185 matches found
MiracleLinux 7 : rh-nginx118-nginx-1.18.0-3.el7 (AXSA:2021-1813:01)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1813:01 advisory. nginx: Off-by-one in ngxresolvercopy when labels are followed by a pointer to a root domain name CVE-2021-23017 Tenable has extracted the preceding descripti...
MiracleLinux 7 : less-458-10.el7 (AXSA:2024-8138:03)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8138:03 advisory. less: OS command injection CVE-2024-32487 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...
MiracleLinux 7 : python-urllib3-1.10.2-7.0.1.el7.AXS7 (AXSA:2024-9026:07)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-9026:07 advisory. CVE-2024-37891: strip Proxy-Authorization header on redirects CVEs: CVE-2024-37891 urllib3 is a user-friendly HTTP client library for Python. When using...
MiracleLinux 7 : nss-3.36.0-7.el7 (AXSA:2018-3341:02)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2018-3341:02 advisory. nss: ServerHello.random is all zeros when handling a v2-compatible ClientHello CVE-2018-12384 Tenable has extracted the preceding description block directly...
MiracleLinux 7 : firefox-91.11.0-2.0.1.el7.AXS7 (AXSA:2022-3440:15)
The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3440:15 advisory. Mozilla: CSP sandbox header without allow-scripts can be bypassed via retargeted javascript: URI CVE-2022-34468 Mozilla: Use-after-free in nsSHistor...
MiracleLinux 7 : python-2.7.5-89.0.1.el7.AXS7 (AXSA:2020-863:49)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-863:49 advisory. python: XSS vulnerability in the documentation XML-RPC server in servertitle field CVE-2019-16935 Tenable has extracted the preceding description block direct...
MiracleLinux 7 : xstream-1.3.1-14.el7 (AXSA:2021-2208:03)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-2208:03 advisory. XStream: remote command execution attack by manipulating the processed input stream CVE-2021-29505 Tenable has extracted the preceding description block...
MiracleLinux 7 : libxml2-2.9.1-6.6.0.1.el7.AXS7 (AXSA:2021-2474:03)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2474:03 advisory. libxml2: Use after free via namespace node in XPointer ranges CVE-2016-4658 Tenable has extracted the preceding description block directly from the...
MiracleLinux 7 : rh-postgresql13-postgresql-13.7-1.el7 (AXSA:2022-3205:01)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3205:01 advisory. postgresql: Autovacuum, REINDEX, and others omit security restricted operation sandbox CVE-2022-1552 Tenable has extracted the preceding description block...
MiracleLinux 7 : python3-3.6.8-21.0.2.el7.AXS7 (AXSA:2024-8914:06)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8914:06 advisory. CVE-2024-6232: remove backtracking when parsing tarfile headers CVE-2024-7592: fix quadratic complexity in parsing -quoted cookie values with...
MiracleLinux 7 : python-flask-0.10.1-7.el7 (AXSA:2023-5938:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5938:01 advisory. flask: Possible disclosure of permanent session cookie due to missing Vary: Cookie header CVE-2023-30861 Tenable has extracted the preceding description bloc...
MiracleLinux 7 : jasper-1.900.1-33.0.1.el7.AXS7 (AXSA:2024-8730:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8730:01 advisory. CVE-2023-51257: fix an integer-overflow bug in the ICC profile parsing code CVEs: CVE-2023-51257 An invalid memory write issue in Jasper-Software Jasper...
MiracleLinux 7 : kernel-3.10.0-1160.66.1.el7 (AXSA:2022-3196:08)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3196:08 advisory. kernel: cgroups v1 releaseagent feature may allow privilege escalation CVE-2022-0492 Tenable has extracted the preceding description block directly from the...
MiracleLinux 7 : ImageMagick-6.9.10.68-7.el7 (AXSA:2023-6474:01)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6474:01 advisory. ImageMagick: Division by zero in ReadEnhMetaFile lead to DoS CVE-2021-40211 Tenable has extracted the preceding description block directly from the...
MiracleLinux 7 : firefox-115.4.0-1.0.1.el7.AXS7 (AXSA:2023-6556:40)
The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6556:40 advisory. Mozilla: Queued up rendering could have allowed websites to clickjack CVE-2023-5721 Mozilla: Memory safety bugs fixed in Firefox 119, Firefox ESR...
MiracleLinux 7 : telnet-0.17-65.el7 (AXSA:2020-4688:01)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4688:01 advisory. telnet-server: no bounds checks in nextitem function allows to remotely execute arbitrary code CVE-2020-10188 Tenable has extracted the preceding description...
MiracleLinux 7 : bcel-5.2-19.0.1.el7.AXS7 (AXSA:2022-4486:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-4486:01 advisory. Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing CVE-2022-42920 Tenable has extracted the preceding description block directly from...
MiracleLinux 7 : perl-HTTP-Tiny-0.033-3.0.1.el7.AXS7 (AXSA:2025-10975:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10975:01 advisory. CVE-2023-31486: fix insecure default TLS configuration Enable automated tests during build CVEs: CVE-2023-31486 HTTP::Tiny before 0.083, a Perl core module...
MiracleLinux 7 : libssh2-1.8.0-4.el7.1 (AXSA:2023-6489:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-6489:01 advisory. libssh2: use-of-uninitialized-value in libssh2transportread CVE-2020-22218 Tenable has extracted the preceding description block directly from the MiracleLin...
MiracleLinux 7 : slapi-nis-0.56.5-4.el7 (AXSA:2021-1758:02)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1758:02 advisory. slapi-nis: NULL dereference DoS with specially crafted Binding DN CVE-2021-3480 Tenable has extracted the preceding description block directly from the...