NixOS is a Linux distribution built on top of the Nix package manager. It is completely declarative, its system configurations are reproducible, makes configuration changes reliable and atomic, and eliminates configuration drift.

NixOS

Homebrew is a free and open-source software package management system that simplifies the installation of software on Apple's macOS operating system and Linux. The name is intended to suggest the idea of building software on the Mac depending on the user's taste. Originally written by Max Howell, the package manager has gained popularity in the Ruby on Rails community and earned praise for its extensibility.

Homebrew

A flaw has been found in h2oai h2o-3 up to 3.46.08. The impacted element is an unknown function of the file /99/ImportSQLTable of the component IBMDB2 JDBC Driver. This manipulation of the argument connection_url causes deserialization. The attack may be initiated remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-61804	HIGH	7.8	NixOS	animate	No	Yes	Oct 15, 2025
CVE-2025-54279	HIGH	7.8	NixOS	animate	No	Yes	Oct 15, 2025
CVE-2025-55039	MEDIUM	6.5	Java	spark	No	Yes	Oct 15, 2025
CVE-2025-54270	MEDIUM	5.5	NixOS	animate	No	Yes	Oct 15, 2025
CVE-2025-11839	MEDIUM	4.8	NixOS	gdb	No	No	Oct 16, 2025

CVE-2025-10768:
NixOS vulnerability analysis and mitigation

5.3

Related NixOS vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2025-10768: NixOS vulnerability analysis and mitigation