CVE-2026-387289

Good evening, I am internally scanning 16 servers for an environment. At first scan I did an authenticated scan for the 16 servers, one server (let’s name it eight) had 2 vulnerabilities for copy fail CVE-2026-31431 QID387198. Second scan through agent did not have this vulnerability. Third scan as authenticated had CVE-2026-31431 QID387198 for one subnet and a new vulnerability “Dirty Frag” appeared for two more servers (eight, let’s call the rest nine and seven) for CVE-2026-43500 QID387288 and CVE-2026-387289 along the previous CVE just mentioned, however eight now does not have copy fail which is weird. Last scan I did is through agent and now I have dirty frag (both mentioned above) and all nine, eight and seven has dirty frag. Now I don’t know why it appeared in some and disappeared and reappeared. If someone faced a smiliar issue, can you assist me here?
For information: First Authenticated scan had both agent and public SSH key (by mistake) , second auth without public key and last scan only through agent not authenticated.