NixOS is a Linux distribution built on top of the Nix package manager. It is completely declarative, its system configurations are reproducible, makes configuration changes reliable and atomic, and eliminates configuration drift.

NixOS

Homebrew is a free and open-source software package management system that simplifies the installation of software on Apple's macOS operating system and Linux. The name is intended to suggest the idea of building software on the Mac depending on the user's taste. Originally written by Max Howell, the package manager has gained popularity in the Ruby on Rails community and earned praise for its extensibility.

Homebrew

A command-line utility and protocol implementation that provides remote terminal access to remote hosts over a network, part of the GNU InetUtils package. Telnet allows users to establish a text-based connection to remote systems for management and configuration purposes. The GNU InetUtils version is a free software implementation of the telnet protocol maintained by the GNU Project.

GNU InetUtils Telnet

Debian GNU/Linux is a Linux distribution composed of free and open-source software.

Linux Debian

Ubuntu is a Linux distribution based on Debian, mostly composed of free and open-source software. Ubuntu is officially released in three editions: Desktop, Server, and Core for internet of things devices and robots. All the editions can run on the computer alone or in a virtual machine.

Linux Ubuntu

Echo is a secure, minimal Linux OS built vulnerability-free. It is fully compatible across environments and continuously patched - making it a clean, dependable base layer for modern applications. Echo is used by organizations focused on security and reliability, including those with compliance or FIPS requirements.

Echo

telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exploited by abusing systemd service credentials support added to the login(1) implementation of util-linux in release 2.40. This is related to client control over the CREDENTIALS_DIRECTORY environment variable, and requires an unprivileged local user to create a login.noauth file.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-30892	HIGH	7.8	NixOS	crun	No	Yes	Mar 26, 2026
CVE-2026-33223	MEDIUM	5.4	NixOS	rke2-runtime-fips-1.35	No	Yes	Mar 25, 2026
CVE-2026-33222	MEDIUM	4.9	NixOS	k3s	No	Yes	Mar 25, 2026
CVE-2026-33249	MEDIUM	4.3	NixOS	telegraf-1.38	No	Yes	Mar 25, 2026
CVE-2026-33248	MEDIUM	4.2	NixOS	k3s-1.32	No	Yes	Mar 25, 2026

CVE-2026-28372:
NixOS vulnerability analysis and mitigation

7.8

Related NixOS vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2026-28372: NixOS vulnerability analysis and mitigation