ALSA-2025:11047 Moderate: pcs security update

🗓️ 15 Jul 2025 00:00:00Reported by GoogleType

osv🔗 osv.dev👁 2 Views

ALSA-2025 security update for Pacemaker and Corosync fixes an XML vulnerability (CVE-2024-49761).

Reporter	Title	Published	Views	Family All 275
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM API Connect	15 Mar 202500:18	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in REXML affects IBM watsonx Assistant for IBM Cloud Pak for Data	5 Feb 202520:34	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM Db2® on Cloud Pak for Data, and Db2 Warehouse on Cloud Pak for Data	28 Mar 202517:38	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in XML toolkit for Ruby affects IBM License Metric Tool.	10 Dec 202411:39	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Software Support mobile app is vulnerable to multiple vulnerabilities due to 3rd party software	9 Apr 202518:21	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in rexml-3.3.6.gem	23 Jan 202521:33	–	ibm
ATTACKERKB	CVE-2025-10990	27 Feb 202613:32	–	attackerkb
Tenable Nessus	Alibaba Cloud Linux 3 : 0118: pcs (ALINUX3-SA-2025:0118)	22 Jul 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : ruby (ALSA-2024:10858)	9 Dec 202400:00	–	nessus
Tenable Nessus	AlmaLinux 9 : ruby:3.1 (ALSA-2024:10860)	9 Dec 202400:00	–	nessus

Source	Link
access	www.access.redhat.com/errata/RHSA-2025:11047
access	www.access.redhat.com/security/cve/CVE-2024-49761
bugzilla	www.bugzilla.redhat.com/2322153
errata	www.errata.almalinux.org/8/ALSA-2025-11047.html

17 Apr 2026 13:17Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.17.5

CVSS 48.7

EPSS0.01645

SSVC