MiracleLinux 9 : ruby:3.1 (AXSA:2024-9453:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9453:01 advisory. rexml: REXML ReDoS vulnerability CVE-2024-49761 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note...

MiracleLinux 9 : thunderbird-102.5.0-2.el9.ML.1 (AXSA:2023-5045:06)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-5045:06 advisory. Mozilla: Service Workers might have learned size of cross-origin media files CVE-2022-45403 Mozilla: Fullscreen notification bypass CVE-2022-45404...

MiracleLinux 9 : pcp-6.2.0-5.el9_4 (AXSA:2024-8828:05)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8828:05 advisory. pcp: pmpost symlink attack allows escalating pcp to root user CVE-2024-45770 pcp: pmcd heap corruption through metric pmstore operations...

MiracleLinux 9 : skopeo-1.13.3-4.el9_3 (AXSA:2024-7582:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7582:01 advisory. golang: net/http/internal: Denial of Service DoS via Resource Consumption via HTTP requests CVE-2023-39326 Tenable has extracted the preceding description...

MiracleLinux 9 : varnish-6.6.2-4.el9_3.1 (AXSA:2024-7663:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7663:01 advisory. varnish: HTTP/2 Broken Window Attack may result in denial of service CVE-2024-30156 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : php:7.4 (AXSA:2022-3573:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3573:01 advisory. php: Local privilege escalation via PHP-FPM CVE-2021-21703 php: SSRF bypass in FILTERVALIDATEURL CVE-2021-21705 Tenable has extracted the preceding...

MiracleLinux 9 : firefox-102.4.0-1.el9.ML.1 (AXSA:2023-4980:05)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-4980:05 advisory. Mozilla: Same-origin policy violation could have leaked cross-origin URLs CVE-2022-42927 Mozilla: Memory Corruption in JS Engine CVE-2022-42928...

MiracleLinux 8 : linux-firmware-20240111-121.gitb3132c18.el8 (AXSA:2024-8159:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8159:05 advisory. hw: intel: Protection mechanism failure for some IntelR PROSet/Wireless WiFi CVE-2022-46329 hw: amd: INVD instruction may lead to a loss of SEV-ES...

MiracleLinux 4 : thunderbird-68.5.0-1.AXS4 (AXSA:2020-4478:02)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-4478:02 advisory. Mozilla: Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5 CVE-2020-6800 Mozilla: Out-of-bounds read when processing certain email message...

MiracleLinux 7 : hivex-1.3.10-6.11.el7 (AXSA:2021-1845:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1845:01 advisory. hivex: Buffer overflow when provided invalid node key length CVE-2021-3504 Tenable has extracted the preceding description block directly from the MiracleLin...

MiracleLinux 9 : redis:7 (AXSA:2025-11023:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11023:01 advisory. redis: Lua library commands may lead to integer overflow and potential RCE CVE-2025-46817 Redis: Redis: Authenticated users can execute LUA scripts...

MiracleLinux 9 : dotnet8.0-8.0.107-1.el9_4.ML.1 (AXSA:2024-8561:13)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8561:13 advisory. dotnet: DoS in System.Text.Json CVE-2024-30105 dotnet: DoS in ASP.NET Core 8 CVE-2024-35264 dotnet: DoS when parsing X.509 Content and...

MiracleLinux 7 : samba-4.10.16-24.0.1.el7.AXS7 (AXSA:2023-5216:04)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5216:04 advisory. samba: RC4/HMAC-MD5 NetLogon Secure Channel is weak and should be avoided CVE-2022-38023 Tenable has extracted the preceding description block directly from...

MiracleLinux 8 : polkit-0.115-13.el8.1 (AXSA:2022-3018:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3018:02 advisory. polkit: Local privilege escalation in pkexec due to incorrect handling of argument vector CVE-2021-4034 Tenable has extracted the preceding description block...

MiracleLinux 8 : open-vm-tools-11.3.5-1.el8.1.ML.1 (AXSA:2022-3807:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3807:02 advisory. open-vm-tools: local root privilege escalation in the virtual machine CVE-2022-31676 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : xorg-x11-server-1.20.11-19.el9 (AXSA:2023-6919:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6919:07 advisory. xorg-x11-server: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability CVE-2023-1393 Tenable has extracted the preceding...

MiracleLinux 4 : tomcat6-6.0.24-115.AXS4 (AXSA:2020-136:02)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-136:02 advisory. tomcat: deserialization flaw in session persistence storage leading to RCE CVE-2020-9484 Tenable has extracted the preceding description block directly from t...

MiracleLinux 9 : freerdp-2.11.2-1.el9 (AXSA:2024-7888:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7888:01 advisory. freerdp: Incorrect offset calculation leading to DOS CVE-2023-39350 freerdp: Null Pointer Dereference leading DOS in RemoteFX CVE-2023-39351 freerdp...

MiracleLinux 8 : pam-1.3.1-33.el8 (AXSA:2024-8171:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8171:02 advisory. pam: allowing unprivileged user to block another user namespace CVE-2024-22365 Tenable has extracted the preceding description block directly from the...

MiracleLinux 4 : bind-9.8.2-0.68.7.0.1.rc1.AXS4 (AXSA:2020-134:05)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-134:05 advisory. bind: BIND does not sufficiently limit the number of fetches performed when processing referrals CVE-2020-8616 bind: A logic error in code which chec...