How to Manually Change the VSA Host Management Certificate

Purpose This article documents the procedure for updating the Host Management Certificate used by the VSA Veeam Software Appliance. Note: The ability to update the certificate via the VSA Host Management Console may be added in a future version; however, as of version 13.0, it must be completed b...

RHEL 9 : openssh (RHSA-2026:0693)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0693 advisory. OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files...

EulerOS 2.0 SP10 : openssh (EulerOS-SA-2026-1054)

According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is...

TTY PLUS MTPuTTY security vulnerabilities

TTY PLUS MTPuTTY is a Shell management tool developed by TTY PLUS Corporation. Version 1.0.1.21 of TTY PLUS MTPuTTY contains a security vulnerability. This vulnerability stems from the Windows PowerShell process list potentially exposing SSH connection passwords, leading to the leakage of sensiti...

Security update for podman

This update for podman fixes the following issues: CVE-2025-47914: Fixed ssh-agent that could cause a panic due to an out-of-bounds read with non validated message size bsc1253993 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate ...

SUSE-SU-2026:0125-1 Security update for podman

This update for podman fixes the following issues: - CVE-2025-47914: Fixed ssh-agent that could cause a panic due to an out-of-bounds read with non validated message size bsc1253993...

golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS

A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSHAGENTSUCCESS 0x06 message to requests expecting typed replies e.g., List, Sign. The unmarshal layer produces an unexpected message type, which the client code does not handle,...

CVE-2024-54855

fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...

Oracle Linux 10 : podman (ELSA-2026-0545)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-0545 advisory. - fixes 'CVE-2025-47913 podman: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSHAGENTSUCCESS rhel-10.1.z' Tenable has extracted the...

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2026-1044)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 / 25.10 : Google Guest Agent vulnerability (USN-7956-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 / 25.10 host has a package installed that is affected by a vulnerability as referenced in the USN-7956-1 advisory. Jakub Ciolek discovered that the Go Cryptography module included in Google Guest Agent did not...

MiracleLinux 9 : buildah-1.41.8-1.el9_7 (AXSA:2026-029:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-029:01 advisory. golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSHAGENTSUCCESS CVE-2025-47913 Tenable has extracted the...

MiracleLinux 9 : podman-5.6.0-11.el9_7 (AXSA:2026-034:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-034:01 advisory. golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSHAGENTSUCCESS CVE-2025-47913 Tenable has extracted the...

TencentOS Server 3: libssh (TSSA-2025:0983)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0983 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

CVE-2024-54855

fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...

USN-7956-1: Google Guest Agent vulnerability

Jakub Ciolek discovered that the Go Cryptography module included in Google Guest Agent did not validate GSSAPI authentication requests during SSH operations. An attacker could possibly use this issue to cause a denial of service...

CVE-2024-54855

The CVE affects Vanilla OS 2 Core image v1.1.0, where SSH service uses static keys baked into the image. This root cause enables potential man‑in‑the‑middle attacks on SSH connections to other hosts. Documented across NVD/Red Hat/CNNVD/CVE listings; no explicit remediation or patch version is pro...

MiracleLinux 9 : gvisor-tap-vsock-0.8.5-1.el9_6 (AXSA:2025-10485:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10485:03 advisory. golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh CVE-2025-22869 Tenable has extracted the preceding description blo...

CVE-2024-54855

fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...

MiracleLinux 9 : openssh-8.7p1-47.el9_7.ML.1 (AXSA:2025-11563:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11563:07 advisory. openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand CVE-2025-61984 openssh: OpenSSH: Null character in...