Vulnerability Reportamazonlinux:2

amazonlinux:2.0.20260526.0amazonlinux:2

DIGESTsha256:a1e5e6cdff80b17052c02fe036cac59b4e85babb310470c1018bf46efbfa6999

Executive Summary

SAFE

This base/runtime image is a clean foundation for building production images. It contains one low-severity post-exploit vulnerability (max CVSS 2.78), but that only matters if an attacker has already compromised the container and has local access. The image is official, pinned by digest, and carries no exploitable surface vulnerabilities. It is a safe choice for downstream builds. Note: this is a general-purpose base/runtime image — many findings live in components that an application built on top may never load, so actual exploitability depends on the final image. For an accurate risk picture, re-scan the final application image with context.

Threat Score

0/100

SAFE

Official Docker Hub image pinned by digest ensures authenticity and immutability.
No exposed vulnerabilities on the container surface, resulting in a threat score of 0.
Only one low-severity (CVSS 2.78) post-exploit vulnerability exists, which requires prior compromise and has minimal impact.
Fully scanned and deemed safe for use as a base image.

Reputation

TRUSTED

Docker Official

OFFICIAL

Official Docker Hub Image
Pinned by digest (Immutable)

Vulnerabilities

Vulnerability Log

1 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-7598	LOW2.78	libssh2 1.4.3-12.amzn2.2.6 fixed in 1.4.3-12.amzn2.2.7	0.4% Theoretical Threat	Post-Exploit