MiracleLinux 7 : ImageMagick-6.9.10.68-5.el7 (AXSA:2021-1086:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1086:01 advisory. ImageMagick: Shell injection via PDF password could result in arbitrary code execution CVE-2020-29599 Tenable has extracted the preceding description block...

MiracleLinux 9 : thunderbird-128.2.0-1.el9_4.ML.1 (AXSA:2024-8860:21)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8860:21 advisory. thunderbird: 115.15/128.2 mozilla: Type confusion when looking up a property name in a with block CVE-2024-8381 mozilla: Internal event interfaces...

MiracleLinux 9 : device-mapper-multipath-0.8.7-12.el9.1 (AXSA:2023-5087:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5087:02 advisory. device-mapper-multipath: Regression of CVE-2022-41974 fix in MIRACLE LINUX CVE-2022-3787 Tenable has extracted the preceding description block directly from...

MiracleLinux 9 : sqlite-3.34.1-7.el9_3 (AXSA:2024-7480:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7480:02 advisory. sqlite: heap-buffer-overflow at sessionfuzz CVE-2023-7104 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : libsndfile-1.0.31-8.el9_5.2 (AXSA:2024-9490:04)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9490:04 advisory. libsndfile: Segmentation fault error in oggvorbis.c:417 vorbisanalysiswrote CVE-2024-50612 Tenable has extracted the preceding description block directly fro...

MiracleLinux 9 : opensc-0.23.0-4.el9_3 (AXSA:2024-7558:04)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7558:04 advisory. OpenSC: Side-channel leaks while stripping encryption PKCS1 padding CVE-2023-5992 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : mailman:2.1 (AXSA:2022-2976:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-2976:01 advisory. mailman: CSRF token bypass allows to perform CSRF attacks and account takeover CVE-2021-42097 mailman: CSRF token derived from admin password allows...

MiracleLinux 7 : kernel-3.10.0-1160.114.2.el7 (AXSA:2024-7634:08)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7634:08 advisory. sched/membarrier: reduce the ability to hammer on sysmembarrier CVE-2024-26602 kernel: use-after-free in l2capconnect and l2capleconnectreq in...

MiracleLinux 4 : ImageMagick-6.7.2.7-6.0.1.AXS4 (AXSA:2021-1353:02)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1353:02 advisory. ImageMagick: Shell injection via PDF password could result in arbitrary code execution CVE-2020-29599 CVEs: CVE-2020-29599 Tenable has extracted the precedin...

MiracleLinux 8 : libX11-1.6.8-8.el8 (AXSA:2024-8318:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8318:03 advisory. libX11: out-of-bounds memory access in XkbReadKeySyms CVE-2023-43785 libX11: stack exhaustion from infinite recursion in PutSubImage CVE-2023-43786...

MiracleLinux 8 : python-pip-9.0.3-16.el8 (AXSA:2020-285:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-285:03 advisory. python-urllib3: Cross-host redirect does not remove Authorization header allow for credential exposure CVE-2018-20060 python-urllib3: CRLF injection...

MiracleLinux 8 : python39:3.9 (AXSA:2022-4572:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4572:01 advisory. python: local privilege escalation via the multiprocessing forkserver start method CVE-2022-42919 Tenable has extracted the preceding description block...

MiracleLinux 8 : postgresql:13 (AXSA:2024-7568:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7568:01 advisory. postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL CVE-2024-0985 Tenable has extracted the preceding description block...

MiracleLinux 8 : less-530-3.el8_10 (AXSA:2024-8510:05)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8510:05 advisory. less: OS command injection CVE-2024-32487 less: missing quoting of shell metacharacters in LESSCLOSE handling CVE-2022-48624 Tenable has extracted t...

MiracleLinux 8 : python3.11-3.11.7-1.el8.ML.1 (AXSA:2024-8274:09)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8274:09 advisory. python: Parsing errors in email/parseaddr.py lead to incorrect value in email address part of tuple CVE-2023-27043 Tenable has extracted the preceding...

MiracleLinux 8 : ruby:3.3 (AXSA:2024-8494:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8494:01 advisory. ruby: Buffer overread vulnerability in StringIO CVE-2024-27280 ruby: RCE vulnerability with .rdocoptions in RDoc CVE-2024-27281 ruby: Arbitrary memo...

MiracleLinux 7 : runc-1.0.0-66.rc8.el7 (AXSA:2020-4524:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4524:01 advisory. runc: volume mount race condition with shared mounts leads to information leak/integrity manipulation CVE-2019-19921 Tenable has extracted the preceding...

MiracleLinux 8 : dotnet7.0-7.0.115-1.el8_9.ML.1 (AXSA:2024-7407:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7407:02 advisory. dotnet: Information Disclosure: MD.SqlClientMDS & System.data.SQLClient SDS CVE-2024-0056 dotnet: X509 Certificates - Validation Bypass across Azure...

MiracleLinux 9 : libxml2-2.9.13-5.el9_3 (AXSA:2023-7045:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-7045:07 advisory. libxml2: crafted xml can cause global buffer overflow CVE-2023-39615 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : gimp:2.8 (AXSA:2024-7549:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7549:01 advisory. gimp: PSD buffer overflow RCE CVE-2023-44442 gimp: psp off-by-one RCE CVE-2023-44444 Tenable has extracted the preceding description block directly...