MiracleLinux 8 : openssh-8.0p1-10.el8 (AXSA:2021-2653:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2653:03 advisory. openssh: Observable discrepancy leading to an information leak in the algorithm negotiation CVE-2020-14145 Tenable has extracted the preceding description...

MiracleLinux 8 : dotnet8.0-8.0.101-1.el8_9.ML.1 (AXSA:2024-7408:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7408:02 advisory. dotnet: Information Disclosure: MD.SqlClientMDS & System.data.SQLClient SDS CVE-2024-0056 dotnet: X509 Certificates - Validation Bypass across Azure...

MiracleLinux 7 : rsyslog-8.24.0-57.el7.3 (AXSA:2022-3197:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3197:02 advisory. rsyslog: Heap-based overflow in TCP syslog server CVE-2022-24903 Tenable has extracted the preceding description block directly from the MiracleLinux securit...

MiracleLinux 7 : open-vm-tools-11.0.5-3.el7.9 (AXSA:2023-6579:12)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6579:12 advisory. open-vm-tools: SAML token signature bypass CVE-2023-34058 open-vm-tools: file descriptor hijack vulnerability in the vmware-user-suid-wrapper...

MiracleLinux 9 : bubblewrap and flatpak (AXSA:2024-8787:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8787:02 advisory. flatpak: Access to files outside sandbox for apps using persistent= --persist CVE-2024-42472 Tenable has extracted the preceding description block directly...

MiracleLinux 9 : ruby:3.1 (AXSA:2024-7662:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7662:01 advisory. ruby/cgi-gem: HTTP response splitting in CGI CVE-2021-33621 ruby: ReDoS vulnerability in URI CVE-2023-28755 ruby: ReDoS vulnerability - upstream's...

MiracleLinux 9 : thunderbird-102.9.0-1.el9.ML.1 (AXSA:2023-5239:13)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-5239:13 advisory. Mozilla: Incorrect code generation during JIT compilation CVE-2023-25751 Mozilla: Memory safety bugs fixed in Firefox 111 and Firefox ESR 102.9...

MiracleLinux 8 : thunderbird-78.3.1-1.0.1.el8_2 (AXSA:2020-872:09)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-872:09 advisory. Mozilla: Memory safety bugs fixed in Firefox 81 and Firefox ESR 78.3 CVE-2020-15673 Mozilla: XSS when pasting attacker-controlled data into a...

MiracleLinux 8 : jbig2dec-0.14-4.el8 (AXSA:2020-327:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-327:01 advisory. jbig2dec: heap-based buffer overflow in jbig2imagecompose in jbig2image.c CVE-2020-12268 Tenable has extracted the preceding description block directly from t...

MiracleLinux 8 : bind-9.11.36-8.el8.1 (AXSA:2023-6230:07)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6230:07 advisory. bind: named's configured cache size limit can be significantly exceeded CVE-2023-2828 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : systemd-239-40.el8 (AXSA:2021-1218:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1218:01 advisory. systemd: memory leak in buttonopen in login/logind-button.c when udev events are received CVE-2019-20386 Tenable has extracted the preceding description bloc...

MiracleLinux 8 : postgresql:13 (AXSA:2023-5263:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5263:01 advisory. postgresql: Extension scripts replace objects not belonging to the extension. CVE-2022-2625 postgresql: Client memory disclosure when connecting wit...

MiracleLinux 9 : libnbd-1.18.1-3.el9 (AXSA:2024-7921:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7921:01 advisory. libnbd: Malicious NBD server may crash libnbd CVE-2023-5871 libnbd: Crash or misbehaviour when NBD server returns an unexpected block size...

MiracleLinux 9 : ghostscript-9.54.0-16.el9_4 (AXSA:2024-8422:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8422:02 advisory. ghostscript: OPVP device arbitrary code execution via custom Driver library CVE-2024-33871 Tenable has extracted the preceding description block directly fro...

MiracleLinux 8 : edk2-20220126gitbb1bba3d77-6.el8_9.3 (AXSA:2024-7542:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7542:02 advisory. openssl: Excessive time spent checking DH keys and parameters CVE-2023-3446 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : go-toolset:rhel8 (AXSA:2024-8540:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8540:01 advisory. golang: archive/zip: Incorrect handling of certain ZIP files CVE-2024-24789 golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped...

MiracleLinux 7 : java-11-openjdk-11.0.23.0.9-2.el7 (AXSA:2024-7701:06)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7701:06 advisory. OpenJDK: long Exception message leading to crash 8319851 CVE-2024-21011 OpenJDK: integer overflow in C1 compiler address generation 8322122...

MiracleLinux 8 : grafana-pcp-5.1.1-2.el8_9.ML.1 (AXSA:2024-7661:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7661:02 advisory. golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-1394 Bug Fixes: TRIAGE CVE-2024-1394 grafana-pcp:...

MiracleLinux 8 : ctags-5.8-23.el8 (AXSA:2023-5722:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5722:01 advisory. ctags: arbitrary command execution via a tag file with a crafted filename CVE-2022-4515 Tenable has extracted the preceding description block directly from t...

MiracleLinux 8 : sudo-1.8.29-6.el8.1 (AXSA:2021-1334:04)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1334:04 advisory. sudo: Heap buffer overflow in argument parsing CVE-2021-3156 Tenable has extracted the preceding description block directly from the MiracleLinux security...