7 matches found
Amazon Linux 2 : amazon-cloudwatch-agent, --advisory ALAS2-2026-3174 (ALAS-2026-3174)
The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300064.1-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3174 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported...
Medium: golist
Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...
Medium: amazon-ecr-credential-helper
Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...
CVE-2025-61731 vulnerabilities
Vulnerabilities for packages: minio-operator, kube-vip-cloud-provider, timescaledb-tune, terraform-mcp-server, kine, kubernetes-csi-external-resizer, esbuild, docker-credential-ecr-login, kubernetes-csi-driver-nfs, prometheus-blackbox-exporter, terraform-provider-time, vault-k8s,...
CVE-2025-61731 vulnerabilities
Vulnerabilities for packages: ceph-csi-operator-fips, tekton-pipelines-fips, http-echo, newrelic-nri-statsd, amazon-ssm-agent-fips, grpc-health-probe-fips, cluster-autoscaler-fips, net-kourier, aws-sigv4-proxy-fips, sonobuoy-fips, gitlab-workhorse-ce, headlamp-fips, generic-device-plugin,...
BELL-CVE-2025-61731
Bulletin has no description...
PT-2026-3230
Name of the Vulnerable Software and Affected Versions versions prior to TLS 1.3 Description A flaw exists in the TLS 1.3 handshake process where messages spanning encryption level boundaries can be processed prematurely. This can lead to minor information disclosure if a network-local attacker...