Vulnerability Reportapache/kafka:latest

apache/kafka:latestapache/kafka:4.3.1apache/kafka:4.3.1-rc2

DIGESTsha256:77e3df9054047a88b520d0cc46e16696d3b22022e1d580aeccd2632df6532837

Executive Summary

Threat ScoreSAFE• High reputation Apache image with 30M+ pulls• Pinned by digest ensuring immutability• Trust score of 90 indicates reliable publisher• Only 1 low-severity exposure (max severity 3.15) and 3 low-severity post-exploit findings• No critical vulnerabilities detected

0/100SAFE

ReputationPOPULAR COMMUNITY• High Reputation Community Image (30M+ pulls)• Pinned by digest (Immutable)

RELIABLE

This image is safe for production use. It has one low-severity exposure (max 3.15) and three low-severity post-exploit findings (max 2.29), all of which are inconsequential in a typical deployment. The image is widely used, pinned by digest, and published by Apache, ensuring reliability and integrity.

Vulnerabilities

Vulnerability Log

4 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-41080	LOW3.15	libexpat 2.7.5-r0 fixed in 2.8.1-r0	0.4% Theoretical Threat	Directly Exposed
CVE-2026-45186	LOW2.29	libexpat 2.7.5-r0 fixed in 2.8.1-r0	0.3% Theoretical Threat	Post-Exploit
GHSA-2r2c-cx56-8933	NONE0	org.jline:jline-remote-telnet 3.30.4 fixed in 4.2.1	—	Not Applicable
GHSA-47qp-hqvx-6r3f	NONE0	org.jline:jline-remote-telnet 3.30.4 fixed in 4.2.1	—	Not Applicable