AlmaLinux 9 : pcs (ALSA-2026:10710)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:10710 advisory. lodash: lodash: Arbitrary code execution via untrusted input in template imports CVE-2026-4800 Tenable has extracted the preceding description block directly from...

AlmaLinux 10 : pcs (ALSA-2026:10713)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:10713 advisory. lodash: lodash: Arbitrary code execution via untrusted input in template imports CVE-2026-4800 Tenable has extracted the preceding description block directly fro...

MiracleLinux 9 : pcs-0.11.10-1.el9_7.3.ML.1 (AXSA:2026-515:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-515:05 advisory. lodash: lodash: Arbitrary code execution via untrusted input in template imports CVE-2026-4800 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : pcs-0.10.18-2.el8_10.9.ML.1 (AXSA:2026-468:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-468:04 advisory. tornado-python: Tornado: Denial of Service via large multipart bodies CVE-2026-31958 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : pcs-0.11.10-1.el9_7.2.ML.1 (AXSA:2026-174:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-174:02 advisory. lodash: prototype pollution in .unset and .omit functions CVE-2025-13465 Tenable has extracted the preceding description block directly from the MiracleLinux...

RockyLinux 9 : pcs (RLSA-2026:2452)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:2452 advisory. lodash: prototype pollution in .unset and .omit functions CVE-2025-13465 Tenable has extracted the preceding description block directly from the RockyLinux securi...

Oracle Linux 10 : pcs (ELSA-2026-2438)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-2438 advisory. 0.12.1-1.el101.2 - Fixed CVE-2025-13465 by updating pcs-web-ui to 0.1.23.1 Resolves: RHEL-144292 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : pcs-0.10.18-2.el8_10.3.ML.1 (AXSA:2024-9389:07)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9389:07 advisory. sinatra: Open Redirect Vulnerability in Sinatra via X-Forwarded-Host Header CVE-2024-21510 Tenable has extracted the preceding description block directly fro...

MiracleLinux 9 : pcs-0.11.6-3.el9.ML.1 (AXSA:2023-6977:13)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6977:13 advisory. decode-uri-component: improper input validation resulting in DoS CVE-2022-38900 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : pcs-0.11.3-4.el9.3.ML.1 (AXSA:2023-5266:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5266:07 advisory. webpack: avoid cross-realm objects CVE-2023-28154 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Not...

MiracleLinux 8 : pcs-0.10.18-2.el8_10.4.ML.1 (AXSA:2025-9779:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9779:02 advisory. python-tornado: Tornado has HTTP cookie parsing DoS vulnerability CVE-2024-52804 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : pcs-0.11.9-2.el9_6.1.ML.1 (AXSA:2025-10558:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10558:05 advisory. rubygem-rack: Unbounded-Parameter DoS in Rack::QueryParser CVE-2025-46727 Tenable has extracted the preceding description block directly from the MiracleLin...

Oracle Linux 9 : pcs / (LOW) (ELSA-2023-6316)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6316 advisory. 0.11.6-3 - Refreshing any page in pcs-web-ui no longer causes it to display a blank page - Resolves: rhbz2222788 0.11.6-2 - Added BuildRequires: debugedit - for...

RHEL 8 : pcs (RHSA-2023:3403)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3403 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: rubygem-rack: Denial ...

RHEL 8 : pcs (RHSA-2023:0857)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0857 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: sinatra: Reflected File Downlo...

AlmaLinux 9 : pcs (ALSA-2022:4587)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:4587 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. T...

AlmaLinux 9 : pcs (ALSA-2022:6313)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:6313 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. T...

Rocky Linux 8 : pcs (RLSA-2022:4661)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:4661 advisory. - Sinatra before 2.2.0 does not validate that the expanded path matches publicdir when serving static files. CVE-2022-29970 Note that Nessus has not tested for...

Oracle Linux 9 : pcs (ELSA-2022-9513)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-9513 advisory. 0.11.1-10.el90.1 - Updated bundled rubygems: sinatra, rack-protection - Resolves: rhbz2081333 0.11.1-10 - Fixed snmp client - Fixed translating resource roles i...

AlmaLinux 8 : pcs (ALSA-2022:4661)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:4661 advisory. - Sinatra before 2.2.0 does not validate that the expanded path matches publicdir when serving static files. CVE-2022-29970 Note that Nessus has not tested for thi...