MiracleLinux 8 : tomcat-9.0.87-1.el8_10.6 (AXSA:2025-10776:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10776:05 advisory. tomcat: Apache Tomcat DoS in multipart upload CVE-2025-48988 tomcat: Apache Tomcat: Security constraint bypass for pre/post-resources CVE-2025-4912...

MiracleLinux 7 : libsoup-2.62.2-2.0.1.0.4.el7.AXS7 (AXSA:2025-10538:09)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10538:09 advisory. CVE-2025-32906: fix out-of-bound read vulnerability CVE-2025-32911: fix use-after-free vulnerability CVE-2025-32913: fix NULL pointer dereference...

MiracleLinux 8 : nodejs:22 (AXSA:2025-9681:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9681:01 advisory. undici: Undici Uses Insufficiently Random Values CVE-2025-22150 nodejs: Node.js Worker Thread Exposure via Diagnostics Channel CVE-2025-23083 nodejs...

MiracleLinux 7 : php-5.4.16-48.0.10.el7.AXS7 (AXSA:2025-10839:09)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10839:09 advisory. CVE-2025-1736: fix incorrect validation of CRLF in http headers CVEs: CVE-2025-1736 In PHP from 8.1. before 8.1.32, from 8.2. before 8.2.28, from 8.3. befor...

MiracleLinux 8 : iperf3-3.5-11.el8_10 (AXSA:2025-9534:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-9534:01 advisory. iperf: Denial of Service in iperf Due to Improper JSON Handling CVE-2024-53580 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : firefox-128.14.0-2.el8_10.ML.1 (AXSA:2025-10786:30)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-10786:30 advisory. firefox: thunderbird: Denial-of-service due to out-of-memory in the Graphics: WebRender component CVE-2025-9182 thunderbird: firefox: Sandbox escap...

MiracleLinux 9 : mod_security-2.9.6-2.el9_6.1 (AXSA:2025-10705:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10705:03 advisory. modsecurity: ModSecurity Denial of Service Vulnerability CVE-2025-48866 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : libvpx-1.9.0-9.el9_6 (AXSA:2025-10541:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10541:02 advisory. libvpx: Double-free in libvpx encoder CVE-2025-5283 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 8 : firefox-128.10.1-1.el8_10.ML.1 (AXSA:2025-9963:16)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-9963:16 advisory. firefox: Out-of-bounds access when resolving Promise objects CVE-2025-4918 firefox: Out-of-bounds access when optimizing linear sums CVE-2025-4919...

MiracleLinux 9 : thunderbird-128.13.0-3.el9_6.ML.1 (AXSA:2025-10694:18)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-10694:18 advisory. firefox: thunderbird: Large branch table could lead to truncated instruction CVE-2025-8028 firefox: thunderbird: Memory safety bugs CVE-2025-8035...

MiracleLinux 9 : libsoup-2.72.0-10.el9_6.2 (AXSA:2025-10489:08)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10489:08 advisory. libsoup: Heap buffer over-read in skipinsignificantspace when sniffing content CVE-2025-2784 libsoup: Denial of Service attack to websocket server...

MiracleLinux 9 : kernel-5.14.0-570.46.1.el9_6 (AXSA:2025-10910:73)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10910:73 advisory. kernel: net: usb: smsc75xx: Limit packet length to skb-len CVE-2023-53125 kernel: usb: dwc3: gadget: check that event count does not exceed event...

MiracleLinux 9 : kernel-5.14.0-570.52.1.el9_6 (AXSA:2025-10985:80)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10985:80 advisory. kernel: HID: core: Harden s32ton against conversion to 0 bits CVE-2025-38556 kernel: eventpoll: Fix semi-unbounded recursion CVE-2025-38614 kernel:...

MiracleLinux 8 : firefox-128.8.0-1.el8_10.ML.1 (AXSA:2025-9730:07)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-9730:07 advisory. firefox: Use-after-free in WebTransportChild CVE-2025-1931 firefox: AudioIPC StreamData could trigger a use-after-free in the Browser process...

MiracleLinux 9 : xterm-366-12.el9_6 (AXSA:2025-10760:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10760:02 advisory. xterm: Buffer overflow in setsixel in graphicssixel.c CVE-2022-24130 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 7 : php-5.4.16-48.0.7.el7.AXS7 (AXSA:2025-10750:06)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10750:06 advisory. CVE-2025-1220: error if host contains null bytes in the middle of the string CVEs: CVE-2025-1220 In PHP versions:8.1. before 8.1.33, 8.2. before 8.2.29, 8.3...

MiracleLinux 8 : git-2.43.5-3.el8_10 (AXSA:2025-9978:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9978:03 advisory. git: The sideband payload is passed unfiltered to the terminal in git CVE-2024-52005 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : kernel-5.14.0-570.33.2.el9_6 (AXSA:2025-10783:60)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10783:60 advisory. kernel: crypto: algifhash - fix double free in hashaccept CVE-2025-38079 kernel: wifi: ath12k: fix invalid access to memory CVE-2025-38292 Tenable...

MiracleLinux 9 : java-17-openjdk-17.0.15.0.6-2.el9.ML.1 (AXSA:2025-9865:06)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9865:06 advisory. JDK: Better TLS connection support CVE-2025-21587 JDK: Improve compiler transformations CVE-2025-30691 JDK: Enhance Buffered Image handling...

MiracleLinux 9 : java-21-openjdk-21.0.6.0.7-1.el9.ML.1 (AXSA:2025-9590:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9590:02 advisory. JDK: Enhance array handling CVE-2025-21502 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...