MiracleLinux 7 : expat-2.1.0-14.el7 (AXSA:2022-3129:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3129:02 advisory. expat: Malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution CVE-2022-25235 expat: Namespace-separator characters in...

MiracleLinux 7 : microcode_ctl-2.1-73.11.el7 (AXSA:2021-2305:11)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2305:11 advisory. hw: Special Register Buffer Data Sampling SRBDS CVE-2020-0543 hw: Vector Register Data Sampling CVE-2020-0548 hw: L1D Cache Eviction Sampling...

MiracleLinux 8 : mingw-expat-2.4.8-2.el8 (AXSA:2023-5895:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5895:01 advisory. expat: a use-after-free in the doContent function in xmlparse.c CVE-2022-40674 Tenable has extracted the preceding description block directly from the...

MiracleLinux 4 : unbound-1.4.20-29.1.0.1.AXS4 (AXSA:2020-229:05)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-229:05 advisory. unbound: amplification of an incoming query into a large number of queries directed to a target CVE-2020-12662 unbound: infinite loop via malformed D...

MiracleLinux 9 : python-dns-2.6.1-3.el9 (AXSA:2024-9165:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-9165:02 advisory. dnspython: denial of service in stub resolver CVE-2023-29483 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : bind-dyndb-ldap-11.9-8.el9_3.3.ML.1, bind-9.16.23-14.el9_3.4 (AXSA:2024-7681:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7681:01 advisory. bind: Preparing an NSEC3 closest encloser proof can exhaust CPU resources CVE-2023-50868 bind: KeyTrap - Extreme CPU consumption in DNSSEC validator...

MiracleLinux 9 : freeglut-3.2.1-10.el9 (AXSA:2024-7886:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7886:01 advisory. freeglut: memory leak via glutAddSubMenu function CVE-2024-24258 freeglut: memory leak via glutAddMenuEntry function CVE-2024-24259 Tenable has...

MiracleLinux 7 : expat-2.1.0-15.el7 (AXSA:2022-3882:06)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3882:06 advisory. expat: a use-after-free in the doContent function in xmlparse.c CVE-2022-40674 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : dotnet7.0-7.0.117-1.el8_9.ML.1 (AXSA:2024-7613:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7613:06 advisory. dotnet: DoS in .NET Core / YARP HTTP / 2 WebSocket support CVE-2024-21392 Tenable has extracted the preceding description block directly from the MiracleLinu...

MiracleLinux 9 : firefox-91.10.0-1.el9.ML.1 (AXSA:2022-4016:31)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-4016:31 advisory. Mozilla: Cross-Origin resource's length leaked CVE-2022-31736 Mozilla: Heap buffer overflow in WebGL CVE-2022-31737 Mozilla: Browser window spoof...

MiracleLinux 8 : postgresql:13 (AXSA:2021-2338:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2338:01 advisory. postgresql: Buffer overrun from integer overflow in array subscripting calculations CVE-2021-32027 postgresql: Memory disclosure in INSERT ... ON...

MiracleLinux 4 : java-1.8.0-openjdk-1.8.0.272.b10-0.AXS4 (AXSA:2020-821:17)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-821:17 advisory. OpenJDK: Credentials sent over unencrypted LDAP connection JNDI, 8237990 CVE-2020-14781 OpenJDK: Certificate blacklist bypass via alternate certifica...

MiracleLinux 8 : poppler-20.11.0-12.el8_10 (AXSA:2024-8662:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8662:06 advisory. poppler: pdfinfo: crash in broken documents when using -dests parameter CVE-2024-6239 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : libpq-13.5-1.el8 (AXSA:2022-3378:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3378:01 advisory. postgresql: libpq processes unencrypted bytes from man-in-the-middle CVE-2021-23222 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : idm:client (AXSA:2021-1594:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1594:01 advisory. js-jquery: Cross-site scripting via cross-domain ajax requests CVE-2015-9251 bootstrap: XSS in the data-target attribute CVE-2016-10735 bootstrap:...

MiracleLinux 9 : runc-1.1.13-4.el9 (AXSA:2024-9101:06)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-9101:06 advisory. golang: net: malformed DNS message can cause infinite loop CVE-2024-24788 Tenable has extracted the preceding description block directly from the MiracleLinu...

MiracleLinux 8 : gstreamer1-plugins-bad-free-1.16.1-2.el8_9.ML.1 (AXSA:2024-7357:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7357:01 advisory. gstreamer: MXF demuxer use-after-free vulnerability CVE-2023-44446 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 7 : c-ares-1.10.0-3.el7.1 (AXSA:2023-6131:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6131:02 advisory. c-ares: 0-byte UDP payload Denial of Service CVE-2023-32067 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : zsh-5.5.1-9.el8 (AXSA:2022-3376:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3376:01 advisory. zsh: Prompt expansion vulnerability CVE-2021-45444 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. No...

MiracleLinux 8 : libsolv-0.7.19-1.el8 (AXSA:2021-2736:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2736:04 advisory. libsolv: heap-based buffer overflow in testcaseread in src/testcase.c CVE-2021-3200 Tenable has extracted the preceding description block directly from the...