Vulnerability Reportapache/rocketmq:5.3.3

apache/rocketmq:5.3.3
DIGESTsha256:455287638deddbbcd6cf48cdf988ed4d05bbac7265acc0c399d9d8228862a7d7

Executive Summary

Threat Score
100/100DANGEROUS
Reputation
RELIABLE

This image poses a critical security risk and must not be used in production, especially as an internet-facing service. An attacker could achieve remote code execution via deserialization in SOFA Hessian (CVE-2024-46983) or cause DNS cache poisoning through Netty's resolver (CVE-2026-45674), leading to data theft, service disruption, or lateral movement. Additionally, memory corruption in GnuTLS (CVE-2025-32988) may allow code execution during TLS handshake. All these vulnerabilities affect core messaging and networking libraries with no special configuration required, making exploitation straightforward for any attacker reaching the container. Immediate remediation via updating to patched versions of Netty, Hessian, and GnuTLS is mandatory.

Vulnerabilities

Vulnerability Log

282 total
CVE IDAdjusted SeverityPackageExploit ProbabilityRisk Context
CVE-2026-45674HIGH8.5
io.netty:netty-resolver-dns
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.2%
Theoretical Threat
Directly ExposedContext importance: HIGH
CVE-2026-47691HIGH8.5
io.netty:netty-resolver-dns
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.2%
Theoretical Threat
Directly ExposedContext importance: HIGH
CVE-2024-46983HIGH8.33
com.alipay.sofa:hessian
3.3.6
fixed in 3.5.5
0.7%
Theoretical Threat
Directly ExposedContext importance: HIGH
CVE-2025-32988HIGH8.2
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.4
1.2%
Low-Moderate Risk
Directly ExposedContext importance: HIGH
CVE-2026-42579HIGH7.73
io.netty:netty-codec-dns
4.1.114.Final
fixed in 4.2.13.Final, 4.1.133.Final
0.4%
Theoretical Threat
Directly ExposedContext importance: HIGH
CVE-2026-33416HIGH7.5
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.6
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-7254HIGH7.5
com.google.protobuf:protobuf-java
3.20.1
fixed in 3.25.5, 4.27.5, 4.28.2
2.8%
Low-Moderate Risk
Directly Exposed
CVE-2022-3171HIGH7.5
com.google.protobuf:protobuf-java
3.20.1
fixed in 3.21.7, 3.20.3, 3.19.6, 3.16.3
1.0%
Low-Moderate Risk
Directly ExposedContext importance: HIGH
CVE-2025-24970HIGH7.5
io.netty:netty-handler
4.1.114.Final
fixed in 4.1.118.Final
2.0%
Low-Moderate Risk
Directly Exposed
CVE-2025-5372HIGH7.48
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-48734HIGH7.04
commons-beanutils:commons-beanutils
1.9.4
fixed in 1.11.0
1.5%
Low-Moderate Risk
Directly ExposedContext importance: MEDIUM
CVE-2025-32990MEDIUM6.97
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.4
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-42013MEDIUM6.97
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-5260MEDIUM6.97
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-0966MEDIUM6.97
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.3
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-0861MEDIUM6.88
libc-bin
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.7
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-0861MEDIUM6.88
libc6
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.7
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-25646MEDIUM6.88
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.5
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-28387MEDIUM6.88
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.9
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44249MEDIUM6.88
io.netty:netty-handler
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-42010MEDIUM6.66
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.8%
Theoretical Threat
Directly ExposedContext importance: MEDIUM
CVE-2026-42581MEDIUM6.66
io.netty:netty-codec-http
4.1.114.Final
fixed in 4.2.13.Final, 4.1.133.Final
0.4%
Theoretical Threat
Directly ExposedContext importance: MEDIUM
CVE-2026-25210MEDIUM6.63
libexpat1
2.6.1-2ubuntu0.3
fixed in 2.6.1-2ubuntu0.4
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-22801MEDIUM6.63
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.3
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-29111MEDIUM6.63
libsystemd0
255.4-1ubuntu8.8
fixed in 255.4-1ubuntu8.14
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-29111MEDIUM6.63
libudev1
255.4-1ubuntu8.8
fixed in 255.4-1ubuntu8.14
0.1%
Theoretical Threat
Directly Exposed
CVE-2024-29857MEDIUM6.5
org.bouncycastle:bcprov-jdk15on
1.69
fixed in 1.78
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2026-33636MEDIUM6.46
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.6
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-41989MEDIUM6.38
libgcrypt20
1.10.3-2build1
fixed in 1.10.3-2ubuntu0.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-33846MEDIUM6.38
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-42009MEDIUM6.38
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-27135MEDIUM6.38
libnghttp2-14
1.59.0-1ubuntu0.2
fixed in 1.59.0-1ubuntu0.3
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-3731MEDIUM6.38
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.4
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-69421MEDIUM6.38
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-28388MEDIUM6.38
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.9
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-28389MEDIUM6.38
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.9
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-28390MEDIUM6.38
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.9
0.8%
Theoretical Threat
Directly Exposed
CVE-2023-6378MEDIUM6.38
ch.qos.logback:logback-classic
1.3.5
fixed in 1.3.12, 1.4.12, 1.2.13
0.9%
Theoretical Threat
Directly Exposed
CVE-2023-6378MEDIUM6.38
ch.qos.logback:logback-core
1.3.5
fixed in 1.3.12, 1.4.12, 1.2.13
0.9%
Theoretical Threat
Directly Exposed
CVE-2022-3509MEDIUM6.38
com.google.protobuf:protobuf-java
3.20.1
fixed in 3.16.3, 3.19.6, 3.20.3, 3.21.7
0.6%
Theoretical Threat
Directly Exposed
CVE-2022-3510MEDIUM6.38
com.google.protobuf:protobuf-java
3.20.1
fixed in 3.16.3, 3.19.6, 3.20.3, 3.21.7
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-55163MEDIUM6.38
io.grpc:grpc-netty-shaded
1.53.0
fixed in 1.75.0
0.9%
Theoretical Threat
Directly Exposed
CVE-2023-32731MEDIUM6.38
io.grpc:grpc-protobuf
1.53.0
fixed in 1.53.1, 1.54.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-58057MEDIUM6.38
io.netty:netty-codec
4.1.114.Final
fixed in 4.1.125.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44893MEDIUM6.38
io.netty:netty-codec-haproxy
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-48059MEDIUM6.38
io.netty:netty-codec-haproxy
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44893MEDIUM6.38
io.netty:netty-codec-haproxy
4.1.79.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-48059MEDIUM6.38
io.netty:netty-codec-haproxy
4.1.79.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-33870MEDIUM6.38
io.netty:netty-codec-http
4.1.114.Final
fixed in 4.1.132.Final, 4.2.10.Final
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-42587MEDIUM6.38
io.netty:netty-codec-http
4.1.114.Final
fixed in 4.2.13.Final, 4.1.133.Final
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-42585MEDIUM6.38
io.netty:netty-codec-http
4.1.114.Final
fixed in 4.2.13.Final, 4.1.133.Final
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-58056MEDIUM6.38
io.netty:netty-codec-http
4.1.114.Final
fixed in 4.1.125.Final, 4.2.5.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-55163MEDIUM6.38
io.netty:netty-codec-http2
4.1.114.Final
fixed in 4.2.4.Final, 4.1.124.Final
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-33871MEDIUM6.38
io.netty:netty-codec-http2
4.1.114.Final
fixed in 4.1.132.Final, 4.2.11.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42587MEDIUM6.38
io.netty:netty-codec-http2
4.1.114.Final
fixed in 4.2.13.Final, 4.1.133.Final
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-48043MEDIUM6.38
io.netty:netty-codec-http2
4.1.114.Final
fixed in 4.1.135.Final, 4.2.15.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44248MEDIUM6.38
io.netty:netty-codec-mqtt
4.1.114.Final
fixed in 4.2.13.Final, 4.1.133.Final
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-44250MEDIUM6.38
io.netty:netty-codec-redis
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44890MEDIUM6.38
io.netty:netty-codec-redis
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-48006MEDIUM6.38
io.netty:netty-codec-redis
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-50011MEDIUM6.38
io.netty:netty-codec-redis
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-45416MEDIUM6.38
io.netty:netty-handler
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-50010MEDIUM6.38
io.netty:netty-handler
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-42578MEDIUM6.38
io.netty:netty-handler-proxy
4.1.114.Final
fixed in 4.1.133.Final, 4.2.13.Final
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-46340MEDIUM6.38
io.netty:netty-transport-sctp
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-45292MEDIUM6.38
io.opentelemetry:opentelemetry-api
1.29.0
fixed in 1.62.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-5588MEDIUM6.38
org.bouncycastle:bcpkix-jdk15on
1.69
fixed in 1.84
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-66566MEDIUM6.38
org.lz4:lz4-java
1.8.0
No fix yet
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-3833MEDIUM6.29
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42011MEDIUM6.29
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-34182MEDIUM6.29
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-69419MEDIUM6.29
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-43869MEDIUM6.21
org.apache.thrift:libthrift
0.15.0
fixed in 0.23.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42012MEDIUM6.03
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-64720MEDIUM6.03
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-65018MEDIUM6.03
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-66293MEDIUM6.03
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.3
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-22695MEDIUM6.03
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.3
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-42586MEDIUM6.03
io.netty:netty-codec-redis
4.1.114.Final
fixed in 4.2.13.Final, 4.1.133.Final
0.2%
Theoretical Threat
Directly Exposed
CVE-2023-3635MEDIUM6
com.squareup.okio:okio
3.2.0
fixed in 3.4.0, 1.17.6
1.1%
Low-Moderate Risk
Directly ExposedContext importance: MEDIUM
CVE-2026-4878MEDIUM5.95
libcap2
1:2.66-5ubuntu2.2
fixed in 1:2.66-5ubuntu2.4
0.2%
Theoretical Threat
Directly Exposed
CVE-2024-2236MEDIUM5.9
libgcrypt20
1.10.3-2build1
No fix yet
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2025-13151MEDIUM5.9
libtasn1-6
4.19.0-3ubuntu0.24.04.1
fixed in 4.19.0-3ubuntu0.24.04.2
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2026-45673MEDIUM5.78
io.netty:netty-resolver-dns
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-42014MEDIUM5.61
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-9230MEDIUM5.6
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.6
1.8%
Low-Moderate Risk
Directly Exposed
CVE-2026-4437MEDIUM5.52
libc-bin
2.39-0ubuntu8.4
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-6238MEDIUM5.52
libc-bin
2.39-0ubuntu8.4
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-4437MEDIUM5.52
libc6
2.39-0ubuntu8.4
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-6238MEDIUM5.52
libc6
2.39-0ubuntu8.4
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-6395MEDIUM5.52
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.4
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-5351MEDIUM5.52
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-67735MEDIUM5.52
io.netty:netty-codec-http
4.1.114.Final
fixed in 4.2.8.Final, 4.1.129.Final
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-41417MEDIUM5.52
io.netty:netty-codec-http
4.1.114.Final
fixed in 4.1.133.Final, 4.2.13.Final
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42580MEDIUM5.52
io.netty:netty-codec-http
4.1.114.Final
fixed in 4.2.13.Final, 4.1.133.Final
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-12183MEDIUM5.52
org.lz4:lz4-java
1.8.0
fixed in 1.8.1
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-40225MEDIUM5.44
libsystemd0
255.4-1ubuntu8.8
fixed in 255.4-1ubuntu8.14
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-40226MEDIUM5.44
libsystemd0
255.4-1ubuntu8.8
fixed in 255.4-1ubuntu8.16
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-40225MEDIUM5.44
libudev1
255.4-1ubuntu8.8
fixed in 255.4-1ubuntu8.14
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-40226MEDIUM5.44
libudev1
255.4-1ubuntu8.8
fixed in 255.4-1ubuntu8.16
<0.1%
Theoretical Threat
Directly Exposed
CVE-2025-11226MEDIUM5.44
ch.qos.logback:logback-core
1.3.5
fixed in 1.5.19, 1.3.16
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-0964MEDIUM5.35
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-32989MEDIUM5.3
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.4
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2025-59419MEDIUM5.3
io.netty:netty-codec-smtp
4.1.114.Final
fixed in 4.2.7.Final, 4.1.128.Final
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2025-28162MEDIUM5.27
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.4
0.1%
Theoretical Threat
Directly Exposed
CVE-2025-64506MEDIUM5.18
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.1
0.1%
Theoretical Threat
Directly Exposed
CVE-2025-15281MEDIUM5.02
libc-bin
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.7
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-5435MEDIUM5.02
libc-bin
2.39-0ubuntu8.4
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-15281MEDIUM5.02
libc6
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.7
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-5435MEDIUM5.02
libc6
2.39-0ubuntu8.4
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-31790MEDIUM5.02
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.9
1.0%
Theoretical Threat
Directly Exposed
CVE-2025-69420MEDIUM5.02
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-22796MEDIUM5.02
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-42770MEDIUM5.02
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-9076MEDIUM5.02
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-30171MEDIUM5.02
org.bouncycastle:bcprov-jdk15on
1.69
fixed in 1.78
0.9%
Theoretical Threat
Directly Exposed
CVE-2025-5702MEDIUM4.76
libc-bin
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.5
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-5702MEDIUM4.76
libc6
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.5
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-66382MEDIUM4.67
libexpat1
2.6.1-2ubuntu0.3
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-0967MEDIUM4.67
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.3
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-22795MEDIUM4.67
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-7383MEDIUM4.67
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-12798MEDIUM4.67
ch.qos.logback:logback-core
1.3.5
fixed in 1.5.13, 1.3.15
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-47535MEDIUM4.67
io.netty:netty-common
4.1.114.Final
fixed in 4.1.115.Final
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-25193MEDIUM4.67
io.netty:netty-common
4.1.114.Final
fixed in 4.1.118.Final
0.4%
Theoretical Threat
Directly Exposed
CVE-2023-33202MEDIUM4.67
org.bouncycastle:bcprov-jdk15on
1.69
fixed in 1.70
0.9%
Theoretical Threat
Directly Exposed
CVE-2025-6965MEDIUM4.58
libsqlite3-0
3.45.1-1ubuntu2.3
fixed in 3.45.1-1ubuntu2.4
64.9%
Actively Exploited
Post-Exploit
CVE-2026-0915MEDIUM4.5
libc-bin
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.7
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-4046MEDIUM4.5
libc-bin
2.39-0ubuntu8.4
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-0915MEDIUM4.5
libc6
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.7
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-4046MEDIUM4.5
libc6
2.39-0ubuntu8.4
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-23865MEDIUM4.5
libfreetype6
2.13.2+dfsg-1build3
fixed in 2.13.2+dfsg-1ubuntu0.1
0.1%
Theoretical Threat
Directly Exposed
CVE-2025-14831MEDIUM4.5
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.5
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42015MEDIUM4.5
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-34743MEDIUM4.5
liblzma5
5.6.1+really5.4.5-1ubuntu0.2
fixed in 5.6.1+really5.4.5-1ubuntu0.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-42766MEDIUM4.5
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42767MEDIUM4.5
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Directly Exposed
CVE-2023-32732MEDIUM4.5
io.grpc:grpc-protobuf
1.53.0
fixed in 1.53.1, 1.54.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-50020MEDIUM4.5
io.netty:netty-codec-http
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-47244MEDIUM4.5
io.netty:netty-codec-http2
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-50560MEDIUM4.5
io.netty:netty-codec-http2
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-8916MEDIUM4.5
org.bouncycastle:bcpkix-jdk15on
1.69
fixed in 1.79
0.4%
Theoretical Threat
Directly Exposed
CVE-2023-33201MEDIUM4.5
org.bouncycastle:bcprov-jdk15on
1.69
No fix yet
0.6%
Theoretical Threat
Directly Exposed
CVE-2024-34447MEDIUM4.5
org.bouncycastle:bcprov-jdk15on
1.69
fixed in 1.78
0.8%
Theoretical Threat
Directly Exposed
CVE-2025-28164MEDIUM4.25
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.4
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-34180MEDIUM4.25
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-1225MEDIUM4.25
ch.qos.logback:logback-core
1.3.5
fixed in 1.5.25
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-15467MEDIUM4.06
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
48.7%
High Exploitation Risk
Post-Exploit
CVE-2025-15467MEDIUM4.06
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
48.7%
High Exploitation Risk
Post-Exploit
CVE-2026-27456MEDIUM4
libblkid1
2.39.3-9ubuntu6.2
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libmount1
2.39.3-9ubuntu6.2
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libsmartcols1
2.39.3-9ubuntu6.2
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2025-8114MEDIUM4
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.2
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-68160MEDIUM4
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libuuid1
2.39.3-9ubuntu6.2
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-5773LOW3.82
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-6276LOW3.82
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-5773LOW3.82
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-6276LOW3.82
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-28390LOW3.82
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.9
0.8%
Theoretical Threat
Post-Exploit
CVE-2025-4877LOW3.82
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-34182LOW3.77
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.2%
Theoretical Threat
Post-Exploit
CVE-2025-69419LOW3.77
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.4%
Theoretical Threat
Post-Exploit
CVE-2025-64505LOW3.74
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-34757LOW3.74
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.6
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-48924LOW3.7
org.apache.commons:commons-lang3
3.12.0
fixed in 3.18.0
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2021-31879LOW3.66
wget
1.21.4-1ubuntu4.1
No fix yet
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2025-68973LOW3.57
dirmngr
2.4.4-2ubuntu17.2
fixed in 2.4.4-2ubuntu17.4
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-68973LOW3.57
gnupg
2.4.4-2ubuntu17.2
fixed in 2.4.4-2ubuntu17.4
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-68973LOW3.57
gnupg-utils
2.4.4-2ubuntu17.2
fixed in 2.4.4-2ubuntu17.4
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-68973LOW3.57
gpg
2.4.4-2ubuntu17.2
fixed in 2.4.4-2ubuntu17.4
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-68973LOW3.57
gpg-agent
2.4.4-2ubuntu17.2
fixed in 2.4.4-2ubuntu17.4
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-68973LOW3.57
gpgconf
2.4.4-2ubuntu17.2
fixed in 2.4.4-2ubuntu17.4
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-68973LOW3.57
gpgsm
2.4.4-2ubuntu17.2
fixed in 2.4.4-2ubuntu17.4
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-68973LOW3.57
gpgv
2.4.4-2ubuntu17.2
fixed in 2.4.4-2ubuntu17.4
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-68973LOW3.57
keyboxd
2.4.4-2ubuntu17.2
fixed in 2.4.4-2ubuntu17.4
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-8058LOW3.57
libc-bin
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.6
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-8058LOW3.57
libc6
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.6
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-1965LOW3.47
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2025-14819LOW3.47
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-1965LOW3.47
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2025-14819LOW3.47
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-4438LOW3.4
libc-bin
2.39-0ubuntu8.4
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-4438LOW3.4
libc6
2.39-0ubuntu8.4
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-9820LOW3.4
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.5
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-69418LOW3.4
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-45536LOW3.4
io.netty:netty-transport-native-epoll
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-45536LOW3.4
io.netty:netty-transport-native-kqueue
4.1.114.Final
fixed in 4.2.15.Final, 4.1.135.Final
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-9230LOW3.36
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.6
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2026-5545LOW3.31
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-6429LOW3.31
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.4%
Theoretical Threat
Post-Exploit
CVE-2025-14524LOW3.31
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-3784LOW3.31
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-5545LOW3.31
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-6429LOW3.31
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.4%
Theoretical Threat
Post-Exploit
CVE-2025-14524LOW3.31
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-3784LOW3.31
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-5958LOW3.21
sed
4.9-2build1
fixed in 4.9-2ubuntu0.24.04.1
0.1%
Theoretical Threat
Post-Exploit
CVE-2026-3832LOW3.15
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-5419LOW3.15
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-45446LOW3.15
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-4878LOW3.06
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-31790LOW3.01
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.9
1.0%
Theoretical Threat
Post-Exploit
CVE-2025-69420LOW3.01
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.8%
Theoretical Threat
Post-Exploit
CVE-2026-22796LOW3.01
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-42770LOW3.01
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.2%
Theoretical Threat
Post-Exploit
CVE-2026-9076LOW3.01
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Post-Exploit
CVE-2025-40909LOW3.01
perl-base
5.38.2-3.2ubuntu0.1
fixed in 5.38.2-3.2ubuntu0.2
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-31789LOW3
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.9
0.2%
Theoretical Threat
Post-Exploit
CVE-2026-31789LOW3
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.9
0.2%
Theoretical Threat
Post-Exploit
CVE-2025-5318LOW2.92
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.1
2.4%
Low-Moderate Risk
Post-Exploit
CVE-2025-5987LOW2.92
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.1
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2026-45447LOW2.92
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2026-45447LOW2.92
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2026-3783LOW2.91
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-3783LOW2.91
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2025-45582LOW2.86
tar
1.35+dfsg-3build1
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-22795LOW2.8
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.1%
Theoretical Threat
Post-Exploit
CVE-2026-7383LOW2.8
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-0965LOW2.8
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.3
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-40228LOW2.8
libsystemd0
255.4-1ubuntu8.8
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-40228LOW2.8
libudev1
255.4-1ubuntu8.8
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2024-12801LOW2.8
ch.qos.logback:logback-core
1.3.5
fixed in 1.5.13, 1.3.15
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-33845LOW2.78
libgnutls30t64
3.8.3-1.1ubuntu3.3
fixed in 3.8.3-1.1ubuntu3.6
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-45445LOW2.78
libssl3t64
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-45445LOW2.78
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-42584LOW2.78
io.netty:netty-codec-http
4.1.114.Final
fixed in 4.2.13.Final, 4.1.133.Final
0.3%
Theoretical Threat
Post-Exploit
CVE-2022-41881LOW2.7
io.netty:netty-codec-haproxy
4.1.79.Final
fixed in 4.1.86.Final
1.5%
Low-Moderate Risk
Post-Exploit
CVE-2026-6253LOW2.7
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-7168LOW2.7
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-4873LOW2.7
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-6253LOW2.7
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-7168LOW2.7
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-4873LOW2.7
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-42766LOW2.7
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-42767LOW2.7
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-0968LOW2.63
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-8277LOW2.63
libssh-4
0.10.6-2build2
fixed in 0.10.6-2ubuntu0.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-34180LOW2.55
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.5%
Theoretical Threat
Post-Exploit
CVE-2025-15079LOW2.48
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.5%
Theoretical Threat
Post-Exploit
CVE-2025-15079LOW2.48
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-28387LOW2.48
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.9
0.6%
Theoretical Threat
Post-Exploit
CVE-2025-14017LOW2.45
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-10148LOW2.45
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.5%
Theoretical Threat
Post-Exploit
CVE-2025-14017LOW2.45
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-10148LOW2.45
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
bsdutils
1:2.39.3-9ubuntu6.2
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-15224LOW2.4
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.4%
Theoretical Threat
Post-Exploit
CVE-2025-15224LOW2.4
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
mount
2.39.3-9ubuntu6.2
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-68160LOW2.4
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.2%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
util-linux
2.39.3-9ubuntu6.2
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-69421LOW2.29
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.8%
Theoretical Threat
Post-Exploit
CVE-2026-28388LOW2.29
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.9
0.9%
Theoretical Threat
Post-Exploit
CVE-2026-28389LOW2.29
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.9
0.8%
Theoretical Threat
Post-Exploit
CVE-2026-24515LOW2.12
libexpat1
2.6.1-2ubuntu0.3
fixed in 2.6.1-2ubuntu0.4
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-69418LOW2.04
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.7
0.1%
Theoretical Threat
Post-Exploit
CVE-2026-45446LOW1.89
openssl
3.0.13-0ubuntu3.5
fixed in 3.0.13-0ubuntu3.11
0.2%
Theoretical Threat
Post-Exploit
CVE-2024-56433LOW1.84
login
1:4.13+dfsg1-4ubuntu3.2
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2024-56433LOW1.84
passwd
1:4.13+dfsg1-4ubuntu3.2
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-0861NONE0
locales
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.7
0.4%
Theoretical Threat
Not Applicable
CVE-2024-10963NONE0
libpam-modules
1.5.3-5ubuntu5.4
fixed in 1.5.3-5ubuntu5.5
0.8%
Theoretical Threat
Not Applicable
CVE-2024-10963NONE0
libpam-modules-bin
1.5.3-5ubuntu5.4
fixed in 1.5.3-5ubuntu5.5
0.8%
Theoretical Threat
Not Applicable
CVE-2024-10963NONE0
libpam-runtime
1.5.3-5ubuntu5.4
fixed in 1.5.3-5ubuntu5.5
0.8%
Theoretical Threat
Not Applicable
CVE-2024-10963NONE0
libpam0g
1.5.3-5ubuntu5.4
fixed in 1.5.3-5ubuntu5.5
0.8%
Theoretical Threat
Not Applicable
CVE-2026-4437NONE0
locales
2.39-0ubuntu8.4
No fix yet
0.3%
Theoretical Threat
Not Applicable
CVE-2026-6238NONE0
locales
2.39-0ubuntu8.4
No fix yet
0.3%
Theoretical Threat
Not Applicable
CVE-2025-15281NONE0
locales
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.7
0.3%
Theoretical Threat
Not Applicable
CVE-2026-5435NONE0
locales
2.39-0ubuntu8.4
No fix yet
0.2%
Theoretical Threat
Not Applicable
CVE-2025-5702NONE0
locales
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.5
0.2%
Theoretical Threat
Not Applicable
CVE-2026-0915NONE0
locales
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.7
0.6%
Theoretical Threat
Not Applicable
CVE-2026-4046NONE0
locales
2.39-0ubuntu8.4
No fix yet
0.4%
Theoretical Threat
Not Applicable
CVE-2025-8058NONE0
locales
2.39-0ubuntu8.4
fixed in 2.39-0ubuntu8.6
0.2%
Theoretical Threat
Not Applicable
CVE-2026-4438NONE0
locales
2.39-0ubuntu8.4
No fix yet
0.2%
Theoretical Threat
Not Applicable
CVE-2025-48924NONE0
commons-lang:commons-lang
2.6
No fix yet
2.2%
Low-Moderate Risk
Not Applicable
CVE-2025-0167NONE0
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.6%
Theoretical Threat
Not Applicable
CVE-2026-2219NONE0
dpkg
1.22.6ubuntu6.1
fixed in 1.22.6ubuntu6.6
0.4%
Theoretical Threat
Not Applicable
CVE-2025-6297NONE0
dpkg
1.22.6ubuntu6.1
fixed in 1.22.6ubuntu6.5
0.3%
Theoretical Threat
Not Applicable
CVE-2025-0167NONE0
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.6%
Theoretical Threat
Not Applicable
CVE-2025-7709NONE0
libsqlite3-0
3.45.1-1ubuntu2.3
fixed in 3.45.1-1ubuntu2.5
0.3%
Theoretical Threat
Not Applicable
GHSA-72hv-8253-57qqNONE0
com.fasterxml.jackson.core:jackson-core
2.15.2
fixed in 2.21.1, 2.18.6
Not Applicable
CVE-2026-42583NONE0
io.netty:netty-codec
4.1.114.Final
fixed in 4.1.133.Final
0.4%
Theoretical Threat
Not Applicable