Vulnerability Reportandreas071101/pl-llm-ocr:latest

Name: andreas071101/pl-llm-ocr:v1.0.0 Security Vulnerability Report
Creator: BaseImage
Keywords: andreas071101/pl-llm-ocr:v1.0.0, Docker security, vulnerability scan, CVE, container security, SBOM

andreas071101/pl-llm-ocr:latestandreas071101/pl-llm-ocr:v1.0.0

DIGESTsha256:6845b641dea2e8a0ce5897bd33caa43512d13ecdbbfab54b5abead63ee63724e

Executive Summary

DANGEROUS

This image poses a critical security risk and must not be used in production, especially as an internet-facing service. An attacker could achieve remote code execution and compromise the container by supplying specially crafted PDF documents, leveraging vulnerabilities like CVE-2017-2814 in Poppler. Additionally, critical glibc vulnerabilities such as CVE-2018-20796 could lead to denial of service through malicious regular expression processing, which is highly relevant to OCR/LLM workloads. Note that a heap overflow issue exists in Perl which only applies to 32-bit builds when compiling attacker-controlled regular expressions.

Threat Score

100/100

DANGEROUS

The image is published by an unverified community user (andreas071101) with extremely low adoption (18 pulls), indicating unknown security and maintenance practices.
It contains critical exposed vulnerabilities that can lead to remote code execution, such as CVE-2017-2814 (severity 8.8) and CVE-2026-10118 (severity 7.8) in Poppler, which are highly relevant given the image's OCR/LLM function of processing documents.
Multiple high-severity vulnerabilities in core libraries are present, including CVE-2018-20796 (severity 7.5) in glibc, which can cause denial of service through regex processing, a common operation for this type of container.
The image has a high number of total exposed vulnerabilities (161), with 23 having a severity of 7.0 or higher and 47 with a severity of 6.0 or higher.

Reputation

UNVERIFIED

andreas071101

COMMUNITY

Community Image with low/unknown reputation
Very few downloads (<1k) - Use caution
Pinned by digest (Immutable)

BaseImage/

andreas071101/pl-llm-ocr:latest

Hardened

Grade

A+

Vulns

Verified & secured for production

Vulnerabilities

Vulnerability Log

235 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2017-2814	HIGH8.8	libpoppler147 25.03.0-5+deb13u2 No fix yet	1.5% Low-Moderate Risk	Directly ExposedContext importance: HIGH
CVE-2017-2814	HIGH8.8	poppler-utils 25.03.0-5+deb13u2 No fix yet	1.5% Low-Moderate Risk	Directly ExposedContext importance: HIGH
CVE-2026-8376	HIGH7.84	perl-base 5.40.1-6 No fix yet	—	Directly ExposedContext importance: MEDIUM
CVE-2026-10118	HIGH7.8	libpoppler147 25.03.0-5+deb13u2 No fix yet	—	Directly Exposed
CVE-2026-10118	HIGH7.8	poppler-utils 25.03.0-5+deb13u2 No fix yet	—	Directly Exposed
CVE-2018-20796	HIGH7.5	libc-bin 2.41-12+deb13u3 No fix yet	1.5% Low-Moderate Risk	Directly ExposedContext importance: HIGH
CVE-2018-20796	HIGH7.5	libc6 2.41-12+deb13u3 No fix yet	1.5% Low-Moderate Risk	Directly ExposedContext importance: HIGH
CVE-2026-5773	HIGH7.5	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-6276	HIGH7.5	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2019-1010023	HIGH7.48	libc-bin 2.41-12+deb13u3 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2019-1010023	HIGH7.48	libc6 2.41-12+deb13u3 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2016-9580	HIGH7.48	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2016-9581	HIGH7.48	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2018-16376	HIGH7.48	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2017-2818	HIGH7.48	libpoppler147 25.03.0-5+deb13u2 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2017-2820	HIGH7.48	libpoppler147 25.03.0-5+deb13u2 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2019-9543	HIGH7.48	libpoppler147 25.03.0-5+deb13u2 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2019-9545	HIGH7.48	libpoppler147 25.03.0-5+deb13u2 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2017-2818	HIGH7.48	poppler-utils 25.03.0-5+deb13u2 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2017-2820	HIGH7.48	poppler-utils 25.03.0-5+deb13u2 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2019-9543	HIGH7.48	poppler-utils 25.03.0-5+deb13u2 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2019-9545	HIGH7.48	poppler-utils 25.03.0-5+deb13u2 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42496	HIGH7.28	perl-base 5.40.1-6 No fix yet	—	Directly ExposedContext importance: MEDIUM
CVE-2025-15079	MEDIUM6.88	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-25210	MEDIUM6.63	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2017-11695	MEDIUM6.63	libnss3 2:3.110-1+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2017-11696	MEDIUM6.63	libnss3 2:3.110-1+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2017-11697	MEDIUM6.63	libnss3 2:3.110-1+deb13u2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2017-11698	MEDIUM6.63	libnss3 2:3.110-1+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-24106	MEDIUM6.63	libpoppler147 25.03.0-5+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-8176	MEDIUM6.63	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-8177	MEDIUM6.63	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-24106	MEDIUM6.63	poppler-utils 25.03.0-5+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5545	MEDIUM6.5	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-6429	MEDIUM6.5	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2019-9192	MEDIUM6.38	libc-bin 2.41-12+deb13u3 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2019-9192	MEDIUM6.38	libc6 2.41-12+deb13u3 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2018-6829	MEDIUM6.38	libgcrypt20 1.11.0-7+deb13u1 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2016-9113	MEDIUM6.38	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2016-9114	MEDIUM6.38	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-24486	MEDIUM6.38	python-multipart 0.0.20 fixed in 0.0.22	1.0% Theoretical Threat	Directly Exposed
CVE-2025-62727	MEDIUM6.38	starlette 0.46.2 fixed in 0.49.1	0.4% Theoretical Threat	Directly Exposed
CVE-2025-61144	MEDIUM6.21	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-45186	MEDIUM6	libexpat1 2.7.1-2 No fix yet	—	Directly ExposedContext importance: MEDIUM
CVE-2017-16232	MEDIUM6	libtiff6 4.7.0-3+deb13u2 No fix yet	1.1% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2026-42497	MEDIUM6	perl-base 5.40.1-6 No fix yet	—	Directly ExposedContext importance: MEDIUM
CVE-2026-9538	MEDIUM6	perl-base 5.40.1-6 No fix yet	—	Directly ExposedContext importance: MEDIUM
CVE-2026-1965	MEDIUM5.78	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14819	MEDIUM5.78	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-22185	MEDIUM5.78	libldap2 2.6.10+dfsg-1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-52885	MEDIUM5.61	libpoppler147 25.03.0-5+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-52885	MEDIUM5.61	poppler-utils 25.03.0-5+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc-bin 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc6 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2018-18064	MEDIUM5.52	libcairo2 1.18.4-1+b1 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-3784	MEDIUM5.52	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14524	MEDIUM5.52	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2017-9937	MEDIUM5.52	libjbig0 2.1-6.1+b2 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2023-39329	MEDIUM5.52	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2016-10505	MEDIUM5.52	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2016-9115	MEDIUM5.52	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2016-9116	MEDIUM5.52	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2016-9117	MEDIUM5.52	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2019-6988	MEDIUM5.52	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-37769	MEDIUM5.52	libpixman-1-0 0.44.0-3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2017-9083	MEDIUM5.52	libpoppler147 25.03.0-5+deb13u2 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2018-10126	MEDIUM5.52	libtiff6 4.7.0-3+deb13u2 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2022-1210	MEDIUM5.52	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2017-9083	MEDIUM5.52	poppler-utils 25.03.0-5+deb13u2 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2026-3805	MEDIUM5.35	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-4873	MEDIUM5.3	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-6253	MEDIUM5.3	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-7168	MEDIUM5.3	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libblkid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libmount1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libsmartcols1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libuuid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc-bin 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc6 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-10966	MEDIUM5.02	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-2236	MEDIUM5.02	libgcrypt20 1.11.0-7+deb13u1 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libgssapi-krb5-2 1.21.3-5+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.02	libgssapi-krb5-2 1.21.3-5+deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libk5crypto3 1.21.3-5+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.02	libk5crypto3 1.21.3-5+deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libkrb5-3 1.21.3-5+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.02	libkrb5-3 1.21.3-5+deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libkrb5support0 1.21.3-5+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.02	libkrb5support0 1.21.3-5+deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-13151	MEDIUM5.02	libtasn1-6 4.20.0-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40347	MEDIUM5.02	python-multipart 0.0.20 fixed in 0.0.26	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3783	MEDIUM4.84	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-48962	MEDIUM4.68	perl-base 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2022-0563	MEDIUM4.67	libblkid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2017-7475	MEDIUM4.67	libcairo2 1.18.4-1+b1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-66382	MEDIUM4.67	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-32776	MEDIUM4.67	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-32777	MEDIUM4.67	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-32778	MEDIUM4.67	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libmount1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2023-39328	MEDIUM4.67	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2021-4214	MEDIUM4.67	libpng16-16t64 1.6.48-1+deb13u5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libsmartcols1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-61143	MEDIUM4.67	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libuuid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27171	MEDIUM4.67	zlib1g 1:1.3.dfsg+really1.3.1-1+b1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-7598	MEDIUM4.64	libssh2-1t64 1.11.1-1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2015-3276	MEDIUM4.5	libldap2 2.6.10+dfsg-1 No fix yet	2.6% Low-Moderate Risk	Directly Exposed
CVE-2017-17740	MEDIUM4.5	libldap2 2.6.10+dfsg-1 No fix yet	6.1% Low-Moderate Risk	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libblkid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2019-1010024	MEDIUM4.5	libc-bin 2.41-12+deb13u3 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2019-1010025	MEDIUM4.5	libc-bin 2.41-12+deb13u3 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2019-1010024	MEDIUM4.5	libc6 2.41-12+deb13u3 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2019-1010025	MEDIUM4.5	libc6 2.41-12+deb13u3 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2025-59375	MEDIUM4.5	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-34743	MEDIUM4.5	liblzma5 5.8.1-1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libmount1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3713	MEDIUM4.5	libpng16-16t64 1.6.48-1+deb13u5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libsmartcols1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2023-31437	MEDIUM4.5	libsystemd0 257.13-1~deb13u1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-31438	MEDIUM4.5	libsystemd0 257.13-1~deb13u1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2023-31439	MEDIUM4.5	libsystemd0 257.13-1~deb13u1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2023-31437	MEDIUM4.5	libudev1 257.13-1~deb13u1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-31438	MEDIUM4.5	libudev1 257.13-1~deb13u1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2023-31439	MEDIUM4.5	libudev1 257.13-1~deb13u1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libuuid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-54121	MEDIUM4.5	starlette 0.46.2 fixed in 0.47.2	0.2% Theoretical Threat	Directly Exposed
CVE-2011-3389	MEDIUM4.3	libgnutls30t64 3.8.9-3+deb13u4 No fix yet	3.9% Low-Moderate Risk	Directly Exposed
CVE-2026-5450	MEDIUM4.25	libc-bin 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	libc-bin 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	libc6 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	libc6 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-61145	MEDIUM4.25	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14017	MEDIUM4.08	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libblkid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-15224	MEDIUM4	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2017-14159	MEDIUM4	libldap2 2.6.10+dfsg-1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libmount1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libsmartcols1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libuuid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-24882	LOW3.98	dirmngr 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-24882	LOW3.98	gnupg 2.4.7-21+deb13u1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-24882	LOW3.98	gpg 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-24882	LOW3.98	gpg-agent 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-24882	LOW3.98	gpgconf 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-24882	LOW3.98	gpgsm 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-69720	LOW3.98	ncurses-bin 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW3.7	libapt-pkg7.0 3.0.3 No fix yet	1.5% Low-Moderate Risk	Directly Exposed
CVE-2023-39327	LOW3.65	libopenjp2-7 2.5.3-2.1~deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2021-45346	LOW3.65	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2005-2541	LOW3.6	tar 1.35+dfsg-3.1 No fix yet	3.8% Low-Moderate Risk	Post-Exploit
CVE-2020-15719	LOW3.57	libldap2 2.6.10+dfsg-1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2010-4756	LOW3.4	libc-bin 2.41-12+deb13u3 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2010-4756	LOW3.4	libc6 2.41-12+deb13u3 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-43718	LOW3.4	libpoppler147 25.03.0-5+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-43718	LOW3.4	poppler-utils 25.03.0-5+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-41080	LOW3.15	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	LOW3.11	bsdutils 1:2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	login 1:4.16.0-2+really2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	mount 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	util-linux 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2019-1010022	LOW3	libc-bin 2.41-12+deb13u3 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2019-1010022	LOW3	libc6 2.41-12+deb13u3 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	bsdutils 1:2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	login 1:4.16.0-2+really2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	mount 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-5704	LOW2.8	tar 1.35+dfsg-3.1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	util-linux 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-50422	LOW2.8	libcairo2 1.18.4-1+b1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2013-4472	LOW2.8	libpoppler147 25.03.0-5+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-70873	LOW2.8	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2013-4392	LOW2.8	libsystemd0 257.13-1~deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libsystemd0 257.13-1~deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2013-4392	LOW2.8	libudev1 257.13-1~deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libudev1 257.13-1~deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2013-4472	LOW2.8	poppler-utils 25.03.0-5+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2018-5709	LOW2.7	libgssapi-krb5-2 1.21.3-5+deb13u1 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libk5crypto3 1.21.3-5+deb13u1 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libkrb5-3 1.21.3-5+deb13u1 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libkrb5support0 1.21.3-5+deb13u1 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2026-3184	LOW2.7	bsdutils 1:2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	login 1:4.16.0-2+really2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	mount 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	util-linux 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2007-5686	LOW2.5	passwd 1:4.17.4-2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	bsdutils 1:2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2017-18018	LOW2.4	coreutils 9.7-3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-68972	LOW2.4	dirmngr 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-68972	LOW2.4	gnupg 2.4.7-21+deb13u1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-68972	LOW2.4	gpg 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-68972	LOW2.4	gpg-agent 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-68972	LOW2.4	gpgconf 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-68972	LOW2.4	gpgsm 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	login 1:4.16.0-2+really2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	mount 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-5278	LOW2.24	coreutils 9.7-3 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW2.22	apt 3.0.3 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2024-56433	LOW2.16	passwd 1:4.17.4-2 No fix yet	4.5% Low-Moderate Risk	Post-Exploit
CVE-2026-24515	LOW2.12	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-8534	LOW2.12	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-3219	LOW1.68	dirmngr 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-3219	LOW1.68	gnupg 2.4.7-21+deb13u1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-3219	LOW1.68	gpg 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-3219	LOW1.68	gpg-agent 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-3219	LOW1.68	gpgconf 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-3219	LOW1.68	gpgsm 2.4.7-21+deb13u1+b3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-6141	LOW1.68	ncurses-bin 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW1.68	perl-base 5.40.1-6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-24882	NONE0	gnupg-l10n 2.4.7-21+deb13u1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	libncursesw6 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	libtinfo6 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	ncurses-base 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-14104	NONE0	liblastlog2-2 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2022-0563	NONE0	liblastlog2-2 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-3184	NONE0	liblastlog2-2 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2007-5686	NONE0	login.defs 1:4.17.4-2 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2025-68972	NONE0	gnupg-l10n 2.4.7-21+deb13u1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	liblastlog2-2 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2024-56433	NONE0	login.defs 1:4.17.4-2 No fix yet	4.5% Low-Moderate Risk	Not Applicable
CVE-2022-3219	NONE0	gnupg-l10n 2.4.7-21+deb13u1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	libncursesw6 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	libtinfo6 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	ncurses-base 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
TEMP-0841856-B18BAF	NONE0	bash 5.2.37-2+b9 No fix yet	—	Not Applicable
CVE-2026-42250	NONE0	libbz2-1.0 1.0.8-6 No fix yet	—	Not Applicable
CVE-2025-29070	NONE0	liblcms2-2 2.16-2+deb13u2 No fix yet	0.7% Theoretical Threat	Not Applicable
TEMP-0628843-DBAD28	NONE0	login.defs 1:4.17.4-2 No fix yet	—	Not Applicable
TEMP-0628843-DBAD28	NONE0	passwd 1:4.17.4-2 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-48959	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-48961	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
TEMP-0517018-A83CE6	NONE0	sysvinit-utils 3.14-4 No fix yet	—	Not Applicable
TEMP-0290435-0B57B5	NONE0	tar 1.35+dfsg-3.1 No fix yet	—	Not Applicable
CVE-2026-42561	NONE0	python-multipart 0.0.20 fixed in 0.0.27	—	Not Applicable