Known Issues
| Bug ID | Title | Description |
|---|---|---|
| 62730 | OS Package Vulnerabilities Scheduled for Future Patches | CVEs Identified Before 3rd November 2025: CVE-2025-4598 (systemd) This vulnerability in systemd-coredump permits local information disclosure due to a race condition during core dump handling. In the Accops HySecure environment, core dump storage is disabled, and there are no unprivileged users, making exploitation unlikely. This fix is delayed due to its impact on product functionality. CVEs Identified After 3rd November: Accops Weekly CVE Advisory Bulletin - AWCB-2025-47 |
| 51897 | Upgrade Entry Missing for Active and Standby Nodes | After applying this release, the HySecure database may not have the upgrade entries for the Active and Standby nodes corresponding to this hotfix. Although the Admin log, Upgrade log, and upgrade entry in files will be available. |
| 46950 | World Writable Files and Directories exist on HySecure | There are a few files and directories on the server with world-writable permissions (rw-rw-rw-). This is a low-risk, low-severity issue that requires further evaluation and validation before changing permissions to avoid impacting functionality. Nevertheless, the following compensating controls are in place to mitigate risk: no unprivileged users on the server could exploit these permissions. Access to the server is limited to authorized administrators only. |