MiracleLinux 8 : pcs-0.10.18-2.el8_10.7.ML.1 (AXSA:2025-11087:08)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11087:08 advisory. rubygem-rack: Rack QueryParser has an unsafe default allowing paramslimit bypass via semicolon- separated parameters CVE-2025-59830 rack: Rack's...

MiracleLinux 9 : qt5-qtbase-5.15.9-11.el9_6 (AXSA:2025-10594:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10594:01 advisory. qt5: qt6: QtCore Assertion Failure Denial of Service CVE-2025-5455 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : java-17-openjdk-17.0.15.0.6-2.el8 (AXSA:2025-9892:08)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9892:08 advisory. JDK: Better TLS connection support CVE-2025-21587 JDK: Improve compiler transformations CVE-2025-30691 JDK: Enhance Buffered Image handling...

MiracleLinux 8 : git-lfs-3.4.1-4.el8_10 (AXSA:2025-9621:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-9621:02 advisory. git-lfs: Git LFS permits exfiltration of credentials via crafted HTTP URLs CVE-2024-53263 Tenable has extracted the preceding description block directly from...

MiracleLinux 7 : libsoup-2.62.2-2.0.1.0.4.el7.AXS7 (AXSA:2025-10538:09)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10538:09 advisory. CVE-2025-32906: fix out-of-bound read vulnerability CVE-2025-32911: fix use-after-free vulnerability CVE-2025-32913: fix NULL pointer dereference...

MiracleLinux 9 : libsoup-2.72.0-10.el9_6.2 (AXSA:2025-10489:08)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10489:08 advisory. libsoup: Heap buffer over-read in skipinsignificantspace when sniffing content CVE-2025-2784 libsoup: Denial of Service attack to websocket server...

MiracleLinux 8 : nodejs:22 (AXSA:2025-9681:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9681:01 advisory. undici: Undici Uses Insufficiently Random Values CVE-2025-22150 nodejs: Node.js Worker Thread Exposure via Diagnostics Channel CVE-2025-23083 nodejs...

MiracleLinux 8 : poppler-20.11.0-13.el8_10 (AXSA:2026-012:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-012:01 advisory. poppler: Out-of-Bounds Read in Poppler CVE-2025-32365 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 9 : podman-5.6.0-7.el9_7 (AXSA:2025-11510:12)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-11510:12 advisory. runc: container escape and denial of service due to arbitrary write gadgets and procfs write redirects CVE-2025-52881 Tenable has extracted the preceding...

MiracleLinux 8 : krb5-1.18.2-31.el8_10 (AXSA:2025-9772:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9772:02 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over th...

MiracleLinux 8 : bind-9.11.36-16.el8_10.6 (AXSA:2025-11060:10)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-11060:10 advisory. bind: Cache poisoning attacks with unsolicited RRs CVE-2025-40778 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : python3.9-3.9.21-2.el9_6.1 (AXSA:2025-10620:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10620:02 advisory. cpython: Tarfile extracts filtered members when errorlevel=0 CVE-2025-4435 cpython: Bypass extraction filter to modify file metadata outside...

MiracleLinux 7 : zlib-1.2.7-21.0.2.el7.AXS7 (AXSA:2025-10858:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10858:01 advisory. CVE-2016-9840: fix undefined behavior in inftrees.c CVEs: CVE-2016-9840 inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified...

MiracleLinux 8 : firefox-140.5.0-1.el8_10.ML.1 (AXSA:2025-11504:35)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-11504:35 advisory. firefox: Mitigation bypass in the DOM: Security component CVE-2025-13018 firefox: Use-after-free in the Audio/Video component CVE-2025-13014 firefo...

MiracleLinux 8 : kernel-4.18.0-553.34.1.el8_10 (AXSA:2025-9558:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9558:05 advisory. kernel: i40e: fix race condition by adding filter's intermediate sync state CVE-2024-53088 kernel: mptcp: cope racing subflow creation in...

MiracleLinux 8 : kernel-4.18.0-553.58.1.el8_10 (AXSA:2025-10155:37)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10155:37 advisory. kernel: cifs: fix double free race when mount fails in cifsgetroot CVE-2022-48919 kernel: security/keys: fix slab-out-of-bounds in keytaskpermissio...

MiracleLinux 7 : libtiff-4.0.3-35.0.4.el7.AXS7 (AXSA:2025-10924:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10924:03 advisory. CVE-2025-8176: fix use after free in tools/tiffmedian.c CVE-2025-8177: fix buffer overflow in tools/thumbnail.c CVEs: CVE-2025-8176 A vulnerability...

MiracleLinux 9 : podman-5.4.0-13.el9_6 (AXSA:2025-10877:09)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10877:09 advisory. podman: Podman kube play command may overwrite host files CVE-2025-9566 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : dotnet9.0-9.0.107-1.el8_10 (AXSA:2025-10025:12)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10025:12 advisory. NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New...

MiracleLinux 9 : firefox-128.9.0-2.el9_5.ML.1 (AXSA:2025-9835:10)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9835:10 advisory. firefox: thunderbird: URL Bar Spoofing via non-BMP Unicode characters CVE-2025-3029 firefox: thunderbird: Use-after-free triggered by XSLTProcessor...