MiracleLinux 9 : fence-agents-4.10.0-76.el9_5.4.ML.1 (AXSA:2025-9553:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9553:01 advisory. fence-agents: Jinja has a sandbox breakout through indirect reference to format method rhel-9.5.z CVE-2024-56326 fence-agents: Jinja has a sandbox...

MiracleLinux 9 : java-21-openjdk-21.0.6.0.7-1.el9.ML.1 (AXSA:2025-9590:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9590:02 advisory. JDK: Enhance array handling CVE-2025-21502 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

MiracleLinux 9 : podman-5.4.0-12.el9_6 (AXSA:2025-10631:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10631:07 advisory. podman: podman missing TLS verification CVE-2025-6032 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 9 : xterm-366-12.el9_6 (AXSA:2025-10760:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10760:02 advisory. xterm: Buffer overflow in setsixel in graphicssixel.c CVE-2022-24130 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : osbuild-composer-132-1.el9.ML.1, osbuild-141-1.el9.ML.1 (AXSA:2025-10326:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10326:01 advisory. golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-1394 go/build/constraint: golang: Calling Parse on a //...

MiracleLinux 9 : httpd-2.4.62-4.el9_6.4 (AXSA:2025-10819:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10819:07 advisory. httpd: insufficient escaping of user-supplied data in modssl CVE-2024-47252 httpd: modssl: access control bypass by trusted clients is possible usi...

MiracleLinux 7 : giflib-4.1.6-9.0.1.el7.AXS7 (AXSA:2025-11108:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-11108:01 advisory. CVE-2023-48161: fix Buffer Overflow vulnerability in DumpSCreen2RGB function CVEs: CVE-2023-48161 Buffer Overflow vulnerability in GifLib Project GifLib...

MiracleLinux 7 : gstreamer1-plugins-base-1.10.4-2.0.2.el7.AXS7 (AXSA:2025-11109:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11109:02 advisory. CVE-2024-47538: fix stack-buffer overflow in vorbishandleidentificationpacket function by limiting writing beyond boundaries of position array CVEs...

MiracleLinux 9 : mysql-8.0.43-1.el9_6.ML.1 (AXSA:2025-10895:05)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10895:05 advisory. mysql: mysqldump unspecified vulnerability CPU Apr 2025 CVE-2025-30722 mysql: Optimizer unspecified vulnerability CPU Apr 2025 CVE-2025-30688 mysql...

MiracleLinux 7 : tomcat-7.0.76-16.0.3.el7.AXS7 (AXSA:2025-10787:07)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10787:07 advisory. CVE-2025-24813: fix path equivalence vulnerability leading to remote code execution and information disclosure CVEs: CVE-2025-24813 Path Equivalence:...

MiracleLinux 9 : krb5-1.21.1-6.el9 (AXSA:2025-10061:04)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10061:04 advisory. krb5: overflow when calculating ulog block size CVE-2025-24528 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : expat-2.5.0-5.el9_7.1 (AXSA:2025-11542:06)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-11542:06 advisory. expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing CVE-2025-59375...

MiracleLinux 8 : sudo-1.9.5p2-1.el8_10.1 (AXSA:2025-10408:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10408:01 advisory. sudo: LPE via host option CVE-2025-32462 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

MiracleLinux 9 : git-lfs-3.4.1-4.el9_5 (AXSA:2025-9577:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-9577:01 advisory. git-lfs: Git LFS permits exfiltration of credentials via crafted HTTP URLs CVE-2024-53263 Tenable has extracted the preceding description block directly from...

MiracleLinux 8 : glib2-2.56.4-166.el8_10 (AXSA:2025-10525:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10525:02 advisory. glib2: Signal subscription vulnerabilities CVE-2024-34397 glib: buffer overflow in setconnectmsg CVE-2024-52533 glib: Buffer Underflow on GLib...

MiracleLinux 8 : abrt-2.10.9-25.el8_10.ML.1 (AXSA:2025-11550:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-11550:01 advisory. abrt: Command-injection in ABRT leading to local privilege escalation CVE-2025-12744 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : grafana-9.2.10-25.el8_10 (AXSA:2025-10021:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10021:06 advisory. net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Tenable has extracted the preceding description block...

MiracleLinux 8 : kernel-4.18.0-553.84.1.el8_10 (AXSA:2025-11242:90)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-11242:90 advisory. kernel: vsock/virtio: Validate length in packet header before skbput CVE-2025-39718 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : qt5-qt3d-5.15.9-2.el9_7.1 (AXSA:2025-11462:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-11462:03 advisory. assimp: Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow CVE-2025-11277 Tenable has extracted the preceding description blo...

MiracleLinux 7 : rsync-3.1.2-12.0.3.el7.AXS7 (AXSA:2025-9708:04)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-9708:04 advisory. CVE-2024-12087: fix path traversal vulnerability in rsync enabled by the '--inc-recursive' option CVE-2024-12088: make --safe-links stricter CVEs:...