong use of berscanf CVE-2019-14867 ipa: Batch API logging user passwords to /var/log/httpd/errorlog...

MiracleLinux 8 : firefox-78.4.0-1.0.1.el8_2 (AXSA:2020-890:23)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-890:23 advisory. Mozilla: Memory safety bugs fixed in Firefox 82 and Firefox ESR 78.4 CVE-2020-15683 chromium-browser: Use after free in WebRTC CVE-2020-15969 Tenable...

MiracleLinux 9 : httpd-2.4.57-8.el9 (AXSA:2024-7910:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7910:01 advisory. httpd: modmacro: out-of-bounds read vulnerability CVE-2023-31122 Tenable has extracted the preceding description block directly from the MiracleLinux securit...

MiracleLinux 8 : dotnet8.0-8.0.105-1.el8_10.ML.1 (AXSA:2024-8469:12)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8469:12 advisory. dotnet: stack buffer overrun in Double Parse CVE-2024-30045 dotnet: denial of service in ASP.NET Core due to deadlock in Http2OutputProducer.Stop...

MiracleLinux 9 : thunderbird-102.5.0-2.el9.ML.1 (AXSA:2023-5045:06)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-5045:06 advisory. Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen notification bypass CVE-2022-45404...

MiracleLinux 8 : libX11-1.6.8-8.el8 (AXSA:2024-8318:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8318:03 advisory. libX11: out-of-bounds memory access in XkbReadKeySyms CVE-2023-43785 libX11: stack exhaustion from infinite recursion in PutSubImage CVE-2023-43786...

MiracleLinux 8 : postgresql:13 (AXSA:2024-7568:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7568:01 advisory. postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL CVE-2024-0985 Tenable has extracted the preceding description block...

MiracleLinux 8 : less-530-3.el8_10 (AXSA:2024-8510:05)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8510:05 advisory. less: OS command injection CVE-2024-32487 less: missing quoting of shell metacharacters in LESSCLOSE handling CVE-2022-48624 Tenable has extracted t...

MiracleLinux 8 : php:7.4 (AXSA:2022-4415:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-4415:01 advisory. php: Special character breaks path in xml parsing CVE-2021-21707 php: Use after free due to phpfilterfloat failing for ints CVE-2021-21708 php-pear:...

MiracleLinux 8 : samba-4.15.5-5.el8 (AXSA:2022-3454:06)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3454:06 advisory. samba: Symlink race error can allow metadata read and modify outside of the exported share CVE-2021-20316 samba: Information leak via symlinks of...