Qualys Cloud Agent for Linux Intel Release 7.3
January 19, 2026
With this release of Linux Intel Cloud Agent, we are introducing the following new features and enhancements.
Add IPv6 Addresses to Allowed List
We updated the Host Isolation feature to support allowed list for IPv6 assets. Earlier, the allowed list support was available only for IPv4 assets.
The isolated IPv6 assets can communicate to entities present in allowed list.
The Host Isolation allowed list support is available for following platforms for both IPv4 and IPv6 assets:
- Redhat Enterprise Linux 9.x, 10.x
- Amazon Linux2023
- Ubuntu 22.x, 23.x, 24.x, 25.x
To learn more about this feature, refer to Allow Domains, IPs, and Applications on Quarantined Assets.
| Required Application Version | Patch Management 3.10.0.0 |
Privilege Management for CEP Processes
We enhanced the Command Execution Pipeline (CEP) to optimize the default privileges.
When Cloud Agent runs with root access and useSudo=0 configuration, CEP commands will be executed without sudo privileges. Previously, CEP commands were executed with sudo privileges, despite having a useSudo=0 configuration, because useSudoForCep=1 is the default configuration for the Cloud Agent.
This enhancement ensures the consistent behavior of CEP processes and prevents redundant privilege escalation.
Refer to Qualys Cloud Agent for Linux Intel 7.2.3 Release Notes for more details.
Runtime and Static Analysis for SwCA Scans
We have upgraded the Linux Cloud Agent to support Runtime and Static analysis during SwCA scans. In the Runtime analysis, SwCA scans application components in production environments, which are detected during the scan execution. In the Static analysis, SwCA scans the application components that are under development.
The Runtime analysis ensures that all the software installed on Cloud Agent host is scanned during the SwCA scan.
You must enable Runtime analysis to be able to run Static analysis during the SwCA scans.
To learn more about this feature, refer to Software Composition Analysis Settings and Supported Language.
| Required Application Version | Cloud Agent Application 2.5.0 |
Client Certificate Support for Database Authentication
We updated the Linux Cloud Agent to support uploading client certificate files for database authentication. You can upload the client certificate file in .pfx format to fetch the vault connection profiles. The client certificate file also needs a passphrase to ensure that only authenticated users can access the request databases.
This enhancement adds an extra layer of security to the database authentication, as users are no longer required to expose their credentials.
To learn more about this feature, refer to Vault Configuration for Database Assessment.
Behavior Change
There are no behavior changes in this release.
Platform Coverage Support
No new platform coverage added in this release.
Issues Addressed
The following important and notable issues are fixed in this release:
| Component/Category | Description |
|---|---|
| SwCA Scans | The SwCA scans were failing as certain network files were not being excluded during the scan. We fixed this issue by adding these files to the default exclusion list. |
| Cloud Agent Resources | We fixed an issue where the SwCA processes were causing high CPU usage by improving the SwCA scan performance. |
| Cloud Agent Reporting | We fixed an issue where the RPM command failures were not reported correctly. Now QID 45613 reports the RPM command failure. |
| Cloud Agent Notifications | We fixed an issue where the useSudoForCep configuration was always honored for root users. Now, we honor it only if configuration of useSudo is set to 1.
|
Known Issues, Limitations, and Workarounds
There are no known issues and limitations for this release.