MiracleLinux 7 : samba-4.10.16-24.0.1.el7.AXS7 (AXSA:2023-5216:04)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5216:04 advisory. samba: RC4/HMAC-MD5 NetLogon Secure Channel is weak and should be avoided CVE-2022-38023 Tenable has extracted the preceding description block directly from...

MiracleLinux 8 : krb5-1.18.2-30.el8_10 (AXSA:2024-8967:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8967:06 advisory. freeradius: forgery attack CVE-2024-3596 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

MiracleLinux 9 : thunderbird-115.4.1-1.el9.ML.1 (AXSA:2023-6564:30)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6564:30 advisory. Mozilla: Queued up rendering could have allowed websites to clickjack CVE-2023-5721 Mozilla: Memory safety bugs fixed in Firefox 119, Firefox ESR...

MiracleLinux 7 : xorg-x11-server-1.20.4-21.el7 (AXSA:2023-4658:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4658:01 advisory. xorg-x11-server: X.Org Server XkbGetKbdByName use-after-free CVE-2022-4283 xorg-x11-server: X.Org Server XTestSwapFakeInput stack overflow...

MiracleLinux 8 : dotnet3.1-3.1.424-1.el8.ML.1 (AXSA:2022-3897:12)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3897:12 advisory. dotnet: Nuget cache poisoning on Linux via world-writable cache directory CVE-2022-41032 Tenable has extracted the preceding description block directly from...

MiracleLinux 8 : libvncserver-0.9.11-15.el8.1 (AXSA:2020-527:03)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-527:03 advisory. libvncserver: websocket decoding buffer overflow CVE-2017-18922 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : libksba-1.5.1-6.el9 (AXSA:2023-5053:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5053:03 advisory. libksba: integer overflow to code executiona CVE-2022-47629 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 7 : httpd-2.4.6-97.4.0.1.el7.AXS7 (AXSA:2022-2982:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-2982:01 advisory. httpd: modlua: Possible buffer overflow when parsing multipart content CVE-2021-44790 httpd: modsession: Heap overflow via a crafted SessionHeader...

MiracleLinux 9 : grafana-9.0.9-3.el9 (AXSA:2023-6225:07)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-6225:07 advisory. grafana: account takeover possible when using Azure AD OAuth CVE-2023-3128 Tenable has extracted the preceding description block directly from the MiracleLin...

MiracleLinux 8 : libX11-1.6.8-5.el8 (AXSA:2021-2639:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2639:02 advisory. libX11: missing request length checks CVE-2021-31535 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 8 : rsyslog-8.2102.0-7.el8.1 (AXSA:2022-3666:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3666:04 advisory. rsyslog: Heap-based overflow in TCP syslog server CVE-2022-24903 Tenable has extracted the preceding description block directly from the MiracleLinux securit...

MiracleLinux 8 : firefox-91.5.0-1.el8.ML.1 (AXSA:2022-2985:03)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-2985:03 advisory. Mozilla: Iframe sandbox bypass with XSLT CVE-2021-4140 Mozilla: Race condition when playing audio files CVE-2022-22737 Mozilla: Heap-buffer-overflow...

MiracleLinux 9 : qt5 (AXSA:2023-4961:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4961:01 advisory. qt: QProcess could execute a binary from the current working directory when not found in the PATH CVE-2022-25255 Tenable has extracted the preceding...

MiracleLinux 9 : tomcat-9.0.62-37.el9 (AXSA:2023-6944:05)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6944:05 advisory. Apache Commons FileUpload: FileUpload DoS with excessive parts CVE-2023-24998 tomcat: not including the secure attribute causes information disclosu...

MiracleLinux 9 : containernetworking-plugins-1.4.0-6.el9_4 (AXSA:2024-8906:05)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8906:05 advisory. encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion CVE-2024-34156...

MiracleLinux 9 : openssl-3.0.1-43.el9 (AXSA:2022-3967:08)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3967:08 advisory. OpenSSL: X.509 Email Address Buffer Overflow CVE-2022-3602 OpenSSL: X.509 Email Address Variable Length Buffer Overflow CVE-2022-3786 Tenable has...

MiracleLinux 8 : pcs-0.10.10-4.el8.ML.1 (AXSA:2021-2867:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2867:05 advisory. jquery: Cross-site scripting XSS via HTML tags containing whitespaces CVE-2020-7656 jquery: Untrusted code execution via tag in HTML passed to DOM...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2022-3011:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3011:01 advisory. QEMU: off-by-one error in modesensepage in hw/scsi/scsi-disk.c CVE-2021-3930 QEMU: net: e1000: infinite loop while processing transmit descriptors...

MiracleLinux 8 : python39:3.9 and python39-devel:3.9 (AXSA:2023-6552:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6552:01 advisory. python: TLS handshake bypass CVE-2023-40217 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

MiracleLinux 7 : grub2-2.02-0.86.0.1.el7.AXS7 (AXSA:2020-257:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-257:02 advisory. grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process CVE-2020-10713 grub2: grubmalloc does not validate allocation...