MiracleLinux 9 : java-1.8.0-openjdk-1.8.0.362.b09-2.el9 (AXSA:2023-5054:05)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5054:05 advisory. OpenJDK: improper restrictions in CORBA deserialization Serialization, 8285021 CVE-2023-21830 OpenJDK: soundbank URL remote loading Sound, 8293742...

MiracleLinux 8 : container-tools:3.0 (AXSA:2022-4431:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-4431:02 advisory. golang: net/http: improper sanitization of Transfer-Encoding header CVE-2022-1705 cri-o: memory exhaustion on the node when access to the kube api...

MiracleLinux 9 : java-17-openjdk-17.0.12.0.7-2.el9.ML.1 (AXSA:2024-8577:11)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8577:11 advisory. OpenJDK: RangeCheckElimination array index overflow 8323231 CVE-2024-21147 OpenJDK: potential UTF8 size overflow 8314794 CVE-2024-21131 OpenJDK:...

MiracleLinux 8 : kernel-4.18.0-553.16.1.el8_10 (AXSA:2024-8704:25)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8704:25 advisory. kernel: powerpc: Fix access beyond end of drmem array CVE-2023-52451 kernel: efivarfs: force RO when remounting if SetVariable is not supported...

MiracleLinux 8 : dotnet3.1-3.1.108-2.0.1.el8 (AXSA:2020-740:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-740:02 advisory. .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New...

MiracleLinux 9 : git-2.39.3-1.el9 (AXSA:2023-5963:09)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5963:09 advisory. git: by feeding specially crafted input to git apply --reject, a path outside the working tree can be overwritten with partially controlled contents...

MiracleLinux 8 : dotnet3.1-3.1.423-1.el8.ML.1 (AXSA:2022-3850:11)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3850:11 advisory. dotnet: DenialOfService - ASP.NET Core MVC vulnerable to stack overflow via ModelStateDictionary recursion. CVE-2022-38013 Tenable has extracted the precedin...

MiracleLinux 9 : dotnet9.0-9.0.107-1.el9_6.ML.1 (AXSA:2025-10581:16)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10581:16 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New...

MiracleLinux 8 : go-toolset:rhel8 (AXSA:2023-6206:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6206:01 advisory. golang: cmd/go: go command may generate unexpected code at build time when using cgo CVE-2023-29402 golang: cmd/go: go command may execute arbitrary...

CVE-2025-11044

An Allocation of Resources Without Limits or Throttling vulnerability in the ANSL-Server component of B&R Automation Runtime versions prior to 6.5 and prior to R4.93 could be exploited by an unauthenti-cated attacker on the network to win a race condition, resulting in permanent denial-of-service...

EUVD-2026-3214

An Allocation of Resources Without Limits or Throttling vulnerability in the ANSL-Server component of B&R Automation Runtime versions prior to 6.5 and prior to R4.93 could be exploited by an unauthenti-cated attacker on the network to win a race condition, resulting in permanent denial-of-service...

CVE-2025-11044 Vulnerability on Automation Runtime my cause DoS Conditions

An Allocation of Resources Without Limits or Throttling vulnerability in the ANSL-Server component of B&R Automation Runtime versions prior to 6.5 and prior to R4.93 could be exploited by an unauthenti-cated attacker on the network to win a race condition, resulting in permanent denial-of-service...

CVE-2025-11044

CVE-2025-11044 concerns the ANSL-Server component in B&R Automation Runtime, affecting versions prior to 6.5 and prior to R4.93. The description identifies an Allocation of Resources Without Limits or Throttling vulnerability that an unauthenticated attacker on the network can exploit to trigger ...

CVE-2025-11044 Vulnerability on Automation Runtime my cause DoS Conditions

An Allocation of Resources Without Limits or Throttling vulnerability in the ANSL-Server component of B&R Automation Runtime versions prior to 6.5 and prior to R4.93 could be exploited by an unauthenti-cated attacker on the network to win a race condition, resulting in permanent denial-of-service...

ABB B&R Automation Runtime

SUMMARY ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is available that resolves a vulnerability. An attacker who successfully exploited this vulnerability could cause the product to stop. 2. FREQUENTLY ASKED QUESTIONS What causes the...

B&R Automation Runtime security vulnerabilities

B&R Automation Runtime is an automation runtime provided by B&R Automation Inc. Versions prior to B&R Automation Runtime 6.5 and R4.93 contained security vulnerabilities. These vulnerabilities stemmed from unlimited resource allocation or throttling in the ANSL-server component, which could allow...

MiracleLinux 7 : java-1.7.0-openjdk-1.7.0.99-2.6.5.0.1.el7.AXS7 (AXSA:2016-197:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-197:01 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2016-0636 RESERVED This candidate has been reserved by an organization or...

MiracleLinux 3 : java-1.6.0-openjdk-1.6.0.0-1.42.1.11.14.0.1.AXS3 (AXSA:2013-683:04)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-683:04 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2013-3829 Unspecified vulnerability in the Java SE, Java SE Embedded...

PT-2026-3450

Name of the Vulnerable Software and Affected Versions B&R Automation Runtime versions prior to 6.5 B&R Automation Runtime versions prior to R4.93 Description An issue exists in the ANSL-Server component that involves allocation of resources without limits or throttling. An unauthenticated attacke...

MiracleLinux 3 : java-1.6.0-openjdk-1.6.0.0-1.41.1.11.11.90.0.1.AXS3 (AXSA:2013-553:03)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-553:03 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2013-1500 Unspecified vulnerability in the Java Runtime Environment JRE...