MiracleLinux 7 : rh-nodejs14-nodejs-14.16.0-1.el7 (AXSA:2021-1590:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1590:02 advisory. nodejs: HTTP2 'unknownProtocol' cause DoS by resource exhaustion CVE-2021-22883 nodejs: DNS rebinding in --inspect CVE-2021-22884 Tenable has...

MiracleLinux 9 : libarchive-3.5.3-2.el9 (AXSA:2022-3983:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3983:02 advisory. libarchive: an out-of-bounds read via the component zipxlzmaaloneinit CVE-2022-26280 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : dotnet7.0-7.0.100-0.5.rc2.el9.ML.1 (AXSA:2023-5051:06)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5051:06 advisory. dotnet: Nuget cache poisoning on Linux via world-writable cache directory CVE-2022-41032 Tenable has extracted the preceding description block directly from...

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.272.b10-1.el7 (AXSA:2020-822:18)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-822:18 advisory. OpenJDK: Credentials sent over unencrypted LDAP connection JNDI, 8237990 CVE-2020-14781 OpenJDK: Certificate blacklist bypass via alternate certifica...

MiracleLinux 8 : pki-core:10.6 (AXSA:2022-4440:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4440:01 advisory. pki-core: access to external entities when parsing XML can lead to XXE CVE-2022-2414 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : qemu-kvm-1.5.3-175.el7.4 (AXSA:2021-1882:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1882:03 advisory. QEMU: ide: atapi: OOB access while processing read commands CVE-2020-29443 Tenable has extracted the preceding description block directly from the MiracleLin...

MiracleLinux 8 : bind9.16-9.16.23-0.14.el8 (AXSA:2023-5856:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5856:01 advisory. bind: processing large delegations may severely degrade resolver performance CVE-2022-2795 bind: flooding with UPDATE requests may lead to DoS...

MiracleLinux 8 : kernel-4.18.0-305.10.2.el8_4 (AXSA:2021-2266:16)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2266:16 advisory. kernel: sizet-to-int conversion vulnerability in the filesystem layer CVE-2021-33909 kernel: race condition for removal of the HCI controller...

MiracleLinux 8 : qt5 (AXSA:2021-2858:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2858:01 advisory. qt: Out of bounds read in function QRadialFetchSimd from crafted svg file CVE-2021-3481 Tenable has extracted the preceding description block directly from t...

MiracleLinux 9 : frr-8.2.2-4.el9 (AXSA:2023-4650:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-4650:01 advisory. frrouting: overflow bugs in unpacktlvroutercap CVE-2022-26125 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 7 : libtiff-4.0.3-35.0.2.el7.AXS7 (AXSA:2024-8988:07)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8988:07 advisory. CVE-2024-7006: check return value of TIFFCreateAnonField CVEs: CVE-2024-7006 A null pointer dereference flaw was found in Libtiff via tifdirinfo.c. This issu...

MiracleLinux 9 : libcap-2.48-9.el9 (AXSA:2023-6399:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6399:02 advisory. libcap: Integer Overflow in libcapstrdup CVE-2023-2603 libcap: Memory Leak on pthreadcreate Error CVE-2023-2602 Tenable has extracted the preceding...

MiracleLinux 9 : podman-4.9.4-3.el9 (AXSA:2024-8089:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8089:04 advisory. The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods...

MiracleLinux 8 : libksba-1.3.5-9.el8 (AXSA:2023-4995:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4995:02 advisory. libksba: integer overflow to code executiona CVE-2022-47629 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : postgresql:12 (AXSA:2022-3939:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3939:01 advisory. postgresql: Extension scripts replace objects not belonging to the extension. CVE-2022-2625 Tenable has extracted the preceding description block directly fr...

MiracleLinux 8 : thunderbird-115.5.0-1.el8_9.ML.1 (AXSA:2024-7377:02)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7377:02 advisory. Mozilla: Out-of-bound memory access in WebGL2 blitFramebuffer CVE-2023-6204 Mozilla: Use-after-free in MessagePort::Entangled CVE-2023-6205 Mozilla:...

MiracleLinux 8 : dbus-1.12.8-23.el8.1 (AXSA:2023-4786:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4786:03 advisory. dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets CVE-2022-42010 dbus: dbus-daemon can be...

MiracleLinux 8 : pcre-8.42-6.el8 (AXSA:2021-2716:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2716:01 advisory. pcre: Buffer over-read in JIT when UTF is disabled and \X or \R has fixed quantifier greater than 1 CVE-2019-20838 pcre: Integer overflow when parsi...

MiracleLinux 9 : curl-7.76.1-23.el9.4 (AXSA:2023-6515:13)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6515:13 advisory. curl: a heap-based buffer overflow in the SOCKS5 proxy handshake CVE-2023-38545 curl: cookie injection with none file CVE-2023-38546 Tenable has...

MiracleLinux 7 : openldap-2.4.44-23.el7 (AXSA:2021-1719:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1719:02 advisory. openldap: NULL pointer dereference for unauthenticated packet in slapd CVE-2020-25692 Tenable has extracted the preceding description block directly from the...