MiracleLinux 8 : firefox-78.4.0-1.0.1.el8_2 (AXSA:2020-890:23)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-890:23 advisory. Mozilla: Memory safety bugs fixed in Firefox 82 and Firefox ESR 78.4 CVE-2020-15683 chromium-browser: Use after free in WebRTC CVE-2020-15969 Tenable...

MiracleLinux 9 : python3.9-3.9.18-1.el9 (AXSA:2023-6804:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6804:05 advisory. python: tarfile module directory traversal CVE-2007-4559 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : device-mapper-multipath-0.8.4-28.el8.1 (AXSA:2022-4432:08)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4432:08 advisory. device-mapper-multipath: Regression of CVE-2022-41974 fix in MIRACLE LINUX CVE-2022-3787 Tenable has extracted the preceding description block directly from...

MiracleLinux 7 : java-11-openjdk-11.0.15.0.9-2.el7 (AXSA:2022-3150:06)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3150:06 advisory. OpenJDK: Defective secure validation in Apache Santuario Libraries, 8278008 CVE-2022-21476 OpenJDK: Unbounded memory allocation when compiling craft...

MiracleLinux 8 : kernel-4.18.0-193.14.3.el8 (AXSA:2020-898:14)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-898:14 advisory. kernel: lockdown: bypass through ACPI write via efivarssdt CVE-2019-20908 kernel: lockdown: bypass through ACPI write via acpiconfigfs CVE-2020-15780...

MiracleLinux 9 : gvisor-tap-vsock-0.7.3-4.el9_4.ML.1 (AXSA:2024-8546:03)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8546:03 advisory. golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-1394 Tenable has extracted the preceding description block directly...

MiracleLinux 7 : postgresql-jdbc-9.2.1002-8.el7 (AXSA:2020-252:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-252:01 advisory. postgresql-jdbc: XML external entity XXE vulnerability in PgSQLXML CVE-2020-13692 This update introduces a backwards incompatible change required to resolve...

MiracleLinux 8 : targetcli-2.1.53-1.el8 (AXSA:2020-1067:05)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-1067:05 advisory. targetcli: weak permissions for /etc/target and backup files CVE-2020-13867 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : postgresql:16 (AXSA:2024-8742:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8742:01 advisory. postgresql: PostgreSQL pgstatsext and pgstatsextexprs lack authorization checks CVE-2024-4317 postgresql: PostgreSQL relation replacement during...

MiracleLinux 7 : tomcat-7.0.76-15.el7 (AXSA:2020-627:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-627:03 advisory. tomcat: multiple requests with invalid payload length in a WebSocket frame could lead to DoS CVE-2020-13935 tomcat: session fixation when using FORM...

MiracleLinux 8 : frr-7.0-10.el8 (AXSA:2021-1317:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1317:01 advisory. frr: default permission issue eases information leaks CVE-2020-12831 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : pki-core:10.6 (AXSA:2020-931:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-931:01 advisory. jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig CVE-2019-14540 jackson-databind: Serialization gadgets in...

MiracleLinux 8 : ghostscript-9.27-12.el8 (AXSA:2024-8321:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8321:01 advisory. ghostscript: Divide by zero in epsprintpage in gdevepsn.c CVE-2020-21710 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : qt5-qtbase-5.15.2-4.el8.ML.1 (AXSA:2022-3605:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3605:01 advisory. qt: out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke CVE-2021-38593 Tenable has extracted t...

MiracleLinux 4 : thunderbird-78.3.1-1.0.1.AXS4 (AXSA:2020-833:08)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-833:08 advisory. Mozilla: Memory safety bugs fixed in Firefox 81 and Firefox ESR 78.3 CVE-2020-15673 Mozilla: XSS when pasting attacker-controlled data into a...

MiracleLinux 8 : dbus-1.12.8-10.el8 (AXSA:2020-545:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-545:02 advisory. dbus: denial of service via file descriptor leak CVE-2020-12049 CVE-2020-12049: An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in...

MiracleLinux 9 : openssh-8.7p1-38.el9.ML.2 (AXSA:2024-8500:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8500:05 advisory. - Possible remote code execution due to a race condition in signal handling CVE-2024-6387, regreSSHion CVEs: CVE-2024-6387 Tenable has extracted the precedin...

MiracleLinux 8 : libvncserver-0.9.11-15.el8.1 (AXSA:2020-527:03)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-527:03 advisory. libvncserver: websocket decoding buffer overflow CVE-2017-18922 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : curl-7.61.1-34.el8_10.2 (AXSA:2024-8797:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8797:06 advisory. curl: HTTP/2 push headers memory-leak CVE-2024-2398 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 8 : libtiff-4.0.9-21.el8.ML.1 (AXSA:2022-3333:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3333:02 advisory. libtiff: a buffer overflow via the invertImage may lead to DoS CVE-2020-19131 Tenable has extracted the preceding description block directly from the...