MiracleLinux 7 : kernel-3.10.0-1160.31.1.el7 (AXSA:2021-1963:11)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1963:11 advisory. kernel: Integer overflow in IntelR Graphics Drivers CVE-2020-12362 kernel: Use after free via PI futex state CVE-2021-3347 kernel: use-after-free in...

MiracleLinux 8 : 389-ds:1.4 (AXSA:2022-3797:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3797:01 advisory. 389-ds-base: sending crafted message could result in DoS CVE-2022-0918 389-ds-base: expired password was still allowed to access the database...

MiracleLinux 7 : unbound-1.6.6-5.0.2.el7.AXS7 (AXSA:2024-8913:06)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8913:06 advisory. CVE-2022-3204: add max number of lookups in the cache for target nameserver names CVEs: CVE-2022-3204 A vulnerability named 'Non-Responsive Delegation Attack...

MiracleLinux 7 : freetype-2.8-14.el7.1 (AXSA:2020-868:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-868:01 advisory. freetype: Heap-based buffer overflow due to integer truncation in LoadSBitPng CVE-2020-15999 Tenable has extracted the preceding description block directly fr...

MiracleLinux 8 : idm:DL1 (AXSA:2024-8410:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8410:01 advisory. JWCrypto: denail of service Via specifically crafted JWE CVE-2023-6681 python-jwcrypto: malicious JWE token can cause denial of service CVE-2024-281...

MiracleLinux 9 : java-11-openjdk-11.0.24.0.8-2.el9.ML.1 (AXSA:2024-8576:12)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8576:12 advisory. OpenJDK: RangeCheckElimination array index overflow 8323231 CVE-2024-21147 OpenJDK: potential UTF8 size overflow 8314794 CVE-2024-21131 OpenJDK:...

MiracleLinux 7 : ksh-20120801-140.el7 (AXSA:2020-4475:02)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4475:02 advisory. ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection CVE-2019-14868 Tenable has extracted the...

MiracleLinux 9 : less-590-3.el9_3 (AXSA:2024-7665:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7665:02 advisory. less: missing quoting of shell metacharacters in LESSCLOSE handling CVE-2022-48624 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : dotnet7.0-7.0.113-1.el8.ML.1 (AXSA:2023-6567:31)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6567:31 advisory. dotnet: Denial of Service with Client Certificates using .NET Kestrel CVE-2023-36799 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : go-toolset:rhel8 (AXSA:2021-2086:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2086:01 advisory. golang: crypto/elliptic: incorrect operations on the P-224 curve CVE-2021-3114 golang: cmd/go: packages using cgo can cause arbitrary code execution...

MiracleLinux 8 : python3.11-3.11.9-7.el8_10 (AXSA:2024-8834:23)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8834:23 advisory. python: incorrect IPv4 and IPv6 private ranges CVE-2024-4032 cpython: python: email module doesn't properly quotes newlines in email headers, allowi...

MiracleLinux 8 : autotrace-0.31.1-55.el8 (AXSA:2023-5902:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5902:02 advisory. autotrace: heap-buffer overflow via the ReadImage at input-bmp.c CVE-2022-32323 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : booth-1.1-1.el9_4.1 (AXSA:2024-8153:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8153:02 advisory. booth: specially crafted hash can lead to invalid HMAC being accepted by Booth server CVE-2024-3049 Tenable has extracted the preceding description block...

MiracleLinux 8 : exempi-2.4.5-4.el8 (AXSA:2024-8237:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8237:01 advisory. exempi: denial of service via opening of crafted audio file with ID3V2 frame CVE-2020-18651 exempi: denial of service via opening of crafted webp fi...

MiracleLinux 8 : gnupg2-2.2.20-4.el8_10 (AXSA:2026-045:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-045:02 advisory. GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write CVE-2025-68973 Tenable has extracted the preceding...

MiracleLinux 9 : dotnet7.0-7.0.107-1.el9.ML.1 (AXSA:2023-6092:17)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6092:17 advisory. dotnet: .NET Kestrel: Denial of Service processing X509 Certificates CVE-2023-29331 dotnet: vulnerability exists in NuGet where a potential race...

MiracleLinux 8 : firefox-102.10.0-1.el8.ML.1 (AXSA:2023-5298:15)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-5298:15 advisory. MFSA-TMP-2023-0001 Mozilla: Double-free in libwebp Mozilla: Fullscreen notification obscured CVE-2023-29533 Mozilla: Potential Memory Corruption...

MiracleLinux 9 : dotnet7.0-7.0.111-1.el9.ML.1 (AXSA:2023-6425:27)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6425:27 advisory. dotnet: Denial of Service with Client Certificates using .NET Kestrel CVE-2023-36799 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : opencryptoki-3.21.0-10.el8_9.ML.1 (AXSA:2024-7646:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7646:02 advisory. opencryptoki: timing side-channel in handling of RSA PKCS1 v1.5 padded ciphertexts Marvin CVE-2024-0914 Tenable has extracted the preceding description block...

MiracleLinux 8 : sane-backends-1.0.27-22.el8 (AXSA:2021-2046:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2046:01 advisory. sane-backends: NULL pointer dereference in saneiepsonnetread function CVE-2020-12867 Tenable has extracted the preceding description block directly from the...