Last scanned:
This image poses a critical security risk and must not be used in production, especially as an internet-facing service. It contains over 1,500 vulnerabilities, 835 of which are high or critical severity, including Log4Shell (CVE-2021-44228) and a jinjava sandbox bypass (CVE-2025-59340) that allow unauthenticated remote code execution. An attacker can gain full control of the container, access sensitive data, and pivot to internal networks. The only effective remediation is to replace this image with a fully patched version; no compensating controls fully mitigate the risks.
| CVE ID | Adjusted Severity | Package | Exploit Probability | Risk Context |
|---|---|---|---|---|
| CVE-2025-59340 | CRITICAL10 | com.hubspot.jinjava:jinjava 2.4.0 fixed in 2.8.1, 2.7.5 | 2.3% Low-Moderate Risk | Directly ExposedContext importance: HIGH |
| CVE-2025-59340 | CRITICAL10 | com.hubspot.jinjava:jinjava 2.4.12 fixed in 2.8.1, 2.7.5 | 2.3% Low-Moderate Risk | Directly ExposedContext importance: HIGH |
| CVE-2025-59340 | CRITICAL10 | com.hubspot.jinjava:jinjava 2.5.4 fixed in 2.8.1, 2.7.5 | 2.3% Low-Moderate Risk | Directly ExposedContext importance: HIGH |
| CVE-2021-44228 | CRITICAL10 | org.apache.logging.log4j:log4j-core 2.6.1 fixed in 2.15.0, 2.3.1, 2.12.2 | 100.0% Actively Exploited | Directly ExposedContext importance: HIGH |
| CVE-2024-47175 | CRITICAL10 | libcups2 2.3.1-9ubuntu1.1 fixed in 2.3.1-9ubuntu1.9 | 62.5% Actively Exploited | Directly Exposed |
| CVE-2022-25236 | CRITICAL10 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.2 | 34.2% High Exploitation Risk | Directly Exposed |
| CVE-2021-43527 | CRITICAL10 | libnss3 2:3.49.1-1ubuntu1.5 fixed in 2:3.49.1-1ubuntu1.6 | 17.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-3711 | CRITICAL10 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.8 | 87.8% Actively Exploited | Directly Exposed |
| CVE-2021-31535 | CRITICAL10 | libx11-6 2:1.6.9-2ubuntu1.1 fixed in 2:1.6.9-2ubuntu1.2 | 10.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-31535 | CRITICAL10 | libx11-data 2:1.6.9-2ubuntu1.1 fixed in 2:1.6.9-2ubuntu1.2 | 10.6% High Exploitation Risk | Directly Exposed |
| CVE-2022-37434 | CRITICAL10 | zlib1g 1:1.2.11.dfsg-2ubuntu1.2 fixed in 1:1.2.11.dfsg-2ubuntu1.5 | 16.0% High Exploitation Risk | Directly Exposed |
| CVE-2017-7525 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.6.7.1, 2.7.9.1, 2.8.9 | 37.9% High Exploitation Risk | Directly ExposedContext importance: HIGH |
| CVE-2020-8840 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 | 26.6% High Exploitation Risk | Directly Exposed |
| CVE-2020-9547 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.7% High Exploitation Risk | Directly Exposed |
| CVE-2020-9548 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.3% High Exploitation Risk | Directly Exposed |
| CVE-2017-7525 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.6.7.1, 2.7.9.1, 2.8.9 | 37.9% High Exploitation Risk | Directly ExposedContext importance: HIGH |
| CVE-2020-8840 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 | 26.6% High Exploitation Risk | Directly Exposed |
| CVE-2020-9547 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.7% High Exploitation Risk | Directly Exposed |
| CVE-2020-9548 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.3% High Exploitation Risk | Directly Exposed |
| CVE-2020-8840 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 | 26.6% High Exploitation Risk | Directly Exposed |
| CVE-2020-9547 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.7% High Exploitation Risk | Directly Exposed |
| CVE-2020-9548 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.3% High Exploitation Risk | Directly Exposed |
| CVE-2017-7525 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.6.7.1, 2.7.9.1, 2.8.9 | 37.9% High Exploitation Risk | Directly ExposedContext importance: HIGH |
| CVE-2020-8840 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 | 26.6% High Exploitation Risk | Directly Exposed |
| CVE-2020-9547 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.7% High Exploitation Risk | Directly Exposed |
| CVE-2020-9548 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.3% High Exploitation Risk | Directly Exposed |
| CVE-2020-8840 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 | 26.6% High Exploitation Risk | Directly Exposed |
| CVE-2020-9547 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.7% High Exploitation Risk | Directly Exposed |
| CVE-2020-9548 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.3% High Exploitation Risk | Directly Exposed |
| CVE-2017-7525 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.6.7.1, 2.7.9.1, 2.8.9 | 37.9% High Exploitation Risk | Directly ExposedContext importance: HIGH |
| CVE-2020-8840 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 | 26.6% High Exploitation Risk | Directly Exposed |
| CVE-2020-9547 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.7% High Exploitation Risk | Directly Exposed |
| CVE-2020-9548 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.3% High Exploitation Risk | Directly Exposed |
| CVE-2020-8840 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 | 26.6% High Exploitation Risk | Directly Exposed |
| CVE-2020-9547 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.7% High Exploitation Risk | Directly Exposed |
| CVE-2020-9548 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.3% High Exploitation Risk | Directly Exposed |
| CVE-2020-8840 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 | 26.6% High Exploitation Risk | Directly Exposed |
| CVE-2020-9547 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.7% High Exploitation Risk | Directly Exposed |
| CVE-2020-9548 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.3% High Exploitation Risk | Directly Exposed |
| CVE-2020-8840 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 | 26.6% High Exploitation Risk | Directly Exposed |
| CVE-2020-9547 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.7% High Exploitation Risk | Directly Exposed |
| CVE-2020-9548 | CRITICAL10 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4, 2.8.11.6, 2.7.9.7 | 18.3% High Exploitation Risk | Directly Exposed |
| CVE-2019-17195 | CRITICAL10 | com.nimbusds:nimbus-jose-jwt 4.41.2 fixed in 7.9 | 11.0% High Exploitation Risk | Directly ExposedContext importance: HIGH |
| CVE-2022-23305 | CRITICAL10 | log4j:log4j 1.2.17 No fix yet | 66.5% Actively Exploited | Directly Exposed |
| CVE-2015-7501 | CRITICAL10 | org.apache.commons:commons-collections4 4.0 fixed in 4.1 | 83.3% Actively Exploited | Directly ExposedContext importance: HIGH |
| CVE-2015-6420 | CRITICAL10 | org.apache.commons:commons-collections4 4.0 fixed in 4.1 | 18.8% High Exploitation Risk | Directly ExposedContext importance: HIGH |
| CVE-2021-41303 | CRITICAL10 | org.apache.shiro:shiro-core 1.7.0 fixed in 1.8.0 | 76.7% Actively Exploited | Directly Exposed |
| CVE-2022-32532 | CRITICAL10 | org.apache.shiro:shiro-core 1.7.0 fixed in 1.9.1 | 25.4% High Exploitation Risk | Directly Exposed |
| CVE-2017-7657 | CRITICAL10 | org.eclipse.jetty:jetty-server 8.1.19.v20160209 fixed in 9.2.25.v20180606, 9.3.24.v20180605 | 16.2% High Exploitation Risk | Directly ExposedContext importance: HIGH |
| CVE-2017-7658 | CRITICAL10 | org.eclipse.jetty:jetty-server 8.1.19.v20160209 fixed in 9.2.25.v20180606, 9.3.24.v20180605, 9.4.11.v20180605 | 21.0% High Exploitation Risk | Directly ExposedContext importance: HIGH |
| CVE-2017-7657 | CRITICAL10 | org.eclipse.jetty:jetty-server 8.2.0.v20160908 fixed in 9.2.25.v20180606, 9.3.24.v20180605 | 16.2% High Exploitation Risk | Directly ExposedContext importance: HIGH |
| CVE-2017-7658 | CRITICAL10 | org.eclipse.jetty:jetty-server 8.2.0.v20160908 fixed in 9.2.25.v20180606, 9.3.24.v20180605, 9.4.11.v20180605 | 21.0% High Exploitation Risk | Directly ExposedContext importance: HIGH |
| CVE-2022-1471 | CRITICAL10 | org.yaml:snakeyaml 1.15 fixed in 2.0 | 99.6% Actively Exploited | Directly Exposed |
| CVE-2022-1471 | CRITICAL10 | org.yaml:snakeyaml 1.24 fixed in 2.0 | 99.6% Actively Exploited | Directly Exposed |
| CVE-2022-1471 | CRITICAL10 | org.yaml:snakeyaml 1.9 fixed in 2.0 | 99.6% Actively Exploited | Directly Exposed |
| CVE-2019-20445 | CRITICAL10 | io.netty:netty 3.10.6.Final fixed in 4.0.0 | 13.5% High Exploitation Risk | Directly Exposed |
| CVE-2019-20445 | CRITICAL10 | io.netty:netty 3.4.0.Final fixed in 4.0.0 | 13.5% High Exploitation Risk | Directly Exposed |
| CVE-2019-20445 | CRITICAL10 | io.netty:netty 3.6.2.Final fixed in 4.0.0 | 13.5% High Exploitation Risk | Directly Exposed |
| CVE-2019-20445 | CRITICAL10 | io.netty:netty 3.7.0.Final fixed in 4.0.0 | 13.5% High Exploitation Risk | Directly Exposed |
| CVE-2019-20445 | CRITICAL10 | io.netty:netty 3.9.9.Final fixed in 4.0.0 | 13.5% High Exploitation Risk | Directly Exposed |
| CVE-2019-20445 | CRITICAL10 | io.netty:netty-handler 4.1.0.CR1 fixed in 4.1.45 | 13.5% High Exploitation Risk | Directly Exposed |
| CVE-2019-20445 | CRITICAL10 | io.netty:netty-handler 4.1.27.Final fixed in 4.1.45 | 13.5% High Exploitation Risk | Directly Exposed |
| CVE-2019-20445 | CRITICAL10 | io.netty:netty-handler 4.1.8.Final fixed in 4.1.45 | 13.5% High Exploitation Risk | Directly Exposed |
| CVE-2019-20445 | CRITICAL10 | org.jboss.netty:netty 3.2.2.Final fixed in 4.0.0 | 13.5% High Exploitation Risk | Directly Exposed |
| CVE-2024-3596 | CRITICAL10 | libgssapi-krb5-2 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.8 | 14.9% High Exploitation Risk | Directly Exposed |
| CVE-2024-3596 | CRITICAL10 | libk5crypto3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.8 | 14.9% High Exploitation Risk | Directly Exposed |
| CVE-2024-3596 | CRITICAL10 | libkrb5-3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.8 | 14.9% High Exploitation Risk | Directly Exposed |
| CVE-2024-3596 | CRITICAL10 | libkrb5support0 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.8 | 14.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-45046 | CRITICAL10 | org.apache.logging.log4j:log4j-core 2.6.1 fixed in 2.16.0, 2.12.2 | 100.0% Actively Exploited | Directly Exposed |
| CVE-2024-2961 | CRITICAL10 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.15 | 88.3% Actively Exploited | Directly Exposed |
| CVE-2024-2961 | CRITICAL10 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.15 | 88.3% Actively Exploited | Directly Exposed |
| CVE-2022-23307 | CRITICAL10 | log4j:log4j 1.2.17 No fix yet | 52.5% Actively Exploited | Directly Exposed |
| CVE-2022-23302 | CRITICAL10 | log4j:log4j 1.2.17 No fix yet | 61.8% Actively Exploited | Directly Exposed |
| CVE-2023-4863 | CRITICAL10 | Pillow 8.1.0 fixed in 10.0.1 | 99.7% Actively Exploited | Directly Exposed |
| CVE-2016-1585 | CRITICAL9.8 | libapparmor1 2.13.3-7ubuntu5.1 fixed in 2.13.3-7ubuntu5.4 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2022-23218 | CRITICAL9.8 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 4.7% Low-Moderate Risk | Directly Exposed |
| CVE-2022-23219 | CRITICAL9.8 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 4.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-23218 | CRITICAL9.8 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 4.7% Low-Moderate Risk | Directly Exposed |
| CVE-2022-23219 | CRITICAL9.8 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 4.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-25235 | CRITICAL9.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.2 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2022-22822 | CRITICAL9.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.2 | 4.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-22823 | CRITICAL9.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.2 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-22824 | CRITICAL9.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.2 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-23852 | CRITICAL9.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.2 | 4.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-25315 | CRITICAL9.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.4 | 4.8% Low-Moderate Risk | Directly Exposed |
| CVE-2024-45491 | CRITICAL9.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.7 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2024-45492 | CRITICAL9.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.7 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-27404 | CRITICAL9.8 | libfreetype6 2.10.1-2ubuntu0.1 fixed in 2.10.1-2ubuntu0.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20231 | CRITICAL9.8 | libgnutls30 3.6.13-2ubuntu1.3 fixed in 3.6.13-2ubuntu1.6 | 3.8% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20232 | CRITICAL9.8 | libgnutls30 3.6.13-2ubuntu1.3 fixed in 3.6.13-2ubuntu1.6 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-3520 | CRITICAL9.8 | liblz4-1 1.9.2-2 fixed in 1.9.2-2ubuntu0.20.04.1 | 3.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35527 | CRITICAL9.8 | libsqlite3-0 3.31.1-4ubuntu0.2 fixed in 3.31.1-4ubuntu0.4 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2017-15095 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2 | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11307 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-14719 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.7, 2.8.11.3, 2.7.9.5 | 9.7% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14379 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16335 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16942 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16943 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17267 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10, 2.8.11.5 | 4.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17531 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20330 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14892 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.6.7.3, 2.8.11.5, 2.9.10 | 5.4% Low-Moderate Risk | Directly Exposed |
| CVE-2017-15095 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2 | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11307 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-14719 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.7, 2.8.11.3, 2.7.9.5 | 9.7% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14379 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16335 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16942 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16943 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17267 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10, 2.8.11.5 | 4.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17531 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20330 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14892 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.6.7.3, 2.8.11.5, 2.9.10 | 5.4% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11307 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-14719 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.7, 2.8.11.3, 2.7.9.5 | 9.7% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14379 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17267 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10, 2.8.11.5 | 4.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20330 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2017-15095 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2 | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11307 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-14719 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.7, 2.8.11.3, 2.7.9.5 | 9.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-14720 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.7, 2.8.11.3, 2.7.9.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14379 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16335 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16942 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16943 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17267 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10, 2.8.11.5 | 4.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17531 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20330 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14892 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.6.7.3, 2.8.11.5, 2.9.10 | 5.4% Low-Moderate Risk | Directly Exposed |
| CVE-2017-15095 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2 | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11307 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-14719 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.7, 2.8.11.3, 2.7.9.5 | 9.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-14720 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.7, 2.8.11.3, 2.7.9.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14379 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16335 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16942 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16943 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17267 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10, 2.8.11.5 | 4.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17531 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20330 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14892 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.6.7.3, 2.8.11.5, 2.9.10 | 5.4% Low-Moderate Risk | Directly Exposed |
| CVE-2017-15095 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2 | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11307 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-14719 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.7, 2.8.11.3, 2.7.9.5 | 9.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-14720 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.7, 2.8.11.3, 2.7.9.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14379 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16335 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16942 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16943 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17267 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10, 2.8.11.5 | 4.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17531 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20330 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14892 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.6.7.3, 2.8.11.5, 2.9.10 | 5.4% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20330 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-9546 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4 | 4.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14379 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16335 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16942 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16943 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17267 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10, 2.8.11.5 | 4.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17531 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20330 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-9546 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4 | 4.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14892 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.6.7.3, 2.8.11.5, 2.9.10 | 5.4% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14893 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10 | 4.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14379 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16335 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16942 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16943 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17267 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10, 2.8.11.5 | 4.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-17531 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.1, 2.8.11.5, 2.6.7.3 | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20330 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-9546 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4 | 4.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14892 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.6.7.3, 2.8.11.5, 2.9.10 | 5.4% Low-Moderate Risk | Directly Exposed |
| CVE-2019-14893 | CRITICAL9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10 | 4.0% Low-Moderate Risk | Directly Exposed |
| CVE-2014-125087 | CRITICAL9.8 | com.jamesmurty.utils:java-xmlbuilder 0.4 fixed in 1.2 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-23848 | CRITICAL9.8 | org.alluxio:alluxio-core-common 1.0.0 fixed in 2.7.3 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-39135 | CRITICAL9.8 | org.apache.calcite:calcite-core 1.2.0-incubating fixed in 1.32.0 | 1.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37404 | CRITICAL9.8 | org.apache.hadoop:hadoop-common 2.3.0 fixed in 3.3.2, 3.2.3, 2.10.2 | 2.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-25168 | CRITICAL9.8 | org.apache.hadoop:hadoop-common 2.3.0 fixed in 2.10.2, 3.2.4, 3.3.3 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-26612 | CRITICAL9.8 | org.apache.hadoop:hadoop-common 2.3.0 fixed in 3.2.3, 2.10.2, 3.3.3 | 4.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37404 | CRITICAL9.8 | org.apache.hadoop:hadoop-common 2.5.1 fixed in 3.3.2, 3.2.3, 2.10.2 | 2.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-25168 | CRITICAL9.8 | org.apache.hadoop:hadoop-common 2.5.1 fixed in 2.10.2, 3.2.4, 3.3.3 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-26612 | CRITICAL9.8 | org.apache.hadoop:hadoop-common 2.5.1 fixed in 3.2.3, 2.10.2, 3.3.3 | 4.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37404 | CRITICAL9.8 | org.apache.hadoop:hadoop-common 2.6.5 fixed in 3.3.2, 3.2.3, 2.10.2 | 2.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-25168 | CRITICAL9.8 | org.apache.hadoop:hadoop-common 2.6.5 fixed in 2.10.2, 3.2.4, 3.3.3 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-26612 | CRITICAL9.8 | org.apache.hadoop:hadoop-common 2.6.5 fixed in 3.2.3, 2.10.2, 3.3.3 | 4.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37404 | CRITICAL9.8 | org.apache.hadoop:hadoop-common 2.7.7 fixed in 3.3.2, 3.2.3, 2.10.2 | 2.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-25168 | CRITICAL9.8 | org.apache.hadoop:hadoop-common 2.7.7 fixed in 2.10.2, 3.2.4, 3.3.3 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-26612 | CRITICAL9.8 | org.apache.hadoop:hadoop-common 2.7.7 fixed in 3.2.3, 2.10.2, 3.3.3 | 4.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-40664 | CRITICAL9.8 | org.apache.shiro:shiro-core 1.7.0 fixed in 1.10.0 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-34478 | CRITICAL9.8 | org.apache.shiro:shiro-web 1.7.0 fixed in 1.12.0, 2.0.0-alpha-3 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-47937 | CRITICAL9.8 | org.apache.sling:org.apache.sling.commons.json 2.0.6 No fix yet | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2018-17190 | CRITICAL9.8 | org.apache.spark:spark-core_2.10 1.6.2 No fix yet | 8.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-17190 | CRITICAL9.8 | org.apache.spark:spark-core_2.10 1.6.3 No fix yet | 8.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-17190 | CRITICAL9.8 | org.apache.spark:spark-core_2.11 2.4.5 No fix yet | 8.7% Low-Moderate Risk | Directly Exposed |
| CVE-2019-10202 | CRITICAL9.8 | org.codehaus.jackson:jackson-mapper-asl 1.9.13 No fix yet | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-25289 | CRITICAL9.8 | Pillow 8.1.0 fixed in 8.1.1 | 2.3% Low-Moderate Risk | Directly Exposed |
| CVE-2021-34552 | CRITICAL9.8 | Pillow 8.1.0 fixed in 8.3.0 | 3.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-22817 | CRITICAL9.8 | Pillow 8.1.0 fixed in 9.0.1 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2017-18342 | CRITICAL9.8 | PyYAML 3.13 fixed in 5.1 | 6.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14343 | CRITICAL9.8 | PyYAML 3.13 fixed in 5.4 | 6.0% Low-Moderate Risk | Directly Exposed |
| CVE-2021-42343 | CRITICAL9.8 | distributed 2021.2.0 fixed in 2021.10.0 | 2.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-0778 | CRITICAL9.75 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.12 | 70.6% Actively Exploited | Directly Exposed |
| CVE-2021-23840 | CRITICAL9.75 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.2 | 50.7% Actively Exploited | Directly Exposed |
| CVE-2018-25032 | CRITICAL9.75 | zlib1g 1:1.2.11.dfsg-2ubuntu1.2 fixed in 1:1.2.11.dfsg-2ubuntu1.3 | 52.1% Actively Exploited | Directly Exposed |
| CVE-2021-4104 | CRITICAL9.75 | log4j:log4j 1.2.17 No fix yet | 81.1% Actively Exploited | Directly Exposed |
| CVE-2015-2080 | CRITICAL9.75 | org.eclipse.jetty:jetty-server 8.1.19.v20160209 fixed in 9.2.9.v20150224 | 74.9% Actively Exploited | Directly Exposed |
| CVE-2021-28165 | CRITICAL9.75 | org.eclipse.jetty:jetty-server 8.1.19.v20160209 fixed in 9.4.39, 10.0.2, 11.0.2 | 53.9% Actively Exploited | Directly Exposed |
| CVE-2015-2080 | CRITICAL9.75 | org.eclipse.jetty:jetty-server 8.2.0.v20160908 fixed in 9.2.9.v20150224 | 74.9% Actively Exploited | Directly Exposed |
| CVE-2021-28165 | CRITICAL9.75 | org.eclipse.jetty:jetty-server 8.2.0.v20160908 fixed in 9.4.39, 10.0.2, 11.0.2 | 53.9% Actively Exploited | Directly Exposed |
| CVE-2021-28165 | CRITICAL9.75 | org.eclipse.jetty:jetty-server 9.3.27.v20190418 fixed in 9.4.39, 10.0.2, 11.0.2 | 53.9% Actively Exploited | Directly Exposed |
| CVE-2021-28165 | CRITICAL9.75 | org.eclipse.jetty:jetty-server 9.4.31.v20200723 fixed in 9.4.39, 10.0.2, 11.0.2 | 53.9% Actively Exploited | Directly Exposed |
| CVE-2023-0286 | CRITICAL9.62 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.17 | 59.5% Actively Exploited | Directly Exposed |
| CVE-2021-3712 | CRITICAL9.62 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.8 | 50.4% Actively Exploited | Directly Exposed |
| CVE-2023-0286 | CRITICAL9.62 | cryptography 3.2.1 fixed in 39.0.1 | 59.5% Actively Exploited | Directly Exposed |
| CVE-2021-32798 | CRITICAL9.6 | notebook 6.2.0 fixed in 5.7.11, 6.4.1 | 2.1% Low-Moderate Risk | Directly ExposedContext importance: HIGH |
| CVE-2021-32797 | CRITICAL9.6 | notebook 6.2.0 fixed in 5.7.11, 6.4.1 | 2.6% Low-Moderate Risk | Directly ExposedContext importance: HIGH |
| CVE-2022-1292 | CRITICAL9.49 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.13 | 83.2% Actively Exploited | Directly Exposed |
| CVE-2022-2068 | CRITICAL9.49 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.15 | 95.8% Actively Exploited | Directly Exposed |
| CVE-2025-27363 | CRITICAL9.31 | libfreetype6 2.10.1-2ubuntu0.1 fixed in 2.10.1-2ubuntu0.4 | 26.0% High Exploitation Risk | Directly Exposed |
| CVE-2020-35728 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8 | 12.5% High Exploitation Risk | Directly Exposed |
| CVE-2020-36179 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8, 2.6.7.5 | 20.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-36184 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8 | 10.4% High Exploitation Risk | Directly Exposed |
| CVE-2020-36188 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8, 2.6.7.5 | 10.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-35728 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8 | 12.5% High Exploitation Risk | Directly Exposed |
| CVE-2020-36179 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8, 2.6.7.5 | 20.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-36184 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8 | 10.4% High Exploitation Risk | Directly Exposed |
| CVE-2020-36188 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8, 2.6.7.5 | 10.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-35728 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8 | 12.5% High Exploitation Risk | Directly Exposed |
| CVE-2020-36179 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8, 2.6.7.5 | 20.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-36184 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8 | 10.4% High Exploitation Risk | Directly Exposed |
| CVE-2020-36188 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8, 2.6.7.5 | 10.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-35728 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8 | 12.5% High Exploitation Risk | Directly Exposed |
| CVE-2020-36179 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8, 2.6.7.5 | 20.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-36184 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8 | 10.4% High Exploitation Risk | Directly Exposed |
| CVE-2020-36188 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8, 2.6.7.5 | 10.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-35728 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8 | 12.5% High Exploitation Risk | Directly Exposed |
| CVE-2020-36179 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8, 2.6.7.5 | 20.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-36184 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8 | 10.4% High Exploitation Risk | Directly Exposed |
| CVE-2020-36188 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8, 2.6.7.5 | 10.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-35728 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8 | 12.5% High Exploitation Risk | Directly Exposed |
| CVE-2020-36179 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8, 2.6.7.5 | 20.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-36184 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8 | 10.4% High Exploitation Risk | Directly Exposed |
| CVE-2020-36188 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8, 2.6.7.5 | 10.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-35728 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8 | 12.5% High Exploitation Risk | Directly Exposed |
| CVE-2020-36179 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8, 2.6.7.5 | 20.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-36184 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8 | 10.4% High Exploitation Risk | Directly Exposed |
| CVE-2020-36188 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8, 2.6.7.5 | 10.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-35728 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8 | 12.5% High Exploitation Risk | Directly Exposed |
| CVE-2020-36179 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8, 2.6.7.5 | 20.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-36184 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8 | 10.4% High Exploitation Risk | Directly Exposed |
| CVE-2020-36188 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8, 2.6.7.5 | 10.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-35728 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8 | 12.5% High Exploitation Risk | Directly Exposed |
| CVE-2020-36179 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8, 2.6.7.5 | 20.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-36184 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8 | 10.4% High Exploitation Risk | Directly Exposed |
| CVE-2020-36188 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8, 2.6.7.5 | 10.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-35728 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8 | 12.5% High Exploitation Risk | Directly Exposed |
| CVE-2020-36179 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8, 2.6.7.5 | 20.9% High Exploitation Risk | Directly Exposed |
| CVE-2020-36184 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8 | 10.4% High Exploitation Risk | Directly Exposed |
| CVE-2020-36188 | CRITICAL9.31 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8, 2.6.7.5 | 10.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-35942 | CRITICAL9.1 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-35942 | CRITICAL9.1 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2024-37371 | CRITICAL9.1 | libgssapi-krb5-2 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.6 | 1.9% Low-Moderate Risk | Directly Exposed |
| CVE-2024-37371 | CRITICAL9.1 | libk5crypto3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.6 | 1.9% Low-Moderate Risk | Directly Exposed |
| CVE-2024-37371 | CRITICAL9.1 | libkrb5-3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.6 | 1.9% Low-Moderate Risk | Directly Exposed |
| CVE-2024-37371 | CRITICAL9.1 | libkrb5support0 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.6 | 1.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-1586 | CRITICAL9.1 | libpcre2-8-0 10.34-7 fixed in 10.34-7ubuntu0.1 | 3.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-1587 | CRITICAL9.1 | libpcre2-8-0 10.34-7 fixed in 10.34-7ubuntu0.1 | 2.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-7692 | CRITICAL9.1 | com.google.oauth-client:google-oauth-client 1.23.0 fixed in 1.31.0 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-7692 | CRITICAL9.1 | com.google.oauth-client:google-oauth-client 1.30.5 fixed in 1.31.0 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2022-36437 | CRITICAL9.1 | com.hazelcast.jet:hazelcast-jet 0.6.1 fixed in 4.5.4 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2022-36437 | CRITICAL9.1 | com.hazelcast:hazelcast 3.10 fixed in 3.12.13, 4.1.10, 4.2.6, 5.0.4, 5.1.3 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20444 | CRITICAL9.1 | io.netty:netty 3.10.6.Final fixed in 4.0.0 | 8.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20444 | CRITICAL9.1 | io.netty:netty 3.4.0.Final fixed in 4.0.0 | 8.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20444 | CRITICAL9.1 | io.netty:netty 3.6.2.Final fixed in 4.0.0 | 8.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20444 | CRITICAL9.1 | io.netty:netty 3.7.0.Final fixed in 4.0.0 | 8.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20444 | CRITICAL9.1 | io.netty:netty 3.9.9.Final fixed in 4.0.0 | 8.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20444 | CRITICAL9.1 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.1.44 | 8.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20444 | CRITICAL9.1 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.1.44 | 8.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20444 | CRITICAL9.1 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.1.44 | 8.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-1963 | CRITICAL9.1 | org.apache.ignite:ignite-core 2.7.6 fixed in 2.8.1 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2026-2332 | CRITICAL9.1 | org.eclipse.jetty:jetty-http 9.4.31.v20200723 fixed in 12.1.7, 12.0.33 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20444 | CRITICAL9.1 | org.jboss.netty:netty 3.2.2.Final fixed in 4.0.0 | 8.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-25287 | CRITICAL9.1 | Pillow 8.1.0 fixed in 8.2.0 | 2.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-25288 | CRITICAL9.1 | Pillow 8.1.0 fixed in 8.2.0 | 2.3% Low-Moderate Risk | Directly Exposed |
| CVE-2022-24303 | CRITICAL9.1 | Pillow 8.1.0 fixed in 9.0.1 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36242 | CRITICAL9.1 | cryptography 3.2.1 fixed in 3.3.2 | 6.7% Low-Moderate Risk | Directly Exposed |
| CVE-2024-52577 | CRITICAL9 | org.apache.ignite:ignite-core 2.7.6 fixed in 2.17.0 | 2.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-22825 | HIGH8.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.2 | 2.6% Low-Moderate Risk | Directly Exposed |
| CVE-2022-22826 | HIGH8.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-22827 | HIGH8.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2021-45960 | HIGH8.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.2 | 4.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42898 | HIGH8.8 | libgssapi-krb5-2 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.2 | 6.4% Low-Moderate Risk | Directly Exposed |
| CVE-2020-17541 | HIGH8.8 | libjpeg-turbo8 2.0.3-0ubuntu1.20.04.1 fixed in 2.0.3-0ubuntu1.20.04.3 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42898 | HIGH8.8 | libk5crypto3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.2 | 6.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42898 | HIGH8.8 | libkrb5-3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.2 | 6.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42898 | HIGH8.8 | libkrb5support0 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.2 | 6.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-1271 | HIGH8.8 | liblzma5 5.2.4-1ubuntu1 fixed in 5.2.4-1ubuntu1.1 | 4.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10673 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.4, 2.6.7.4 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10673 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.4, 2.6.7.4 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10673 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.4, 2.6.7.4 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10673 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.4, 2.6.7.4 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10673 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.4, 2.6.7.4 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10673 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.4, 2.6.7.4 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10672 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4 | 3.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10673 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4, 2.6.7.4 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10968 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10969 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11111 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11112 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4 | 3.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11113 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4 | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10672 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4 | 3.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10673 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4, 2.6.7.4 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10968 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10969 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11111 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11112 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4 | 3.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11113 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4 | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10672 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4 | 3.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10673 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4, 2.6.7.4 | 8.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10968 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10969 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11111 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11112 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4 | 3.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11113 | HIGH8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4 | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2025-48734 | HIGH8.8 | commons-beanutils:commons-beanutils 1.9.4 fixed in 1.11.0 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2024-47561 | HIGH8.8 | org.apache.avro:avro 1.7.4 fixed in 1.11.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2024-47561 | HIGH8.8 | org.apache.avro:avro 1.7.5 fixed in 1.11.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2024-47561 | HIGH8.8 | org.apache.avro:avro 1.7.7 fixed in 1.11.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2024-47561 | HIGH8.8 | org.apache.avro:avro 1.8.1 fixed in 1.11.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2024-47561 | HIGH8.8 | org.apache.avro:avro 1.8.2 fixed in 1.11.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2016-6811 | HIGH8.8 | org.apache.hadoop:hadoop-common 2.3.0 fixed in 2.7.4 | 2.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-9492 | HIGH8.8 | org.apache.hadoop:hadoop-common 2.3.0 fixed in 3.2.2, 3.1.4, 2.10.1 | 4.4% Low-Moderate Risk | Directly Exposed |
| CVE-2016-6811 | HIGH8.8 | org.apache.hadoop:hadoop-common 2.5.1 fixed in 2.7.4 | 2.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-9492 | HIGH8.8 | org.apache.hadoop:hadoop-common 2.5.1 fixed in 3.2.2, 3.1.4, 2.10.1 | 4.4% Low-Moderate Risk | Directly Exposed |
| CVE-2016-6811 | HIGH8.8 | org.apache.hadoop:hadoop-common 2.6.5 fixed in 2.7.4 | 2.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-9492 | HIGH8.8 | org.apache.hadoop:hadoop-common 2.6.5 fixed in 3.2.2, 3.1.4, 2.10.1 | 4.4% Low-Moderate Risk | Directly Exposed |
| CVE-2020-9492 | HIGH8.8 | org.apache.hadoop:hadoop-common 2.7.7 fixed in 3.2.2, 3.1.4, 2.10.1 | 4.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-33036 | HIGH8.8 | org.apache.hadoop:hadoop-yarn-server-common 2.3.0 fixed in 2.10.2, 3.2.3, 3.3.2 | 3.6% Low-Moderate Risk | Directly Exposed |
| CVE-2021-33036 | HIGH8.8 | org.apache.hadoop:hadoop-yarn-server-common 2.6.0 fixed in 2.10.2, 3.2.3, 3.3.2 | 3.6% Low-Moderate Risk | Directly Exposed |
| CVE-2021-33036 | HIGH8.8 | org.apache.hadoop:hadoop-yarn-server-common 2.6.5 fixed in 2.10.2, 3.2.3, 3.3.2 | 3.6% Low-Moderate Risk | Directly Exposed |
| CVE-2021-33036 | HIGH8.8 | org.apache.hadoop:hadoop-yarn-server-common 2.7.7 fixed in 2.10.2, 3.2.3, 3.3.2 | 3.6% Low-Moderate Risk | Directly Exposed |
| CVE-2023-4759 | HIGH8.8 | org.eclipse.jgit:org.eclipse.jgit 4.5.4.201711221230-r fixed in 6.6.1.202309021850-r, 5.13.3.202401111512-r | 1.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-39286 | HIGH8.8 | jupyter-core 4.7.1 fixed in 4.11.2 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2024-6345 | HIGH8.8 | setuptools 50.3.1.post20201107 fixed in 70.0.0 | 1.9% Low-Moderate Risk | Directly Exposed |
| CVE-2025-47273 | HIGH8.8 | setuptools 50.3.1.post20201107 fixed in 78.1.1 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2021-36222 | HIGH8.62 | libgssapi-krb5-2 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.3 | 10.3% High Exploitation Risk | Directly Exposed |
| CVE-2021-36222 | HIGH8.62 | libk5crypto3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.3 | 10.3% High Exploitation Risk | Directly Exposed |
| CVE-2021-36222 | HIGH8.62 | libkrb5-3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.3 | 10.3% High Exploitation Risk | Directly Exposed |
| CVE-2021-36222 | HIGH8.62 | libkrb5support0 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.3 | 10.3% High Exploitation Risk | Directly Exposed |
| CVE-2022-35737 | HIGH8.62 | libsqlite3-0 3.31.1-4ubuntu0.2 fixed in 3.31.1-4ubuntu0.5 | 18.0% High Exploitation Risk | Directly Exposed |
| CVE-2022-4450 | HIGH8.62 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.17 | 20.4% High Exploitation Risk | Directly Exposed |
| CVE-2022-34169 | HIGH8.62 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 17.7% High Exploitation Risk | Directly Exposed |
| CVE-2020-25649 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.10.3 fixed in 2.6.7.4, 2.9.10.7, 2.10.5.1 | 17.6% High Exploitation Risk | Directly Exposed |
| CVE-2019-12086 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 21.9% High Exploitation Risk | Directly Exposed |
| CVE-2019-14439 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 10.8% High Exploitation Risk | Directly Exposed |
| CVE-2019-12086 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 21.9% High Exploitation Risk | Directly Exposed |
| CVE-2019-14439 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 10.8% High Exploitation Risk | Directly Exposed |
| CVE-2020-25649 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.6.7.4, 2.9.10.7, 2.10.5.1 | 17.6% High Exploitation Risk | Directly Exposed |
| CVE-2019-12086 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 21.9% High Exploitation Risk | Directly Exposed |
| CVE-2019-14439 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 10.8% High Exploitation Risk | Directly Exposed |
| CVE-2020-25649 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.6.7.4, 2.9.10.7, 2.10.5.1 | 17.6% High Exploitation Risk | Directly Exposed |
| CVE-2019-12086 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 21.9% High Exploitation Risk | Directly Exposed |
| CVE-2019-14439 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 10.8% High Exploitation Risk | Directly Exposed |
| CVE-2020-25649 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.6.7.4, 2.9.10.7, 2.10.5.1 | 17.6% High Exploitation Risk | Directly Exposed |
| CVE-2019-12086 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 21.9% High Exploitation Risk | Directly Exposed |
| CVE-2019-14439 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 10.8% High Exploitation Risk | Directly Exposed |
| CVE-2020-25649 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.6.7.4, 2.9.10.7, 2.10.5.1 | 17.6% High Exploitation Risk | Directly Exposed |
| CVE-2020-25649 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.6.7.4, 2.9.10.7, 2.10.5.1 | 17.6% High Exploitation Risk | Directly Exposed |
| CVE-2020-25649 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.6.7.4, 2.9.10.7, 2.10.5.1 | 17.6% High Exploitation Risk | Directly Exposed |
| CVE-2019-12086 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 21.9% High Exploitation Risk | Directly Exposed |
| CVE-2019-14439 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 10.8% High Exploitation Risk | Directly Exposed |
| CVE-2020-25649 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.6.7.4, 2.9.10.7, 2.10.5.1 | 17.6% High Exploitation Risk | Directly Exposed |
| CVE-2019-14439 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 10.8% High Exploitation Risk | Directly Exposed |
| CVE-2020-25649 | HIGH8.62 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.6.7.4, 2.9.10.7, 2.10.5.1 | 17.6% High Exploitation Risk | Directly Exposed |
| CVE-2022-25647 | HIGH8.62 | com.google.code.gson:gson 2.8.5 fixed in 2.8.9 | 11.6% High Exploitation Risk | Directly Exposed |
| CVE-2022-25647 | HIGH8.62 | com.google.code.gson:gson 2.8.6 fixed in 2.8.9 | 11.6% High Exploitation Risk | Directly Exposed |
| CVE-2016-4970 | HIGH8.62 | io.netty:netty-handler 4.1.0.CR1 fixed in 4.0.37.Final, 4.1.1.Final | 11.3% High Exploitation Risk | Directly Exposed |
| CVE-2021-35515 | HIGH8.62 | org.apache.commons:commons-compress 1.14 fixed in 1.21 | 11.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-35516 | HIGH8.62 | org.apache.commons:commons-compress 1.14 fixed in 1.21 | 12.4% High Exploitation Risk | Directly Exposed |
| CVE-2021-35517 | HIGH8.62 | org.apache.commons:commons-compress 1.14 fixed in 1.21 | 10.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-36090 | HIGH8.62 | org.apache.commons:commons-compress 1.14 fixed in 1.21 | 12.9% High Exploitation Risk | Directly Exposed |
| CVE-2019-12402 | HIGH8.62 | org.apache.commons:commons-compress 1.18 fixed in 1.19 | 16.2% High Exploitation Risk | Directly Exposed |
| CVE-2021-35515 | HIGH8.62 | org.apache.commons:commons-compress 1.18 fixed in 1.21 | 11.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-35516 | HIGH8.62 | org.apache.commons:commons-compress 1.18 fixed in 1.21 | 12.4% High Exploitation Risk | Directly Exposed |
| CVE-2021-35517 | HIGH8.62 | org.apache.commons:commons-compress 1.18 fixed in 1.21 | 10.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-36090 | HIGH8.62 | org.apache.commons:commons-compress 1.18 fixed in 1.21 | 12.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-35515 | HIGH8.62 | org.apache.commons:commons-compress 1.4.1 fixed in 1.21 | 11.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-35516 | HIGH8.62 | org.apache.commons:commons-compress 1.4.1 fixed in 1.21 | 12.4% High Exploitation Risk | Directly Exposed |
| CVE-2021-35517 | HIGH8.62 | org.apache.commons:commons-compress 1.4.1 fixed in 1.21 | 10.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-36090 | HIGH8.62 | org.apache.commons:commons-compress 1.4.1 fixed in 1.21 | 12.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-35515 | HIGH8.62 | org.apache.commons:commons-compress 1.5 fixed in 1.21 | 11.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-35516 | HIGH8.62 | org.apache.commons:commons-compress 1.5 fixed in 1.21 | 12.4% High Exploitation Risk | Directly Exposed |
| CVE-2021-35517 | HIGH8.62 | org.apache.commons:commons-compress 1.5 fixed in 1.21 | 10.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-36090 | HIGH8.62 | org.apache.commons:commons-compress 1.5 fixed in 1.21 | 12.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-35515 | HIGH8.62 | org.apache.commons:commons-compress 1.8.1 fixed in 1.21 | 11.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-35516 | HIGH8.62 | org.apache.commons:commons-compress 1.8.1 fixed in 1.21 | 12.4% High Exploitation Risk | Directly Exposed |
| CVE-2021-35517 | HIGH8.62 | org.apache.commons:commons-compress 1.8.1 fixed in 1.21 | 10.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-36090 | HIGH8.62 | org.apache.commons:commons-compress 1.8.1 fixed in 1.21 | 12.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-35515 | HIGH8.62 | org.apache.commons:commons-compress 1.9 fixed in 1.21 | 11.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-35516 | HIGH8.62 | org.apache.commons:commons-compress 1.9 fixed in 1.21 | 12.4% High Exploitation Risk | Directly Exposed |
| CVE-2021-35517 | HIGH8.62 | org.apache.commons:commons-compress 1.9 fixed in 1.21 | 10.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-36090 | HIGH8.62 | org.apache.commons:commons-compress 1.9 fixed in 1.21 | 12.9% High Exploitation Risk | Directly Exposed |
| CVE-2019-10172 | HIGH8.62 | org.codehaus.jackson:jackson-mapper-asl 1.9.13 No fix yet | 17.0% High Exploitation Risk | Directly Exposed |
| CVE-2021-33813 | HIGH8.62 | org.jdom:jdom 1.1 No fix yet | 19.4% High Exploitation Risk | Directly Exposed |
| CVE-2017-18640 | HIGH8.62 | org.yaml:snakeyaml 1.15 fixed in 1.26 | 26.7% High Exploitation Risk | Directly Exposed |
| CVE-2017-18640 | HIGH8.62 | org.yaml:snakeyaml 1.24 fixed in 1.26 | 26.7% High Exploitation Risk | Directly Exposed |
| CVE-2017-18640 | HIGH8.62 | org.yaml:snakeyaml 1.9 fixed in 1.26 | 26.7% High Exploitation Risk | Directly Exposed |
| CVE-2021-44832 | HIGH8.58 | org.apache.logging.log4j:log4j-core 2.6.1 fixed in 2.3.2, 2.12.4, 2.17.1 | 97.9% Actively Exploited | Directly Exposed |
| CVE-2023-2650 | HIGH8.45 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.19 | 73.5% Actively Exploited | Directly Exposed |
| CVE-2026-27727 | HIGH8.33 | com.mchange:mchange-commons-java 0.2.15 fixed in 0.4.0 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2026-42581 | HIGH8.33 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.2.13.Final, 4.1.133.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-42581 | HIGH8.33 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.2.13.Final, 4.1.133.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-42581 | HIGH8.33 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.2.13.Final, 4.1.133.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2023-37920 | HIGH8.33 | certifi 2020.12.5 fixed in 2023.7.22 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2020-6096 | HIGH8.1 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-6096 | HIGH8.1 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-40674 | HIGH8.1 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.5 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20305 | HIGH8.1 | libhogweed5 3.5.1+really3.5.1-2 fixed in 3.5.1+really3.5.1-2ubuntu0.1 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20305 | HIGH8.1 | libnettle7 3.5.1+really3.5.1-2 fixed in 3.5.1+really3.5.1-2ubuntu0.1 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2018-5968 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.8.11.1, 2.9.4, 2.7.9.5 | 7.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10650 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24616 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.6 | 9.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24750 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.6.7.5, 2.9.10.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35490 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8 | 7.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35491 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8 | 9.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36180 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36181 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36182 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36183 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36185 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36186 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36187 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36189 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20190 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10.7, 2.6.7.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2018-5968 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.8.11.1, 2.9.4, 2.7.9.5 | 7.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10650 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24616 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.6 | 9.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24750 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.6.7.5, 2.9.10.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35490 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8 | 7.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35491 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8 | 9.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36180 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36181 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36182 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36183 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36185 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36186 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36187 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36189 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20190 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10.7, 2.6.7.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2018-5968 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.8.11.1, 2.9.4, 2.7.9.5 | 7.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10650 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24616 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.6 | 9.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24750 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.6.7.5, 2.9.10.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35490 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8 | 7.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35491 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8 | 9.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36180 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36181 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36182 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36183 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36185 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36186 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36187 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36189 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20190 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.10.7, 2.6.7.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2018-5968 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.8.11.1, 2.9.4, 2.7.9.5 | 7.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10650 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24616 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.6 | 9.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24750 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.6.7.5, 2.9.10.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35490 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8 | 7.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35491 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8 | 9.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36180 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36181 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36182 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36183 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36185 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36186 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36187 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36189 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20190 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10.7, 2.6.7.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2018-5968 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.8.11.1, 2.9.4, 2.7.9.5 | 7.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10650 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24616 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.6 | 9.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24750 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.6.7.5, 2.9.10.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35490 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8 | 7.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35491 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8 | 9.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36180 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36181 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36182 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36183 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36185 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36186 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36187 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36189 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20190 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10.7, 2.6.7.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2018-5968 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.8.11.1, 2.9.4, 2.7.9.5 | 7.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10650 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24616 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.6 | 9.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24750 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.6.7.5, 2.9.10.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35490 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8 | 7.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35491 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8 | 9.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36180 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36181 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36182 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36183 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36185 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36186 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36187 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36189 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20190 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10.7, 2.6.7.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10650 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11619 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4 | 3.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11620 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.4 | 5.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14060 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.5 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14061 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.5 | 4.4% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14062 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.5 | 8.1% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14195 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.5 | 4.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24616 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.6 | 9.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24750 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.6.7.5, 2.9.10.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35490 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8 | 7.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35491 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8 | 9.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36180 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36181 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36182 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36183 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36185 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36186 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36187 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36189 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20190 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.9.10.7, 2.6.7.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35490 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8 | 7.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35491 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8 | 9.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36180 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36181 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36182 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36183 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36185 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36186 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36187 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36189 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20190 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.9.10.7, 2.6.7.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10650 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11619 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4 | 3.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11620 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.4 | 5.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14060 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.5 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14061 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.5 | 4.4% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14062 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.5 | 8.1% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14195 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.5 | 4.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24616 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.6 | 9.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24750 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.6.7.5, 2.9.10.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35490 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8 | 7.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35491 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8 | 9.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36180 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36181 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36182 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36183 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36185 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36186 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36187 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36189 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20190 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10.7, 2.6.7.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10650 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11619 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4 | 3.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11620 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.4 | 5.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14060 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.5 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14061 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.5 | 4.4% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14062 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.5 | 8.1% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14195 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.5 | 4.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24616 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.6 | 9.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-24750 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.6.7.5, 2.9.10.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35490 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8 | 7.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35491 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8 | 9.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36180 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36181 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36182 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8, 2.6.7.5 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36183 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36185 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36186 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36187 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36189 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.8, 2.6.7.5 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20190 | HIGH8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10.7, 2.6.7.5 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2016-10750 | HIGH8.1 | com.hazelcast:hazelcast 3.10 fixed in 3.11 | 3.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35213 | HIGH8.1 | io.atomix:atomix 3.0.0-rc4 No fix yet | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2019-7611 | HIGH8.1 | org.elasticsearch:elasticsearch 2.4.3 fixed in 5.6.15, 6.6.1 | 2.1% Low-Moderate Risk | Directly Exposed |
| CVE-2023-50447 | HIGH8.1 | Pillow 8.1.0 fixed in 10.2.0 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2023-43804 | HIGH8.1 | urllib3 1.25.11 fixed in 2.0.6, 1.26.17 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2018-14721 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.7, 2.8.11.3, 2.7.9.5 | 10.5% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-14721 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.7, 2.8.11.3, 2.7.9.5 | 10.5% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-14721 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.7, 2.8.11.3, 2.7.9.5 | 10.5% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2020-1953 | HIGH8 | org.apache.commons:commons-configuration2 2.2 fixed in 2.7 | 6.7% Low-Moderate Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2017-17485 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.4, 2.8.11, 2.7.9.2 | 49.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-14718 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3 | 12.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-19362 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3 | 10.6% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-7489 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5 | 20.1% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2019-14540 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 10.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2017-17485 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.4, 2.8.11, 2.7.9.2 | 49.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-14718 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3 | 12.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-19362 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3 | 10.6% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-7489 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5 | 20.1% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2019-14540 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 10.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2017-17485 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.9.4, 2.8.11, 2.7.9.2 | 49.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-7489 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5 | 20.1% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2017-17485 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.4, 2.8.11, 2.7.9.2 | 49.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-14718 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3 | 12.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-19360 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.8, 2.8.11.3, 2.7.9.5 | 10.6% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-19361 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.7.9.5, 2.9.8, 2.8.11.3 | 10.6% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-19362 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3 | 10.6% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-7489 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5 | 20.1% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2019-14540 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 10.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2017-17485 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.4, 2.8.11, 2.7.9.2 | 49.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-14718 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3 | 12.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-19360 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.8, 2.8.11.3, 2.7.9.5 | 10.6% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-19361 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.7.9.5, 2.9.8, 2.8.11.3 | 10.6% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-19362 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3 | 10.6% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-7489 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5 | 20.1% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2019-14540 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 10.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2017-17485 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.4, 2.8.11, 2.7.9.2 | 49.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-14718 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3 | 12.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-19360 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.8, 2.8.11.3, 2.7.9.5 | 10.6% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-19361 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.7.9.5, 2.9.8, 2.8.11.3 | 10.6% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-19362 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3 | 10.6% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2018-7489 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5 | 20.1% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2019-14540 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 10.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2019-14540 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 10.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2019-14540 | HIGH8 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.10, 2.8.11.5, 2.6.7.3 | 10.7% High Exploitation Risk | Directly ExposedContext importance: MEDIUM |
| CVE-2019-17571 | HIGH8 | log4j:log4j 1.2.17 No fix yet | 69.1% Actively Exploited | Directly ExposedContext importance: MEDIUM |
| CVE-2017-5645 | HIGH8 | org.apache.logging.log4j:log4j-core 2.6.1 fixed in 2.8.2 | 89.0% Actively Exploited | Directly ExposedContext importance: MEDIUM |
| CVE-2020-17523 | HIGH8 | org.apache.shiro:shiro-web 1.7.0 fixed in 1.7.1 | 85.9% Actively Exploited | Directly ExposedContext importance: MEDIUM |
| CVE-2022-1304 | HIGH7.8 | libcom-err2 1.45.5-2ubuntu1 fixed in 1.45.5-2ubuntu1.1 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-46143 | HIGH7.8 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.2 | 3.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-1304 | HIGH7.8 | libext2fs2 1.45.5-2ubuntu1 fixed in 1.45.5-2ubuntu1.1 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-1304 | HIGH7.8 | libss2 1.45.5-2ubuntu1 fixed in 1.45.5-2ubuntu1.1 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2019-0204 | HIGH7.8 | org.apache.mesos:mesos 0.21.1 fixed in 1.4.3, 1.5.3, 1.6.2, 1.7.2 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2022-0778 | HIGH7.8 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.12 | 70.6% Actively Exploited | Directly ExposedContext importance: MEDIUM |
| CVE-2026-42584 | HIGH7.73 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.2.13.Final, 4.1.133.Final | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2026-42584 | HIGH7.73 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.2.13.Final, 4.1.133.Final | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2026-42584 | HIGH7.73 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.2.13.Final, 4.1.133.Final | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2026-49268 | HIGH7.73 | org.apache.shiro:shiro-core 1.7.0 fixed in 2.2.1, 3.0.0-alpha-2 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2025-58782 | HIGH7.7 | org.apache.jackrabbit:jackrabbit-jcr-commons 1.5.2 fixed in 2.22.2 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2021-3449 | HIGH7.67 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.3 | 62.9% Actively Exploited | Directly Exposed |
| CVE-2021-45105 | HIGH7.67 | org.apache.logging.log4j:log4j-core 2.6.1 fixed in 2.12.3, 2.17.0, 2.3.1 | 100.0% Actively Exploited | Directly Exposed |
| CVE-2024-33599 | HIGH7.6 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.16 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2024-33599 | HIGH7.6 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.16 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2021-3326 | HIGH7.5 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 3.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-3326 | HIGH7.5 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 3.1% Low-Moderate Risk | Directly Exposed |
| CVE-2022-23990 | HIGH7.5 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.2 | 4.0% Low-Moderate Risk | Directly Exposed |
| CVE-2022-25314 | HIGH7.5 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.4 | 4.7% Low-Moderate Risk | Directly Exposed |
| CVE-2022-43680 | HIGH7.5 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.6 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2024-45490 | HIGH7.5 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.7 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2022-27405 | HIGH7.5 | libfreetype6 2.10.1-2ubuntu0.1 fixed in 2.10.1-2ubuntu0.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-27406 | HIGH7.5 | libfreetype6 2.10.1-2ubuntu0.1 fixed in 2.10.1-2ubuntu0.2 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-33560 | HIGH7.5 | libgcrypt20 1.8.5-5ubuntu1 fixed in 1.8.5-5ubuntu1.1 | 2.3% Low-Moderate Risk | Directly Exposed |
| CVE-2021-43618 | HIGH7.5 | libgmp10 2:6.2.0+dfsg-4 fixed in 2:6.2.0+dfsg-4ubuntu0.1 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-2509 | HIGH7.5 | libgnutls30 3.6.13-2ubuntu1.3 fixed in 3.6.13-2ubuntu1.7 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2024-0553 | HIGH7.5 | libgnutls30 3.6.13-2ubuntu1.3 fixed in 3.6.13-2ubuntu1.10 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2021-3580 | HIGH7.5 | libhogweed5 3.5.1+really3.5.1-2 fixed in 3.5.1+really3.5.1-2ubuntu0.2 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-3580 | HIGH7.5 | libnettle7 3.5.1+really3.5.1-2 fixed in 3.5.1+really3.5.1-2ubuntu0.2 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-25648 | HIGH7.5 | libnss3 2:3.49.1-1ubuntu1.5 fixed in 2:3.49.1-1ubuntu1.7 | 3.9% Low-Moderate Risk | Directly Exposed |
| CVE-2019-20838 | HIGH7.5 | libpcre3 2:8.39-12build1 fixed in 2:8.39-12ubuntu0.1 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2021-36690 | HIGH7.5 | libsqlite3-0 3.31.1-4ubuntu0.2 fixed in 3.31.1-4ubuntu0.3 | 3.9% Low-Moderate Risk | Directly Exposed |
| CVE-2023-0215 | HIGH7.5 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.17 | 4.5% Low-Moderate Risk | Directly Exposed |
| CVE-2023-0464 | HIGH7.5 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.18 | 3.7% Low-Moderate Risk | Directly Exposed |
| CVE-2023-3138 | HIGH7.5 | libx11-6 2:1.6.9-2ubuntu1.1 fixed in 2:1.6.9-2ubuntu1.5 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2023-3138 | HIGH7.5 | libx11-data 2:1.6.9-2ubuntu1.1 fixed in 2:1.6.9-2ubuntu1.5 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36518 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.10.3 fixed in 2.13.2.1, 2.12.6.1 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-46877 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.10.3 fixed in 2.12.6, 2.13.1 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42003 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.10.3 fixed in 2.12.7.1, 2.13.4.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42004 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.10.3 fixed in 2.12.7.1, 2.13.4 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-12022 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36518 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.13.2.1, 2.12.6.1 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42003 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.12.7.1, 2.13.4.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42004 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.12.7.1, 2.13.4 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-12022 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36518 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.13.2.1, 2.12.6.1 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42003 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.12.7.1, 2.13.4.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42004 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.12.7.1, 2.13.4 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-12022 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36518 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.13.2.1, 2.12.6.1 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42003 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.12.7.1, 2.13.4.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42004 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.12.7.1, 2.13.4 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-12022 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2018-12023 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 8.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36518 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.13.2.1, 2.12.6.1 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42003 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.12.7.1, 2.13.4.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42004 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.12.7.1, 2.13.4 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-12022 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2018-12023 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 8.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36518 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.13.2.1, 2.12.6.1 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42003 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.12.7.1, 2.13.4.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42004 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.12.7.1, 2.13.4 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-12022 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 7.3% Low-Moderate Risk | Directly Exposed |
| CVE-2018-12023 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.7.9.4, 2.8.11.2, 2.9.6 | 8.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36518 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.13.2.1, 2.12.6.1 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42003 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.12.7.1, 2.13.4.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42004 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.12.7.1, 2.13.4 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36518 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.13.2.1, 2.12.6.1 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42003 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.12.7.1, 2.13.4.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42004 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.12.7.1, 2.13.4 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36518 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.13.2.1, 2.12.6.1 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42003 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.12.7.1, 2.13.4.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42004 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.12.7.1, 2.13.4 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36518 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.13.2.1, 2.12.6.1 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42003 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.12.7.1, 2.13.4.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42004 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.12.7.1, 2.13.4 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-36518 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.13.2.1, 2.12.6.1 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42003 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.12.7.1, 2.13.4.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42004 | HIGH7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.12.7.1, 2.13.4 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-28491 | HIGH7.5 | com.fasterxml.jackson.dataformat:jackson-dataformat-cbor 2.8.1 fixed in 2.11.4, 2.12.1 | 3.1% Low-Moderate Risk | Directly Exposed |
| CVE-2024-7254 | HIGH7.5 | com.google.protobuf:protobuf-java 2.4.1 fixed in 3.25.5, 4.27.5, 4.28.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-3171 | HIGH7.5 | com.google.protobuf:protobuf-java 2.4.1 fixed in 3.21.7, 3.20.3, 3.19.6, 3.16.3 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2024-7254 | HIGH7.5 | com.google.protobuf:protobuf-java 2.5.0 fixed in 3.25.5, 4.27.5, 4.28.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-3171 | HIGH7.5 | com.google.protobuf:protobuf-java 2.5.0 fixed in 3.21.7, 3.20.3, 3.19.6, 3.16.3 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2024-7254 | HIGH7.5 | com.google.protobuf:protobuf-java 3.0.0-beta-1 fixed in 3.25.5, 4.27.5, 4.28.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-3171 | HIGH7.5 | com.google.protobuf:protobuf-java 3.0.0-beta-1 fixed in 3.21.7, 3.20.3, 3.19.6, 3.16.3 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2024-7254 | HIGH7.5 | com.google.protobuf:protobuf-java 3.5.1 fixed in 3.25.5, 4.27.5, 4.28.2 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-3171 | HIGH7.5 | com.google.protobuf:protobuf-java 3.5.1 fixed in 3.21.7, 3.20.3, 3.19.6, 3.16.3 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2023-3635 | HIGH7.5 | com.squareup.okio:okio 1.15.0 fixed in 3.4.0, 1.17.6 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2023-3635 | HIGH7.5 | com.squareup.okio:okio 1.17.3 fixed in 3.4.0, 1.17.6 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2023-3635 | HIGH7.5 | com.squareup.okio:okio 1.6.0 fixed in 3.4.0, 1.17.6 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2014-3643 | HIGH7.5 | com.sun.jersey:jersey-core 1.9 fixed in 1.13 | 2.1% Low-Moderate Risk | Directly Exposed |
| CVE-2020-35211 | HIGH7.5 | io.atomix:atomix 3.0.0-rc4 No fix yet | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16869 | HIGH7.5 | io.netty:netty 3.10.6.Final No fix yet | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37136 | HIGH7.5 | io.netty:netty 3.10.6.Final fixed in 4.0.0 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37137 | HIGH7.5 | io.netty:netty 3.10.6.Final fixed in 4.0.0 | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2015-2156 | HIGH7.5 | io.netty:netty 3.4.0.Final fixed in 3.10.3.Final, 3.9.8.Final | 5.4% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16869 | HIGH7.5 | io.netty:netty 3.4.0.Final No fix yet | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37136 | HIGH7.5 | io.netty:netty 3.4.0.Final fixed in 4.0.0 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37137 | HIGH7.5 | io.netty:netty 3.4.0.Final fixed in 4.0.0 | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2015-2156 | HIGH7.5 | io.netty:netty 3.6.2.Final fixed in 3.10.3.Final, 3.9.8.Final | 5.4% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16869 | HIGH7.5 | io.netty:netty 3.6.2.Final No fix yet | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37136 | HIGH7.5 | io.netty:netty 3.6.2.Final fixed in 4.0.0 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37137 | HIGH7.5 | io.netty:netty 3.6.2.Final fixed in 4.0.0 | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2015-2156 | HIGH7.5 | io.netty:netty 3.7.0.Final fixed in 3.10.3.Final, 3.9.8.Final | 5.4% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16869 | HIGH7.5 | io.netty:netty 3.7.0.Final No fix yet | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37136 | HIGH7.5 | io.netty:netty 3.7.0.Final fixed in 4.0.0 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37137 | HIGH7.5 | io.netty:netty 3.7.0.Final fixed in 4.0.0 | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16869 | HIGH7.5 | io.netty:netty 3.9.9.Final No fix yet | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37136 | HIGH7.5 | io.netty:netty 3.9.9.Final fixed in 4.0.0 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37137 | HIGH7.5 | io.netty:netty 3.9.9.Final fixed in 4.0.0 | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16869 | HIGH7.5 | io.netty:netty-all 4.0.23.Final fixed in 4.1.42.Final | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16869 | HIGH7.5 | io.netty:netty-all 4.0.28.Final fixed in 4.1.42.Final | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16869 | HIGH7.5 | io.netty:netty-all 4.0.29.Final fixed in 4.1.42.Final | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37136 | HIGH7.5 | io.netty:netty-codec 4.1.27.Final fixed in 4.1.68.Final | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37137 | HIGH7.5 | io.netty:netty-codec 4.1.27.Final fixed in 4.1.68.Final | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37136 | HIGH7.5 | io.netty:netty-codec 4.1.51.Final fixed in 4.1.68.Final | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37137 | HIGH7.5 | io.netty:netty-codec 4.1.51.Final fixed in 4.1.68.Final | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37136 | HIGH7.5 | io.netty:netty-codec 4.1.8.Final fixed in 4.1.68.Final | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37137 | HIGH7.5 | io.netty:netty-codec 4.1.8.Final fixed in 4.1.68.Final | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2026-33871 | HIGH7.5 | io.netty:netty-codec-http2 4.1.0.CR1 fixed in 4.1.132.Final, 4.2.11.Final | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2026-33871 | HIGH7.5 | io.netty:netty-codec-http2 4.1.27.Final fixed in 4.1.132.Final, 4.2.11.Final | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2026-33871 | HIGH7.5 | io.netty:netty-codec-http2 4.1.8.Final fixed in 4.1.132.Final, 4.2.11.Final | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11612 | HIGH7.5 | io.netty:netty-handler 4.1.27.Final fixed in 4.1.46 | 9.4% Low-Moderate Risk | Directly Exposed |
| CVE-2020-11612 | HIGH7.5 | io.netty:netty-handler 4.1.8.Final fixed in 4.1.46 | 9.4% Low-Moderate Risk | Directly Exposed |
| CVE-2023-26464 | HIGH7.5 | log4j:log4j 1.2.17 fixed in 2.0 | 1.9% Low-Moderate Risk | Directly Exposed |
| CVE-2023-1370 | HIGH7.5 | net.minidev:json-smart 2.3 fixed in 2.4.9 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2023-39410 | HIGH7.5 | org.apache.avro:avro 1.7.4 fixed in 1.11.3 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2023-39410 | HIGH7.5 | org.apache.avro:avro 1.7.5 fixed in 1.11.3 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2023-39410 | HIGH7.5 | org.apache.avro:avro 1.7.7 fixed in 1.11.3 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2023-39410 | HIGH7.5 | org.apache.avro:avro 1.8.1 fixed in 1.11.3 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2023-39410 | HIGH7.5 | org.apache.avro:avro 1.8.2 fixed in 1.11.3 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2017-7669 | HIGH7.5 | org.apache.hadoop:hadoop-common 2.3.0 fixed in 2.8.1, 3.0.0-alpha3 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2017-7669 | HIGH7.5 | org.apache.hadoop:hadoop-common 2.5.1 fixed in 2.8.1, 3.0.0-alpha3 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2017-7669 | HIGH7.5 | org.apache.hadoop:hadoop-common 2.6.5 fixed in 2.8.1, 3.0.0-alpha3 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2017-7669 | HIGH7.5 | org.apache.hadoop:hadoop-common 2.7.7 fixed in 2.8.1, 3.0.0-alpha3 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2021-39239 | HIGH7.5 | org.apache.jena:jena-core 3.12.0 fixed in 4.2.0 | 4.3% Low-Moderate Risk | Directly Exposed |
| CVE-2017-7687 | HIGH7.5 | org.apache.mesos:mesos 0.21.1 fixed in 1.1.3, 1.2.2, 1.3.1 | 2.4% Low-Moderate Risk | Directly Exposed |
| CVE-2017-9790 | HIGH7.5 | org.apache.mesos:mesos 0.21.1 fixed in 1.1.3, 1.2.2, 1.3.1 | 2.4% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11793 | HIGH7.5 | org.apache.mesos:mesos 0.21.1 fixed in 1.4.3, 1.5.2, 1.6.2, 1.7.1 | 5.0% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11804 | HIGH7.5 | org.apache.spark:spark-core_2.10 1.6.2 No fix yet | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11804 | HIGH7.5 | org.apache.spark:spark-core_2.10 1.6.3 No fix yet | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-13949 | HIGH7.5 | org.apache.thrift:libthrift 0.13.0 fixed in 0.14.0 | 6.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-40150 | HIGH7.5 | org.codehaus.jettison:jettison 1.4.0 fixed in 1.5.2 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2022-45685 | HIGH7.5 | org.codehaus.jettison:jettison 1.4.0 fixed in 1.5.2 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-45693 | HIGH7.5 | org.codehaus.jettison:jettison 1.4.0 fixed in 1.5.2 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2023-1436 | HIGH7.5 | org.codehaus.jettison:jettison 1.4.0 fixed in 1.5.4 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2022-40149 | HIGH7.5 | org.codehaus.jettison:jettison 1.4.0 fixed in 1.5.1 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2017-7656 | HIGH7.5 | org.eclipse.jetty:jetty-server 8.1.19.v20160209 fixed in 9.3.24.v20180605, 9.4.11.v20180605 | 6.2% Low-Moderate Risk | Directly Exposed |
| CVE-2017-9735 | HIGH7.5 | org.eclipse.jetty:jetty-server 8.1.19.v20160209 fixed in 9.4.6.v20170531, 9.3.20.v20170531, 9.2.22.v20170606 | 5.8% Low-Moderate Risk | Directly Exposed |
| CVE-2017-7656 | HIGH7.5 | org.eclipse.jetty:jetty-server 8.2.0.v20160908 fixed in 9.3.24.v20180605, 9.4.11.v20180605 | 6.2% Low-Moderate Risk | Directly Exposed |
| CVE-2017-9735 | HIGH7.5 | org.eclipse.jetty:jetty-server 8.2.0.v20160908 fixed in 9.4.6.v20170531, 9.3.20.v20170531, 9.2.22.v20170606 | 5.8% Low-Moderate Risk | Directly Exposed |
| CVE-2023-31418 | HIGH7.5 | org.elasticsearch:elasticsearch 2.4.3 fixed in 7.17.13, 8.9.0 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2015-2156 | HIGH7.5 | org.jboss.netty:netty 3.2.2.Final fixed in 3.9.8.Final, 3.10.3.Final | 5.4% Low-Moderate Risk | Directly Exposed |
| CVE-2019-16869 | HIGH7.5 | org.jboss.netty:netty 3.2.2.Final No fix yet | 8.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37136 | HIGH7.5 | org.jboss.netty:netty 3.2.2.Final fixed in 4.0.0 | 5.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37137 | HIGH7.5 | org.jboss.netty:netty 3.2.2.Final fixed in 4.0.0 | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2022-45688 | HIGH7.5 | org.json:json 20160212 fixed in 20230227 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-5072 | HIGH7.5 | org.json:json 20160212 fixed in 20231013 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-45688 | HIGH7.5 | org.json:json 20160810 fixed in 20230227 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-5072 | HIGH7.5 | org.json:json 20160810 fixed in 20231013 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-45688 | HIGH7.5 | org.json:json 20180813 fixed in 20230227 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-5072 | HIGH7.5 | org.json:json 20180813 fixed in 20231013 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37714 | HIGH7.5 | org.jsoup:jsoup 1.10.3 fixed in 1.14.2 | 6.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37714 | HIGH7.5 | org.jsoup:jsoup 1.11.3 fixed in 1.14.2 | 6.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37714 | HIGH7.5 | org.jsoup:jsoup 1.13.1 fixed in 1.14.2 | 6.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37714 | HIGH7.5 | org.jsoup:jsoup 1.8.1 fixed in 1.14.2 | 6.9% Low-Moderate Risk | Directly Exposed |
| CVE-2023-34455 | HIGH7.5 | org.xerial.snappy:snappy-java 1.0.4.1 fixed in 1.1.10.1 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2023-43642 | HIGH7.5 | org.xerial.snappy:snappy-java 1.0.4.1 fixed in 1.1.10.4 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2023-34453 | HIGH7.5 | org.xerial.snappy:snappy-java 1.0.4.1 fixed in 1.1.10.1 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2023-34454 | HIGH7.5 | org.xerial.snappy:snappy-java 1.0.4.1 fixed in 1.1.10.1 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-25857 | HIGH7.5 | org.yaml:snakeyaml 1.15 fixed in 1.31 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-25857 | HIGH7.5 | org.yaml:snakeyaml 1.24 fixed in 1.31 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-25857 | HIGH7.5 | org.yaml:snakeyaml 1.9 fixed in 1.31 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-23437 | HIGH7.5 | Pillow 8.1.0 fixed in 8.3.2 | 3.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-25290 | HIGH7.5 | Pillow 8.1.0 fixed in 8.1.1 | 2.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-25291 | HIGH7.5 | Pillow 8.1.0 fixed in 8.2.0 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-25293 | HIGH7.5 | Pillow 8.1.0 fixed in 8.1.1 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2021-27921 | HIGH7.5 | Pillow 8.1.0 fixed in 8.1.2 | 3.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-27922 | HIGH7.5 | Pillow 8.1.0 fixed in 8.1.2 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-27923 | HIGH7.5 | Pillow 8.1.0 fixed in 8.1.2 | 3.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-28676 | HIGH7.5 | Pillow 8.1.0 fixed in 8.2.0 | 2.5% Low-Moderate Risk | Directly Exposed |
| CVE-2021-28677 | HIGH7.5 | Pillow 8.1.0 fixed in 8.2.0 | 2.3% Low-Moderate Risk | Directly Exposed |
| CVE-2022-45198 | HIGH7.5 | Pillow 8.1.0 fixed in 9.2.0 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-44271 | HIGH7.5 | Pillow 8.1.0 fixed in 10.0.0 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2023-50782 | HIGH7.5 | cryptography 3.2.1 fixed in 42.0.0 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2024-3651 | HIGH7.5 | idna 2.10 fixed in 3.7 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-1941 | HIGH7.5 | protobuf 3.14.0 fixed in 3.18.3, 3.19.5, 3.20.2, 4.21.6 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2024-52804 | HIGH7.5 | tornado 6.1 fixed in 6.4.2 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-33503 | HIGH7.5 | urllib3 1.25.11 fixed in 1.26.5 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2026-21441 | HIGH7.5 | urllib3 1.25.11 fixed in 2.6.3 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2022-40898 | HIGH7.5 | wheel 0.35.1 fixed in 0.38.1 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2022-34480 | HIGH7.48 | libnss3 2:3.49.1-1ubuntu1.5 fixed in 2:3.49.1-1ubuntu1.8 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2023-0767 | HIGH7.48 | libnss3 2:3.49.1-1ubuntu1.5 fixed in 2:3.49.1-1ubuntu1.9 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2023-33265 | HIGH7.48 | com.hazelcast:hazelcast 3.10 fixed in 5.2.4, 5.1.7, 5.0.5 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-67030 | HIGH7.48 | org.codehaus.plexus:plexus-utils 3.2.1 fixed in 4.0.3, 3.6.1 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2025-27516 | HIGH7.48 | Jinja2 2.11.3 fixed in 3.1.6 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2023-0361 | HIGH7.4 | libgnutls30 3.6.13-2ubuntu1.3 fixed in 3.6.13-2ubuntu1.8 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2023-21930 | HIGH7.4 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u372-ga~us1-0ubuntu1~20.04 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2024-21147 | HIGH7.4 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u422-b05-1~20.04 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-20218 | HIGH7.4 | io.fabric8:kubernetes-client 4.10.2 fixed in 4.7.2, 4.11.2, 4.13.2, 5.0.2 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2023-7104 | HIGH7.3 | libsqlite3-0 3.31.1-4ubuntu0.2 fixed in 3.31.1-4ubuntu0.6 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-34241 | HIGH7.1 | libcups2 2.3.1-9ubuntu1.1 fixed in 2.3.1-9ubuntu1.4 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2020-27216 | HIGH7 | org.eclipse.jetty:jetty-webapp 9.4.31.v20200723 fixed in 9.4.33.v20201020, 10.0.0.beta3, 11.0.0.beta3 | 4.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-27223 | MEDIUM6.89 | org.eclipse.jetty:jetty-server 9.4.31.v20200723 fixed in 9.4.37, 10.0.1, 11.0.1 | 78.0% Actively Exploited | Directly Exposed |
| CVE-2021-28169 | MEDIUM6.89 | org.eclipse.jetty:jetty-servlets 9.3.27.v20190418 fixed in 9.4.41, 10.0.3, 11.0.3 | 78.5% Actively Exploited | Directly Exposed |
| CVE-2026-54512 | MEDIUM6.88 | com.fasterxml.jackson.core:jackson-databind 2.10.3 fixed in 2.18.8, 3.1.4, 2.21.4 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-54513 | MEDIUM6.88 | com.fasterxml.jackson.core:jackson-databind 2.10.3 fixed in 2.18.8, 2.21.4, 3.1.4 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2020-35214 | MEDIUM6.88 | io.atomix:atomix 3.0.0-rc4 No fix yet | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2026-44249 | MEDIUM6.88 | io.netty:netty-handler 4.1.0.CR1 fixed in 4.2.15.Final, 4.1.135.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-44249 | MEDIUM6.88 | io.netty:netty-handler 4.1.27.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-44249 | MEDIUM6.88 | io.netty:netty-handler 4.1.51.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-44249 | MEDIUM6.88 | io.netty:netty-handler 4.1.8.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-27830 | MEDIUM6.8 | com.mchange:c3p0 0.9.5.4 fixed in 0.12.0 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2021-35567 | MEDIUM6.8 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2022-4304 | MEDIUM6.79 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.17 | 16.2% High Exploitation Risk | Directly Exposed |
| CVE-2019-12384 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 45.2% High Exploitation Risk | Directly Exposed |
| CVE-2019-12814 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 11.0% High Exploitation Risk | Directly Exposed |
| CVE-2019-12384 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 45.2% High Exploitation Risk | Directly Exposed |
| CVE-2019-12814 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 11.0% High Exploitation Risk | Directly Exposed |
| CVE-2019-12384 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 45.2% High Exploitation Risk | Directly Exposed |
| CVE-2019-12814 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 11.0% High Exploitation Risk | Directly Exposed |
| CVE-2019-12384 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 45.2% High Exploitation Risk | Directly Exposed |
| CVE-2019-12814 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 11.0% High Exploitation Risk | Directly Exposed |
| CVE-2019-12384 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 45.2% High Exploitation Risk | Directly Exposed |
| CVE-2019-12814 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 11.0% High Exploitation Risk | Directly Exposed |
| CVE-2019-12384 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 45.2% High Exploitation Risk | Directly Exposed |
| CVE-2019-12814 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 11.0% High Exploitation Risk | Directly Exposed |
| CVE-2019-12384 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 45.2% High Exploitation Risk | Directly Exposed |
| CVE-2019-12814 | MEDIUM6.79 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 | 11.0% High Exploitation Risk | Directly Exposed |
| CVE-2016-5725 | MEDIUM6.79 | com.jcraft:jsch 0.1.53 fixed in 0.1.54 | 24.1% High Exploitation Risk | Directly Exposed |
| CVE-2021-21295 | MEDIUM6.79 | io.netty:netty 3.10.6.Final fixed in 4.0.0 | 18.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-21295 | MEDIUM6.79 | io.netty:netty 3.4.0.Final fixed in 4.0.0 | 18.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-21295 | MEDIUM6.79 | io.netty:netty 3.6.2.Final fixed in 4.0.0 | 18.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-21295 | MEDIUM6.79 | io.netty:netty 3.7.0.Final fixed in 4.0.0 | 18.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-21295 | MEDIUM6.79 | io.netty:netty 3.9.9.Final fixed in 4.0.0 | 18.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-21295 | MEDIUM6.79 | io.netty:netty-codec-http2 4.1.0.CR1 fixed in 4.1.60.Final | 18.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-21295 | MEDIUM6.79 | io.netty:netty-codec-http2 4.1.27.Final fixed in 4.1.60.Final | 18.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-21295 | MEDIUM6.79 | io.netty:netty-codec-http2 4.1.8.Final fixed in 4.1.60.Final | 18.9% High Exploitation Risk | Directly Exposed |
| CVE-2021-21295 | MEDIUM6.79 | org.jboss.netty:netty 3.2.2.Final fixed in 4.0.0 | 18.9% High Exploitation Risk | Directly Exposed |
| CVE-2024-35235 | MEDIUM6.7 | libcups2 2.3.1-9ubuntu1.1 fixed in 2.3.1-9ubuntu1.7 | 2.4% Low-Moderate Risk | Directly Exposed |
| CVE-2025-54920 | MEDIUM6.7 | org.apache.spark:spark-core_2.10 1.6.2 No fix yet | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2025-54920 | MEDIUM6.7 | org.apache.spark:spark-core_2.10 1.6.3 No fix yet | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2025-54920 | MEDIUM6.7 | org.apache.spark:spark-core_2.11 2.4.5 No fix yet | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2021-3999 | MEDIUM6.63 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2021-3999 | MEDIUM6.63 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2020-35512 | MEDIUM6.63 | libdbus-1-3 1.12.16-2ubuntu2.1 fixed in 1.12.16-2ubuntu2.2 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2022-31782 | MEDIUM6.63 | libfreetype6 2.10.1-2ubuntu0.1 fixed in 2.10.1-2ubuntu0.2 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2023-43787 | MEDIUM6.63 | libx11-6 2:1.6.9-2ubuntu1.1 fixed in 2:1.6.9-2ubuntu1.6 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2023-43787 | MEDIUM6.63 | libx11-data 2:1.6.9-2ubuntu1.1 fixed in 2:1.6.9-2ubuntu1.6 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2017-12612 | MEDIUM6.63 | org.apache.spark:spark-core_2.10 1.6.2 fixed in 2.1.2 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2017-12612 | MEDIUM6.63 | org.apache.spark:spark-core_2.10 1.6.3 fixed in 2.1.2 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2022-42011 | MEDIUM6.5 | libdbus-1-3 1.12.16-2ubuntu2.1 fixed in 1.12.16-2ubuntu2.3 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42012 | MEDIUM6.5 | libdbus-1-3 1.12.16-2ubuntu2.1 fixed in 1.12.16-2ubuntu2.3 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2022-25313 | MEDIUM6.5 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.4 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2021-4209 | MEDIUM6.5 | libgnutls30 3.6.13-2ubuntu1.3 fixed in 3.6.13-2ubuntu1.7 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37750 | MEDIUM6.5 | libgssapi-krb5-2 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.3 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-36054 | MEDIUM6.5 | libgssapi-krb5-2 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.4 | 2.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37750 | MEDIUM6.5 | libk5crypto3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.3 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-36054 | MEDIUM6.5 | libk5crypto3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.4 | 2.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37750 | MEDIUM6.5 | libkrb5-3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.3 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-36054 | MEDIUM6.5 | libkrb5-3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.4 | 2.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37750 | MEDIUM6.5 | libkrb5support0 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.3 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-36054 | MEDIUM6.5 | libkrb5support0 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.4 | 2.1% Low-Moderate Risk | Directly Exposed |
| CVE-2022-31159 | MEDIUM6.5 | com.amazonaws:aws-java-sdk-s3 1.11.736 fixed in 1.12.261 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-12668 | MEDIUM6.5 | com.hubspot.jinjava:jinjava 2.4.0 fixed in 2.5.4 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2020-12668 | MEDIUM6.5 | com.hubspot.jinjava:jinjava 2.4.12 fixed in 2.5.4 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37533 | MEDIUM6.5 | commons-net:commons-net 2.2 fixed in 3.9.0 | 1.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37533 | MEDIUM6.5 | commons-net:commons-net 3.1 fixed in 3.9.0 | 1.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-37533 | MEDIUM6.5 | commons-net:commons-net 3.3 fixed in 3.9.0 | 1.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-43797 | MEDIUM6.5 | io.netty:netty 3.10.6.Final fixed in 4.0.0 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-43797 | MEDIUM6.5 | io.netty:netty 3.4.0.Final fixed in 4.0.0 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-43797 | MEDIUM6.5 | io.netty:netty 3.6.2.Final fixed in 4.0.0 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-43797 | MEDIUM6.5 | io.netty:netty 3.7.0.Final fixed in 4.0.0 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-43797 | MEDIUM6.5 | io.netty:netty 3.9.9.Final fixed in 4.0.0 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-43797 | MEDIUM6.5 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.1.71.Final | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-43797 | MEDIUM6.5 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.1.71.Final | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-43797 | MEDIUM6.5 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.1.71.Final | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2023-34462 | MEDIUM6.5 | io.netty:netty-handler 4.1.0.CR1 fixed in 4.1.94.Final | 2.5% Low-Moderate Risk | Directly Exposed |
| CVE-2023-34462 | MEDIUM6.5 | io.netty:netty-handler 4.1.27.Final fixed in 4.1.94.Final | 2.5% Low-Moderate Risk | Directly Exposed |
| CVE-2023-34462 | MEDIUM6.5 | io.netty:netty-handler 4.1.51.Final fixed in 4.1.94.Final | 2.5% Low-Moderate Risk | Directly Exposed |
| CVE-2023-34462 | MEDIUM6.5 | io.netty:netty-handler 4.1.8.Final fixed in 4.1.94.Final | 2.5% Low-Moderate Risk | Directly Exposed |
| CVE-2014-0229 | MEDIUM6.5 | org.apache.hadoop:hadoop-common 2.3.0 fixed in 0.23.11, 2.4.1 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2023-46749 | MEDIUM6.5 | org.apache.shiro:shiro-core 1.7.0 fixed in 1.13.0, 2.0.0-alpha4 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2024-29857 | MEDIUM6.5 | org.bouncycastle:bcprov-jdk15on 1.60 fixed in 1.78 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2024-8184 | MEDIUM6.5 | org.eclipse.jetty:jetty-server 9.3.27.v20190418 fixed in 12.0.9, 10.0.24, 11.0.24, 9.4.56 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2024-8184 | MEDIUM6.5 | org.eclipse.jetty:jetty-server 9.4.31.v20200723 fixed in 12.0.9, 10.0.24, 11.0.24, 9.4.56 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2020-7019 | MEDIUM6.5 | org.elasticsearch:elasticsearch 2.4.3 fixed in 7.9.0, 6.8.12 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-22144 | MEDIUM6.5 | org.elasticsearch:elasticsearch 2.4.3 fixed in 6.8.17, 7.13.3 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-43797 | MEDIUM6.5 | org.jboss.netty:netty 3.2.2.Final fixed in 4.0.0 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2022-38749 | MEDIUM6.5 | org.yaml:snakeyaml 1.15 fixed in 1.31 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2022-38751 | MEDIUM6.5 | org.yaml:snakeyaml 1.15 fixed in 1.31 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-38752 | MEDIUM6.5 | org.yaml:snakeyaml 1.15 fixed in 1.32 | 2.1% Low-Moderate Risk | Directly Exposed |
| CVE-2022-41854 | MEDIUM6.5 | org.yaml:snakeyaml 1.15 fixed in 1.32 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-38749 | MEDIUM6.5 | org.yaml:snakeyaml 1.24 fixed in 1.31 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2022-38751 | MEDIUM6.5 | org.yaml:snakeyaml 1.24 fixed in 1.31 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-38752 | MEDIUM6.5 | org.yaml:snakeyaml 1.24 fixed in 1.32 | 2.1% Low-Moderate Risk | Directly Exposed |
| CVE-2022-41854 | MEDIUM6.5 | org.yaml:snakeyaml 1.24 fixed in 1.32 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-38749 | MEDIUM6.5 | org.yaml:snakeyaml 1.9 fixed in 1.31 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2022-38751 | MEDIUM6.5 | org.yaml:snakeyaml 1.9 fixed in 1.31 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-38752 | MEDIUM6.5 | org.yaml:snakeyaml 1.9 fixed in 1.32 | 2.1% Low-Moderate Risk | Directly Exposed |
| CVE-2022-41854 | MEDIUM6.5 | org.yaml:snakeyaml 1.9 fixed in 1.32 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2021-25292 | MEDIUM6.5 | Pillow 8.1.0 fixed in 8.1.1 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2022-22815 | MEDIUM6.5 | Pillow 8.1.0 fixed in 9.0.0 | 2.6% Low-Moderate Risk | Directly Exposed |
| CVE-2022-22816 | MEDIUM6.5 | Pillow 8.1.0 fixed in 9.0.0 | 2.0% Low-Moderate Risk | Directly Exposed |
| CVE-2023-23931 | MEDIUM6.5 | cryptography 3.2.1 fixed in 39.0.1 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2024-37891 | MEDIUM6.5 | urllib3 1.25.11 fixed in 1.26.19, 2.2.2 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2022-23491 | MEDIUM6.38 | ca-certificates 20210119~20.04.1 fixed in 20211016ubuntu0.20.04.1 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2024-37370 | MEDIUM6.38 | libgssapi-krb5-2 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.6 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2024-37370 | MEDIUM6.38 | libk5crypto3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.6 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2024-37370 | MEDIUM6.38 | libkrb5-3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.6 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2024-37370 | MEDIUM6.38 | libkrb5support0 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.6 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2020-35525 | MEDIUM6.38 | libsqlite3-0 3.31.1-4ubuntu0.2 fixed in 3.31.1-4ubuntu0.4 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.1.3 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.10.1 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.10.3 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.4.0 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.4.4 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.6.7 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.7.0 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.7.4 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.7.9 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.8.1 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.8.2 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.8.8 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.9.10 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.9.8 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-52999 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-core 2.9.9 fixed in 2.15.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-50193 | MEDIUM6.38 | com.fasterxml.jackson.core:jackson-databind 2.10.3 fixed in 2.14.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2022-3509 | MEDIUM6.38 | com.google.protobuf:protobuf-java 3.5.1 fixed in 3.16.3, 3.19.6, 3.20.3, 3.21.7 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2022-3510 | MEDIUM6.38 | com.google.protobuf:protobuf-java 3.5.1 fixed in 3.16.3, 3.19.6, 3.20.3, 3.21.7 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2023-52428 | MEDIUM6.38 | com.nimbusds:nimbus-jose-jwt 4.41.2 fixed in 9.37.2 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2021-0341 | MEDIUM6.38 | com.squareup.okhttp3:okhttp 3.12.12 fixed in 4.9.2 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2021-0341 | MEDIUM6.38 | com.squareup.okhttp3:okhttp 3.13.1 fixed in 4.9.2 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2025-67721 | MEDIUM6.38 | io.airlift:aircompressor 0.10 fixed in 2.0.3 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2020-35209 | MEDIUM6.38 | io.atomix:atomix 3.0.0-rc4 No fix yet | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2026-42583 | MEDIUM6.38 | io.netty:netty-codec 4.1.27.Final fixed in 4.1.133.Final | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2025-58057 | MEDIUM6.38 | io.netty:netty-codec 4.1.27.Final fixed in 4.1.125.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-42583 | MEDIUM6.38 | io.netty:netty-codec 4.1.51.Final fixed in 4.1.133.Final | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2025-58057 | MEDIUM6.38 | io.netty:netty-codec 4.1.51.Final fixed in 4.1.125.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-42583 | MEDIUM6.38 | io.netty:netty-codec 4.1.8.Final fixed in 4.1.133.Final | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2025-58057 | MEDIUM6.38 | io.netty:netty-codec 4.1.8.Final fixed in 4.1.125.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-33870 | MEDIUM6.38 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.1.132.Final, 4.2.10.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-42587 | MEDIUM6.38 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.2.13.Final, 4.1.133.Final | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2026-42585 | MEDIUM6.38 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.2.13.Final, 4.1.133.Final | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2025-58056 | MEDIUM6.38 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.1.125.Final, 4.2.5.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-33870 | MEDIUM6.38 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.1.132.Final, 4.2.10.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-42587 | MEDIUM6.38 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.2.13.Final, 4.1.133.Final | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2026-42585 | MEDIUM6.38 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.2.13.Final, 4.1.133.Final | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2025-58056 | MEDIUM6.38 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.1.125.Final, 4.2.5.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-33870 | MEDIUM6.38 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.1.132.Final, 4.2.10.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-42587 | MEDIUM6.38 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.2.13.Final, 4.1.133.Final | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2026-42585 | MEDIUM6.38 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.2.13.Final, 4.1.133.Final | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2025-58056 | MEDIUM6.38 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.1.125.Final, 4.2.5.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-55163 | MEDIUM6.38 | io.netty:netty-codec-http2 4.1.0.CR1 fixed in 4.2.4.Final, 4.1.124.Final | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2026-42587 | MEDIUM6.38 | io.netty:netty-codec-http2 4.1.0.CR1 fixed in 4.2.13.Final, 4.1.133.Final | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2026-48043 | MEDIUM6.38 | io.netty:netty-codec-http2 4.1.0.CR1 fixed in 4.1.135.Final, 4.2.15.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-55163 | MEDIUM6.38 | io.netty:netty-codec-http2 4.1.27.Final fixed in 4.2.4.Final, 4.1.124.Final | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2026-42587 | MEDIUM6.38 | io.netty:netty-codec-http2 4.1.27.Final fixed in 4.2.13.Final, 4.1.133.Final | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2026-48043 | MEDIUM6.38 | io.netty:netty-codec-http2 4.1.27.Final fixed in 4.1.135.Final, 4.2.15.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-55163 | MEDIUM6.38 | io.netty:netty-codec-http2 4.1.8.Final fixed in 4.2.4.Final, 4.1.124.Final | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2026-42587 | MEDIUM6.38 | io.netty:netty-codec-http2 4.1.8.Final fixed in 4.2.13.Final, 4.1.133.Final | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2026-48043 | MEDIUM6.38 | io.netty:netty-codec-http2 4.1.8.Final fixed in 4.1.135.Final, 4.2.15.Final | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2026-45416 | MEDIUM6.38 | io.netty:netty-handler 4.1.0.CR1 fixed in 4.2.15.Final, 4.1.135.Final | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2026-50010 | MEDIUM6.38 | io.netty:netty-handler 4.1.0.CR1 fixed in 4.2.15.Final, 4.1.135.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-45416 | MEDIUM6.38 | io.netty:netty-handler 4.1.27.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2026-50010 | MEDIUM6.38 | io.netty:netty-handler 4.1.27.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-45416 | MEDIUM6.38 | io.netty:netty-handler 4.1.51.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2026-50010 | MEDIUM6.38 | io.netty:netty-handler 4.1.51.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-45416 | MEDIUM6.38 | io.netty:netty-handler 4.1.8.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2026-50010 | MEDIUM6.38 | io.netty:netty-handler 4.1.8.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-42578 | MEDIUM6.38 | io.netty:netty-handler-proxy 4.1.27.Final fixed in 4.1.133.Final, 4.2.13.Final | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2026-42578 | MEDIUM6.38 | io.netty:netty-handler-proxy 4.1.8.Final fixed in 4.1.133.Final, 4.2.13.Final | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2026-45205 | MEDIUM6.38 | org.apache.commons:commons-configuration2 2.2 fixed in 2.15.0 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2026-34480 | MEDIUM6.38 | org.apache.logging.log4j:log4j-core 2.6.1 fixed in 2.25.4 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2026-5588 | MEDIUM6.38 | org.bouncycastle:bcpkix-jdk15on 1.60 fixed in 1.84 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2024-9823 | MEDIUM6.38 | org.eclipse.jetty:jetty-servlets 9.3.27.v20190418 fixed in 9.4.54, 10.0.18, 11.0.18 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2024-23444 | MEDIUM6.38 | org.elasticsearch:elasticsearch 2.4.3 fixed in 8.13.0, 7.17.23 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2024-43709 | MEDIUM6.38 | org.elasticsearch:elasticsearch 2.4.3 fixed in 7.17.21, 8.13.3 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2024-52979 | MEDIUM6.38 | org.elasticsearch:elasticsearch 2.4.3 fixed in 7.17.25, 8.16.0 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2024-21634 | MEDIUM6.38 | software.amazon.ion:ion-java 1.0.2 fixed in 1.10.5 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2025-69534 | MEDIUM6.38 | Markdown 3.3.3 fixed in 3.8.1 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2022-23491 | MEDIUM6.38 | certifi 2020.12.5 fixed in 2022.12.07 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2023-49083 | MEDIUM6.38 | cryptography 3.2.1 fixed in 41.0.6 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2023-33953 | MEDIUM6.38 | grpcio 1.35.0 fixed in 1.53.2, 1.54.3, 1.55.2, 1.56.2 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2026-49851 | MEDIUM6.38 | mistune 0.8.4 fixed in 3.3.0 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2026-0994 | MEDIUM6.38 | protobuf 3.14.0 fixed in 6.33.5, 5.29.6 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-47287 | MEDIUM6.38 | tornado 6.1 fixed in 6.5 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2026-31958 | MEDIUM6.38 | tornado 6.1 fixed in 6.5.5 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2025-66418 | MEDIUM6.38 | urllib3 1.25.11 fixed in 2.6.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-66471 | MEDIUM6.38 | urllib3 1.25.11 fixed in 2.6.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2024-20918 | MEDIUM6.29 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u402-ga-2ubuntu1~20.04 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2024-20952 | MEDIUM6.29 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u402-ga-2ubuntu1~20.04 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2025-21587 | MEDIUM6.29 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u452-ga~us1-0ubuntu1~20.04 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2021-22573 | MEDIUM6.21 | com.google.oauth-client:google-oauth-client 1.23.0 fixed in 1.33.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2021-22573 | MEDIUM6.21 | com.google.oauth-client:google-oauth-client 1.30.5 fixed in 1.33.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-43869 | MEDIUM6.21 | org.apache.thrift:libthrift 0.13.0 fixed in 0.23.0 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2024-34062 | MEDIUM6.21 | tqdm 4.51.0 fixed in 4.66.3 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2024-13009 | MEDIUM6.12 | org.eclipse.jetty:jetty-server 9.4.31.v20200723 fixed in 9.4.57.v20241219 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2020-13529 | MEDIUM6.1 | libsystemd0 245.4-4ubuntu3.4 fixed in 245.4-4ubuntu3.10 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2020-13529 | MEDIUM6.1 | libudev1 245.4-4ubuntu3.4 fixed in 245.4-4ubuntu3.10 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2023-46750 | MEDIUM6.1 | org.apache.shiro:shiro-web 1.7.0 fixed in 1.13.0, 2.0.0-alpha-4 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2017-7678 | MEDIUM6.1 | org.apache.spark:spark-core_2.10 1.6.2 fixed in 2.2.0 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2017-7678 | MEDIUM6.1 | org.apache.spark:spark-core_2.10 1.6.3 fixed in 2.2.0 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2019-10241 | MEDIUM6.1 | org.eclipse.jetty:jetty-server 8.1.19.v20160209 fixed in 9.2.27.v20190403, 9.3.26.v20190403, 9.4.16.v20190411 | 9.6% Low-Moderate Risk | Directly Exposed |
| CVE-2019-10241 | MEDIUM6.1 | org.eclipse.jetty:jetty-server 8.2.0.v20160908 fixed in 9.2.27.v20190403, 9.3.26.v20190403, 9.4.16.v20190411 | 9.6% Low-Moderate Risk | Directly Exposed |
| CVE-2022-36033 | MEDIUM6.1 | org.jsoup:jsoup 1.10.3 fixed in 1.15.3 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-36033 | MEDIUM6.1 | org.jsoup:jsoup 1.11.3 fixed in 1.15.3 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-36033 | MEDIUM6.1 | org.jsoup:jsoup 1.13.1 fixed in 1.15.3 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2015-6748 | MEDIUM6.1 | org.jsoup:jsoup 1.8.1 fixed in 1.8.3 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-36033 | MEDIUM6.1 | org.jsoup:jsoup 1.8.1 fixed in 1.15.3 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-32681 | MEDIUM6.1 | requests 2.24.0 fixed in 2.31.0 | 3.0% Low-Moderate Risk | Directly Exposed |
| CVE-2023-28370 | MEDIUM6.1 | tornado 6.1 fixed in 6.3.2 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-35559 | MEDIUM6.09 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 14.8% High Exploitation Risk | Directly Exposed |
| CVE-2023-2976 | MEDIUM6.03 | com.google.guava:guava 11.0 fixed in 32.0.0-android | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2023-2976 | MEDIUM6.03 | com.google.guava:guava 11.0.2 fixed in 32.0.0-android | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2023-2976 | MEDIUM6.03 | com.google.guava:guava 13.0.1 fixed in 32.0.0-android | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2023-2976 | MEDIUM6.03 | com.google.guava:guava 14.0.1 fixed in 32.0.0-android | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2023-2976 | MEDIUM6.03 | com.google.guava:guava 15.0 fixed in 32.0.0-android | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2023-2976 | MEDIUM6.03 | com.google.guava:guava 18.0 fixed in 32.0.0-android | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2023-2976 | MEDIUM6.03 | com.google.guava:guava 19.0 fixed in 32.0.0-android | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2023-2976 | MEDIUM6.03 | com.google.guava:guava 20.0 fixed in 32.0.0-android | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2023-2976 | MEDIUM6.03 | com.google.guava:guava 22.0 fixed in 32.0.0-android | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2023-2976 | MEDIUM6.03 | com.google.guava:guava 24.1.1-jre fixed in 32.0.0-android | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2023-2976 | MEDIUM6.03 | com.google.guava:guava 25.0-jre fixed in 32.0.0-android | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2025-4802 | MEDIUM5.95 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.18 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-4802 | MEDIUM5.95 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.18 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2023-4504 | MEDIUM5.95 | libcups2 2.3.1-9ubuntu1.1 fixed in 2.3.1-9ubuntu1.6 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2016-10228 | MEDIUM5.9 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 4.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-25013 | MEDIUM5.9 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2023-4806 | MEDIUM5.9 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.14 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2023-4813 | MEDIUM5.9 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.14 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2016-10228 | MEDIUM5.9 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 4.0% Low-Moderate Risk | Directly Exposed |
| CVE-2019-25013 | MEDIUM5.9 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2023-4806 | MEDIUM5.9 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.14 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2023-4813 | MEDIUM5.9 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.14 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2024-50602 | MEDIUM5.9 | libexpat1 2.2.9-1build1 fixed in 2.2.9-1ubuntu0.8 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2021-40528 | MEDIUM5.9 | libgcrypt20 1.8.5-5ubuntu1 fixed in 1.8.5-5ubuntu1.1 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2023-5981 | MEDIUM5.9 | libgnutls30 3.6.13-2ubuntu1.3 fixed in 3.6.13-2ubuntu1.9 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2024-26461 | MEDIUM5.9 | libgssapi-krb5-2 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2024-26461 | MEDIUM5.9 | libk5crypto3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2024-26461 | MEDIUM5.9 | libkrb5-3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2024-26461 | MEDIUM5.9 | libkrb5support0 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-23841 | MEDIUM5.9 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.2 | 7.5% Low-Moderate Risk | Directly Exposed |
| CVE-2024-5535 | MEDIUM5.9 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.23 | 5.6% Low-Moderate Risk | Directly Exposed |
| CVE-2021-35550 | MEDIUM5.9 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 6.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21541 | MEDIUM5.9 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 2.1% Low-Moderate Risk | Directly Exposed |
| CVE-2023-21954 | MEDIUM5.9 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u372-ga~us1-0ubuntu1~20.04 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2023-21967 | MEDIUM5.9 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u372-ga~us1-0ubuntu1~20.04 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2024-20926 | MEDIUM5.9 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u402-ga-2ubuntu1~20.04 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2018-10237 | MEDIUM5.9 | com.google.guava:guava 11.0 fixed in 24.1.1-android | 5.1% Low-Moderate Risk | Directly Exposed |
| CVE-2018-10237 | MEDIUM5.9 | com.google.guava:guava 11.0.2 fixed in 24.1.1-android | 5.1% Low-Moderate Risk | Directly Exposed |
| CVE-2018-10237 | MEDIUM5.9 | com.google.guava:guava 13.0.1 fixed in 24.1.1-android | 5.1% Low-Moderate Risk | Directly Exposed |
| CVE-2018-10237 | MEDIUM5.9 | com.google.guava:guava 14.0.1 fixed in 24.1.1-android | 5.1% Low-Moderate Risk | Directly Exposed |
| CVE-2018-10237 | MEDIUM5.9 | com.google.guava:guava 15.0 fixed in 24.1.1-android | 5.1% Low-Moderate Risk | Directly Exposed |
| CVE-2018-10237 | MEDIUM5.9 | com.google.guava:guava 18.0 fixed in 24.1.1-android | 5.1% Low-Moderate Risk | Directly Exposed |
| CVE-2018-10237 | MEDIUM5.9 | com.google.guava:guava 19.0 fixed in 24.1.1-android | 5.1% Low-Moderate Risk | Directly Exposed |
| CVE-2018-10237 | MEDIUM5.9 | com.google.guava:guava 20.0 fixed in 24.1.1-android | 5.1% Low-Moderate Risk | Directly Exposed |
| CVE-2018-10237 | MEDIUM5.9 | com.google.guava:guava 22.0 fixed in 24.1.1-android | 5.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21409 | MEDIUM5.9 | io.netty:netty 3.10.6.Final fixed in 4.0.0 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21409 | MEDIUM5.9 | io.netty:netty 3.4.0.Final fixed in 4.0.0 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21409 | MEDIUM5.9 | io.netty:netty 3.6.2.Final fixed in 4.0.0 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21409 | MEDIUM5.9 | io.netty:netty 3.7.0.Final fixed in 4.0.0 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21409 | MEDIUM5.9 | io.netty:netty 3.9.9.Final fixed in 4.0.0 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21409 | MEDIUM5.9 | io.netty:netty-codec-http2 4.1.0.CR1 fixed in 4.1.61.Final | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21409 | MEDIUM5.9 | io.netty:netty-codec-http2 4.1.27.Final fixed in 4.1.61.Final | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21409 | MEDIUM5.9 | io.netty:netty-codec-http2 4.1.8.Final fixed in 4.1.61.Final | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-27568 | MEDIUM5.9 | net.minidev:json-smart 2.3 fixed in 1.3.2, 2.4.1, 2.3.1 | 2.9% Low-Moderate Risk | Directly Exposed |
| CVE-2020-13955 | MEDIUM5.9 | org.apache.calcite:calcite-core 1.2.0-incubating fixed in 1.26.0 | 2.1% Low-Moderate Risk | Directly Exposed |
| CVE-2018-8023 | MEDIUM5.9 | org.apache.mesos:mesos 0.21.1 fixed in 1.4.2, 1.5.2, 1.6.1 | 3.1% Low-Moderate Risk | Directly Exposed |
| CVE-2020-15522 | MEDIUM5.9 | org.bouncycastle:bcprov-jdk15on 1.60 fixed in 1.66 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2019-7614 | MEDIUM5.9 | org.elasticsearch:elasticsearch 2.4.3 fixed in 6.8.2, 7.2.1 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21409 | MEDIUM5.9 | org.jboss.netty:netty 3.2.2.Final fixed in 4.0.0 | 4.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-40897 | MEDIUM5.9 | setuptools 50.3.1.post20201107 fixed in 65.5.1 | 2.6% Low-Moderate Risk | Directly Exposed |
| CVE-2022-26691 | MEDIUM5.7 | libcups2 2.3.1-9ubuntu1.1 fixed in 2.3.1-9ubuntu1.2 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2024-4741 | MEDIUM5.6 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.23 | 2.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-42010 | MEDIUM5.52 | libdbus-1-3 1.12.16-2ubuntu2.1 fixed in 1.12.16-2ubuntu2.3 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2025-24528 | MEDIUM5.52 | libgssapi-krb5-2 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-24528 | MEDIUM5.52 | libk5crypto3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-24528 | MEDIUM5.52 | libkrb5-3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-24528 | MEDIUM5.52 | libkrb5support0 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2023-4421 | MEDIUM5.52 | libnss3 2:3.49.1-1ubuntu1.5 fixed in 2:3.98-0ubuntu0.20.04.1 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2023-5388 | MEDIUM5.52 | libnss3 2:3.49.1-1ubuntu1.5 fixed in 2:3.98-0ubuntu0.20.04.1 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2022-22747 | MEDIUM5.52 | libnss3 2:3.49.1-1ubuntu1.5 fixed in 2:3.49.1-1ubuntu1.8 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2023-45860 | MEDIUM5.52 | com.hazelcast:hazelcast 3.10 fixed in 5.3.5, 5.2.5 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2020-35210 | MEDIUM5.52 | io.atomix:atomix 3.0.0-rc4 No fix yet | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2020-35215 | MEDIUM5.52 | io.atomix:atomix 3.0.0-rc4 No fix yet | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2025-67735 | MEDIUM5.52 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.2.8.Final, 4.1.129.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-41417 | MEDIUM5.52 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.1.133.Final, 4.2.13.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-42580 | MEDIUM5.52 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.2.13.Final, 4.1.133.Final | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2025-67735 | MEDIUM5.52 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.2.8.Final, 4.1.129.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-41417 | MEDIUM5.52 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.1.133.Final, 4.2.13.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-42580 | MEDIUM5.52 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.2.13.Final, 4.1.133.Final | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2025-67735 | MEDIUM5.52 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.2.8.Final, 4.1.129.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-41417 | MEDIUM5.52 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.1.133.Final, 4.2.13.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-42580 | MEDIUM5.52 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.2.13.Final, 4.1.133.Final | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2025-48977 | MEDIUM5.52 | org.apache.ignite:ignite-core 2.7.6 fixed in 2.18.0 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2026-43827 | MEDIUM5.52 | org.apache.shiro:shiro-core 1.7.0 fixed in 2.2.0, 3.0.0-alpha-2 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2026-43828 | MEDIUM5.52 | org.apache.shiro:shiro-web 1.7.0 fixed in 2.2.0, 3.0.0-alpha-2 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-11143 | MEDIUM5.52 | org.eclipse.jetty:jetty-http 9.4.31.v20200723 fixed in 12.0.31, 12.1.5 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2023-49921 | MEDIUM5.52 | org.elasticsearch:elasticsearch 2.4.3 fixed in 7.17.16, 8.11.2 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2026-26007 | MEDIUM5.52 | cryptography 3.2.1 fixed in 46.0.5 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2021-29425 | MEDIUM5.52 | commons-io:commons-io 1.3.2 fixed in 2.7 | 10.6% High Exploitation Risk | Directly Exposed |
| CVE-2021-29425 | MEDIUM5.52 | commons-io:commons-io 2.6 fixed in 2.7 | 10.6% High Exploitation Risk | Directly Exposed |
| CVE-2023-32324 | MEDIUM5.5 | libcups2 2.3.1-9ubuntu1.1 fixed in 2.3.1-9ubuntu1.3 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-10001 | MEDIUM5.5 | libcups2 2.3.1-9ubuntu1.1 fixed in 2.3.1-9ubuntu1.2 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2021-46822 | MEDIUM5.5 | libjpeg-turbo8 2.0.3-0ubuntu1.20.04.1 fixed in 2.0.3-0ubuntu1.20.04.3 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2024-0727 | MEDIUM5.5 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.21 | 3.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-33910 | MEDIUM5.5 | libsystemd0 245.4-4ubuntu3.4 fixed in 245.4-4ubuntu3.10 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2021-3997 | MEDIUM5.5 | libsystemd0 245.4-4ubuntu3.4 fixed in 245.4-4ubuntu3.15 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2021-33910 | MEDIUM5.5 | libudev1 245.4-4ubuntu3.4 fixed in 245.4-4ubuntu3.10 | 8.6% Low-Moderate Risk | Directly Exposed |
| CVE-2021-3997 | MEDIUM5.5 | libudev1 245.4-4ubuntu3.4 fixed in 245.4-4ubuntu3.15 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2021-22569 | MEDIUM5.5 | com.google.protobuf:protobuf-java 2.4.1 fixed in 3.16.1, 3.18.2, 3.19.2 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-22569 | MEDIUM5.5 | com.google.protobuf:protobuf-java 2.5.0 fixed in 3.16.1, 3.18.2, 3.19.2 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-22569 | MEDIUM5.5 | com.google.protobuf:protobuf-java 3.0.0-beta-1 fixed in 3.16.1, 3.18.2, 3.19.2 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-22569 | MEDIUM5.5 | com.google.protobuf:protobuf-java 3.5.1 fixed in 3.16.1, 3.18.2, 3.19.2 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21290 | MEDIUM5.5 | io.netty:netty 3.10.6.Final fixed in 4.0.0 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21290 | MEDIUM5.5 | io.netty:netty 3.4.0.Final fixed in 4.0.0 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21290 | MEDIUM5.5 | io.netty:netty 3.6.2.Final fixed in 4.0.0 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21290 | MEDIUM5.5 | io.netty:netty 3.7.0.Final fixed in 4.0.0 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21290 | MEDIUM5.5 | io.netty:netty 3.9.9.Final fixed in 4.0.0 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21290 | MEDIUM5.5 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.1.59.Final | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-24823 | MEDIUM5.5 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.1.77.Final | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21290 | MEDIUM5.5 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.1.59.Final | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-24823 | MEDIUM5.5 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.1.77.Final | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21290 | MEDIUM5.5 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.1.59.Final | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-24823 | MEDIUM5.5 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.1.77.Final | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11771 | MEDIUM5.5 | org.apache.commons:commons-compress 1.14 fixed in 1.18 | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2018-1324 | MEDIUM5.5 | org.apache.commons:commons-compress 1.14 fixed in 1.16 | 3.7% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11771 | MEDIUM5.5 | org.apache.commons:commons-compress 1.8.1 fixed in 1.18 | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11771 | MEDIUM5.5 | org.apache.commons:commons-compress 1.9 fixed in 1.18 | 5.3% Low-Moderate Risk | Directly Exposed |
| CVE-2021-27807 | MEDIUM5.5 | org.apache.pdfbox:pdfbox 2.0.16 fixed in 2.0.23 | 3.0% Low-Moderate Risk | Directly Exposed |
| CVE-2021-27906 | MEDIUM5.5 | org.apache.pdfbox:pdfbox 2.0.16 fixed in 2.0.23 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2021-31811 | MEDIUM5.5 | org.apache.pdfbox:pdfbox 2.0.16 fixed in 2.0.24 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2021-31812 | MEDIUM5.5 | org.apache.pdfbox:pdfbox 2.0.16 fixed in 2.0.24 | 3.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-21290 | MEDIUM5.5 | org.jboss.netty:netty 3.2.2.Final fixed in 4.0.0 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-38750 | MEDIUM5.5 | org.yaml:snakeyaml 1.15 fixed in 1.31 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2022-38750 | MEDIUM5.5 | org.yaml:snakeyaml 1.24 fixed in 1.31 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2022-38750 | MEDIUM5.5 | org.yaml:snakeyaml 1.9 fixed in 1.31 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2024-0727 | MEDIUM5.5 | cryptography 3.2.1 fixed in 42.0.2 | 3.2% Low-Moderate Risk | Directly Exposed |
| CVE-2018-11770 | MEDIUM5.46 | org.apache.spark:spark-core_2.10 1.6.2 No fix yet | 65.8% Actively Exploited | Directly Exposed |
| CVE-2018-11770 | MEDIUM5.46 | org.apache.spark:spark-core_2.10 1.6.3 No fix yet | 65.8% Actively Exploited | Directly Exposed |
| CVE-2022-31777 | MEDIUM5.4 | org.apache.spark:spark-core_2.10 1.6.2 fixed in 3.2.2 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-31777 | MEDIUM5.4 | org.apache.spark:spark-core_2.10 1.6.3 fixed in 3.2.2 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-31777 | MEDIUM5.4 | org.apache.spark:spark-core_2.11 2.4.5 fixed in 3.2.2 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2024-56326 | MEDIUM5.35 | Jinja2 2.11.3 fixed in 3.1.5 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2024-33600 | MEDIUM5.3 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.16 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2024-33600 | MEDIUM5.3 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.16 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2024-12243 | MEDIUM5.3 | libgnutls30 3.6.13-2ubuntu1.3 fixed in 3.6.13-2ubuntu1.12 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-14155 | MEDIUM5.3 | libpcre3 2:8.39-12build1 fixed in 2:8.39-12ubuntu0.1 | 4.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-2097 | MEDIUM5.3 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.16 | 4.4% Low-Moderate Risk | Directly Exposed |
| CVE-2023-0465 | MEDIUM5.3 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.18 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2023-0466 | MEDIUM5.3 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.18 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2023-3446 | MEDIUM5.3 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.20 | 5.5% Low-Moderate Risk | Directly Exposed |
| CVE-2023-3817 | MEDIUM5.3 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.20 | 2.6% Low-Moderate Risk | Directly Exposed |
| CVE-2023-5678 | MEDIUM5.3 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.21 | 4.5% Low-Moderate Risk | Directly Exposed |
| CVE-2024-12133 | MEDIUM5.3 | libtasn1-6 4.16.0-2 fixed in 4.16.0-2ubuntu0.1 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-35556 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 7.8% Low-Moderate Risk | Directly Exposed |
| CVE-2021-35561 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 6.5% Low-Moderate Risk | Directly Exposed |
| CVE-2021-35564 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 5.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-35565 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 6.9% Low-Moderate Risk | Directly Exposed |
| CVE-2021-35578 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 6.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-35586 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 6.3% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21496 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21540 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 3.0% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21626 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u352-ga-1~20.04 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21628 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u352-ga-1~20.04 | 2.0% Low-Moderate Risk | Directly Exposed |
| CVE-2023-21830 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u362-ga-0ubuntu1~20.04.1 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2023-21939 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u372-ga~us1-0ubuntu1~20.04 | 2.5% Low-Moderate Risk | Directly Exposed |
| CVE-2023-22081 | MEDIUM5.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u392-ga-1~20.04 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2018-18893 | MEDIUM5.3 | com.hubspot.jinjava:jinjava 2.4.0 fixed in 2.4.6 | 1.8% Low-Moderate Risk | Directly Exposed |
| CVE-2024-29025 | MEDIUM5.3 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.1.108.Final | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2024-29025 | MEDIUM5.3 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.1.108.Final | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2024-29025 | MEDIUM5.3 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.1.108.Final | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2025-27553 | MEDIUM5.3 | org.apache.commons:commons-vfs2 2.2 fixed in 2.10.0 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2020-13956 | MEDIUM5.3 | org.apache.httpcomponents:httpclient 4.4.1 fixed in 4.5.13, 5.0.3 | 8.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-13956 | MEDIUM5.3 | org.apache.httpcomponents:httpclient 4.5 fixed in 4.5.13, 5.0.3 | 8.7% Low-Moderate Risk | Directly Exposed |
| CVE-2020-13956 | MEDIUM5.3 | org.apache.httpcomponents:httpclient 4.5.1 fixed in 4.5.13, 5.0.3 | 8.7% Low-Moderate Risk | Directly Exposed |
| CVE-2023-40167 | MEDIUM5.3 | org.eclipse.jetty:jetty-http 9.3.27.v20190418 fixed in 9.4.52, 10.0.16, 11.0.16, 12.0.1 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2023-40167 | MEDIUM5.3 | org.eclipse.jetty:jetty-http 9.4.31.v20200723 fixed in 9.4.52, 10.0.16, 11.0.16, 12.0.1 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2019-10247 | MEDIUM5.3 | org.eclipse.jetty:jetty-server 8.1.19.v20160209 fixed in 9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418 | 5.8% Low-Moderate Risk | Directly Exposed |
| CVE-2023-26048 | MEDIUM5.3 | org.eclipse.jetty:jetty-server 8.1.19.v20160209 fixed in 9.4.51.v20230217, 10.0.14, 11.0.14 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2023-26049 | MEDIUM5.3 | org.eclipse.jetty:jetty-server 8.1.19.v20160209 fixed in 9.4.51.v20230217, 10.0.14, 11.0.14, 12.0.0.beta0 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2019-10247 | MEDIUM5.3 | org.eclipse.jetty:jetty-server 8.2.0.v20160908 fixed in 9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418 | 5.8% Low-Moderate Risk | Directly Exposed |
| CVE-2023-26048 | MEDIUM5.3 | org.eclipse.jetty:jetty-server 8.2.0.v20160908 fixed in 9.4.51.v20230217, 10.0.14, 11.0.14 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2023-26049 | MEDIUM5.3 | org.eclipse.jetty:jetty-server 8.2.0.v20160908 fixed in 9.4.51.v20230217, 10.0.14, 11.0.14, 12.0.0.beta0 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2023-26048 | MEDIUM5.3 | org.eclipse.jetty:jetty-server 9.3.27.v20190418 fixed in 9.4.51.v20230217, 10.0.14, 11.0.14 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2023-26049 | MEDIUM5.3 | org.eclipse.jetty:jetty-server 9.3.27.v20190418 fixed in 9.4.51.v20230217, 10.0.14, 11.0.14, 12.0.0.beta0 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2023-26048 | MEDIUM5.3 | org.eclipse.jetty:jetty-server 9.4.31.v20200723 fixed in 9.4.51.v20230217, 10.0.14, 11.0.14 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2023-26049 | MEDIUM5.3 | org.eclipse.jetty:jetty-server 9.4.31.v20200723 fixed in 9.4.51.v20230217, 10.0.14, 11.0.14, 12.0.0.beta0 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2025-4949 | MEDIUM5.3 | org.eclipse.jgit:org.eclipse.jgit 4.5.4.201711221230-r fixed in 7.2.1.202505142326-r, 7.1.1.202505221757-r, 7.0.1.202505221510-r, 6.10.1.202505221210-r, 6.0.0.202111291000-r, 5.13.4.202507202350-r | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2021-22135 | MEDIUM5.3 | org.elasticsearch:elasticsearch 2.4.3 fixed in 7.11.2, 6.8.15 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-22137 | MEDIUM5.3 | org.elasticsearch:elasticsearch 2.4.3 fixed in 7.11.2, 6.8.15 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-33430 | MEDIUM5.3 | numpy 1.20.0 fixed in 1.21 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2021-34141 | MEDIUM5.3 | numpy 1.20.0 fixed in 1.22 | 1.6% Low-Moderate Risk | Directly Exposed |
| CVE-2022-1271 | MEDIUM5.28 | gzip 1.10-0ubuntu4 fixed in 1.10-0ubuntu4.1 | 4.3% Low-Moderate Risk | Post-Exploit |
| CVE-2021-39537 | MEDIUM5.28 | ncurses-bin 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 3.0% Low-Moderate Risk | Post-Exploit |
| CVE-2024-5569 | MEDIUM5.27 | zipp 3.4.0 fixed in 3.19.1 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2018-3824 | MEDIUM5.18 | org.elasticsearch:elasticsearch 2.4.3 fixed in 5.6.9, 6.2.4 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2024-22195 | MEDIUM5.18 | Jinja2 2.11.3 fixed in 3.1.3 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2026-23528 | MEDIUM5.18 | distributed 2021.2.0 fixed in 2026.1.0 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-44708 | MEDIUM5.18 | mistune 0.8.4 No fix yet | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-44896 | MEDIUM5.18 | mistune 0.8.4 fixed in 3.2.1 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-44897 | MEDIUM5.18 | mistune 0.8.4 fixed in 3.2.1 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2025-50181 | MEDIUM5.18 | urllib3 1.25.11 fixed in 2.5.0 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2022-4450 | MEDIUM5.17 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.17 | 20.4% High Exploitation Risk | Post-Exploit |
| CVE-2021-2388 | MEDIUM5.1 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 4.0% Low-Moderate Risk | Directly Exposed |
| CVE-2023-2650 | MEDIUM5.07 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.19 | 73.5% Actively Exploited | Post-Exploit |
| CVE-2025-3576 | MEDIUM5.02 | libgssapi-krb5-2 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.11 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2024-26458 | MEDIUM5.02 | libgssapi-krb5-2 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2025-3576 | MEDIUM5.02 | libk5crypto3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.11 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2024-26458 | MEDIUM5.02 | libk5crypto3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2025-3576 | MEDIUM5.02 | libkrb5-3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.11 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2024-26458 | MEDIUM5.02 | libkrb5-3 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2025-3576 | MEDIUM5.02 | libkrb5support0 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.11 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2024-26458 | MEDIUM5.02 | libkrb5support0 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2024-20919 | MEDIUM5.02 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u402-ga-2ubuntu1~20.04 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2024-20921 | MEDIUM5.02 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u402-ga-2ubuntu1~20.04 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2020-35216 | MEDIUM5.02 | io.atomix:atomix 3.0.0-rc4 No fix yet | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2024-30171 | MEDIUM5.02 | org.bouncycastle:bcprov-jdk15on 1.60 fixed in 1.78 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2024-28219 | MEDIUM5.02 | Pillow 8.1.0 fixed in 10.3.0 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2022-21282 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 2.9% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21283 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 3.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21293 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 8.3% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21294 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21296 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21299 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21305 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 2.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21340 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 7.7% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21341 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 3.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21349 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 3.3% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21360 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21365 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 3.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21426 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 3.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21434 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 2.5% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21476 | MEDIUM5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 4.0% Low-Moderate Risk | Directly Exposed |
| CVE-2014-0193 | MEDIUM5 | io.netty:netty 3.6.2.Final fixed in 3.6.9.Final, 3.7.1.Final, 3.8.2.Final, 3.9.1.Final, 4.0.19.Final | 4.3% Low-Moderate Risk | Directly Exposed |
| CVE-2014-0193 | MEDIUM5 | io.netty:netty 3.7.0.Final fixed in 3.6.9.Final, 3.7.1.Final, 3.8.2.Final, 3.9.1.Final, 4.0.19.Final | 4.3% Low-Moderate Risk | Directly Exposed |
| CVE-2025-53864 | MEDIUM4.93 | com.nimbusds:nimbus-jose-jwt 4.41.2 fixed in 10.0.2, 9.37.4 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2020-7021 | MEDIUM4.9 | org.elasticsearch:elasticsearch 2.4.3 fixed in 6.8.14, 7.10.0 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2023-31484 | MEDIUM4.86 | perl-base 5.30.0-9ubuntu0.2 fixed in 5.30.0-9ubuntu0.4 | 1.5% Low-Moderate Risk | Post-Exploit |
| CVE-2024-2511 | MEDIUM4.81 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.23 | 54.0% Actively Exploited | Directly Exposed |
| CVE-2020-29562 | MEDIUM4.8 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-29562 | MEDIUM4.8 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 1.5% Low-Moderate Risk | Directly Exposed |
| CVE-2020-27218 | MEDIUM4.8 | org.eclipse.jetty:jetty-server 9.4.31.v20200723 fixed in 9.4.35.v20201120 | 8.1% Low-Moderate Risk | Directly Exposed |
| CVE-2025-30698 | MEDIUM4.76 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u452-ga~us1-0ubuntu1~20.04 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2024-35195 | MEDIUM4.76 | requests 2.24.0 fixed in 2.32.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2019-18276 | MEDIUM4.68 | bash 5.0-6ubuntu1.1 fixed in 5.0-6ubuntu1.2 | 2.6% Low-Moderate Risk | Post-Exploit |
| CVE-2022-1304 | MEDIUM4.68 | e2fsprogs 1.45.5-2ubuntu1 fixed in 1.45.5-2ubuntu1.1 | 1.4% Low-Moderate Risk | Post-Exploit |
| CVE-2022-1304 | MEDIUM4.68 | logsave 1.45.5-2ubuntu1 fixed in 1.45.5-2ubuntu1.1 | 1.4% Low-Moderate Risk | Post-Exploit |
| CVE-2021-3468 | MEDIUM4.67 | libavahi-client3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.1 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2023-1981 | MEDIUM4.67 | libavahi-client3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.2 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2023-38469 | MEDIUM4.67 | libavahi-client3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2023-38470 | MEDIUM4.67 | libavahi-client3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2023-38471 | MEDIUM4.67 | libavahi-client3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2023-38472 | MEDIUM4.67 | libavahi-client3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2023-38473 | MEDIUM4.67 | libavahi-client3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2021-3468 | MEDIUM4.67 | libavahi-common-data 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.1 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2023-1981 | MEDIUM4.67 | libavahi-common-data 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.2 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2023-38469 | MEDIUM4.67 | libavahi-common-data 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2023-38470 | MEDIUM4.67 | libavahi-common-data 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2023-38471 | MEDIUM4.67 | libavahi-common-data 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2023-38472 | MEDIUM4.67 | libavahi-common-data 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2023-38473 | MEDIUM4.67 | libavahi-common-data 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2021-3468 | MEDIUM4.67 | libavahi-common3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.1 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2023-1981 | MEDIUM4.67 | libavahi-common3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.2 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2023-38469 | MEDIUM4.67 | libavahi-common3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2023-38470 | MEDIUM4.67 | libavahi-common3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2023-38471 | MEDIUM4.67 | libavahi-common3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2023-38472 | MEDIUM4.67 | libavahi-common3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2023-38473 | MEDIUM4.67 | libavahi-common3 0.7-4ubuntu7 fixed in 0.7-4ubuntu7.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2021-3995 | MEDIUM4.67 | libblkid1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2021-3996 | MEDIUM4.67 | libblkid1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-0395 | MEDIUM4.67 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.17 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2020-27618 | MEDIUM4.67 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2025-0395 | MEDIUM4.67 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.17 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2020-27618 | MEDIUM4.67 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2023-32360 | MEDIUM4.67 | libcups2 2.3.1-9ubuntu1.1 fixed in 2.3.1-9ubuntu1.5 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2021-3995 | MEDIUM4.67 | libfdisk1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2021-3996 | MEDIUM4.67 | libfdisk1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2020-35538 | MEDIUM4.67 | libjpeg-turbo8 2.0.3-0ubuntu1.20.04.1 fixed in 2.0.3-0ubuntu1.20.04.3 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2021-3995 | MEDIUM4.67 | libmount1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2021-3996 | MEDIUM4.67 | libmount1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2021-3995 | MEDIUM4.67 | libsmartcols1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2021-3996 | MEDIUM4.67 | libsmartcols1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2025-29088 | MEDIUM4.67 | libsqlite3-0 3.31.1-4ubuntu0.2 fixed in 3.31.1-4ubuntu0.7 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2022-3821 | MEDIUM4.67 | libsystemd0 245.4-4ubuntu3.4 fixed in 245.4-4ubuntu3.20 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2022-4415 | MEDIUM4.67 | libsystemd0 245.4-4ubuntu3.4 fixed in 245.4-4ubuntu3.20 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2022-3821 | MEDIUM4.67 | libudev1 245.4-4ubuntu3.4 fixed in 245.4-4ubuntu3.20 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2022-4415 | MEDIUM4.67 | libudev1 245.4-4ubuntu3.4 fixed in 245.4-4ubuntu3.20 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2021-3995 | MEDIUM4.67 | libuuid1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2021-3996 | MEDIUM4.67 | libuuid1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2023-43785 | MEDIUM4.67 | libx11-6 2:1.6.9-2ubuntu1.1 fixed in 2:1.6.9-2ubuntu1.6 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2023-43786 | MEDIUM4.67 | libx11-6 2:1.6.9-2ubuntu1.1 fixed in 2:1.6.9-2ubuntu1.6 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2023-43785 | MEDIUM4.67 | libx11-data 2:1.6.9-2ubuntu1.1 fixed in 2:1.6.9-2ubuntu1.6 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2023-43786 | MEDIUM4.67 | libx11-data 2:1.6.9-2ubuntu1.1 fixed in 2:1.6.9-2ubuntu1.6 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2021-24031 | MEDIUM4.67 | libzstd1 1.4.4+dfsg-3 fixed in 1.4.4+dfsg-3ubuntu0.1 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2024-47535 | MEDIUM4.67 | io.netty:netty-common 4.1.27.Final fixed in 4.1.115.Final | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2025-25193 | MEDIUM4.67 | io.netty:netty-common 4.1.27.Final fixed in 4.1.118.Final | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2024-47535 | MEDIUM4.67 | io.netty:netty-common 4.1.51.Final fixed in 4.1.115.Final | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2025-25193 | MEDIUM4.67 | io.netty:netty-common 4.1.51.Final fixed in 4.1.118.Final | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2024-47535 | MEDIUM4.67 | io.netty:netty-common 4.1.8.Final fixed in 4.1.115.Final | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2025-25193 | MEDIUM4.67 | io.netty:netty-common 4.1.8.Final fixed in 4.1.118.Final | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2024-25710 | MEDIUM4.67 | org.apache.commons:commons-compress 1.14 fixed in 1.26.0 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2024-25710 | MEDIUM4.67 | org.apache.commons:commons-compress 1.18 fixed in 1.26.0 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2024-25710 | MEDIUM4.67 | org.apache.commons:commons-compress 1.4.1 fixed in 1.26.0 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2024-25710 | MEDIUM4.67 | org.apache.commons:commons-compress 1.5 fixed in 1.26.0 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2024-25710 | MEDIUM4.67 | org.apache.commons:commons-compress 1.8.1 fixed in 1.26.0 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2024-25710 | MEDIUM4.67 | org.apache.commons:commons-compress 1.9 fixed in 1.26.0 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2016-5001 | MEDIUM4.67 | org.apache.hadoop:hadoop-common 2.3.0 fixed in 2.6.4, 2.7.2 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2016-5001 | MEDIUM4.67 | org.apache.hadoop:hadoop-common 2.5.1 fixed in 2.6.4, 2.7.2 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2023-33202 | MEDIUM4.67 | org.bouncycastle:bcprov-jdk15on 1.60 fixed in 1.70 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2021-28168 | MEDIUM4.67 | org.glassfish.jersey.core:jersey-common 2.30 fixed in 2.34, 3.0.2 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2021-28675 | MEDIUM4.67 | Pillow 8.1.0 fixed in 8.2.0 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2021-28678 | MEDIUM4.67 | Pillow 8.1.0 fixed in 8.2.0 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2026-42308 | MEDIUM4.67 | Pillow 8.1.0 fixed in 12.2.0 | 0.1% Theoretical Threat | Directly Exposed |
| CVE-2026-42310 | MEDIUM4.67 | Pillow 8.1.0 fixed in 12.2.0 | 0.1% Theoretical Threat | Directly Exposed |
| CVE-2022-40896 | MEDIUM4.67 | Pygments 2.7.4 fixed in 2.15.0 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2026-25645 | MEDIUM4.67 | requests 2.24.0 fixed in 2.33.0 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2024-38428 | MEDIUM4.64 | wget 1.20.3-1ubuntu1 fixed in 1.20.3-1ubuntu2.1 | 0.7% Theoretical Threat | Post-Exploit |
| CVE-2021-3449 | MEDIUM4.6 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.3 | 62.9% Actively Exploited | Post-Exploit |
| CVE-2024-34064 | MEDIUM4.59 | Jinja2 2.11.3 fixed in 3.1.4 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2026-21883 | MEDIUM4.59 | bokeh 1.3.4 fixed in 3.8.2 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2021-3711 | MEDIUM4.58 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.8 | 87.8% Actively Exploited | Post-Exploit |
| CVE-2023-0215 | MEDIUM4.5 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.17 | 4.5% Low-Moderate Risk | Post-Exploit |
| CVE-2023-0464 | MEDIUM4.5 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.18 | 3.7% Low-Moderate Risk | Post-Exploit |
| CVE-2022-24758 | MEDIUM4.5 | notebook 6.2.0 fixed in 6.4.10 | 1.1% Low-Moderate Risk | Post-Exploit |
| CVE-2024-28834 | MEDIUM4.5 | libgnutls30 3.6.13-2ubuntu1.3 fixed in 3.6.13-2ubuntu1.11 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2023-22067 | MEDIUM4.5 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u392-ga-1~20.04 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2026-54514 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.10.3 fixed in 2.18.8, 2.21.4, 3.1.4 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-54515 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.10.3 fixed in 3.1.4, 2.18.9, 2.21.5, 2.22.1 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-54514 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.4.0 fixed in 2.18.8, 2.21.4, 3.1.4 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-54514 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.4.4 fixed in 2.18.8, 2.21.4, 3.1.4 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-54514 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.6.7.3 fixed in 2.18.8, 2.21.4, 3.1.4 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-54514 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.7.0 fixed in 2.18.8, 2.21.4, 3.1.4 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-54514 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.7.9.1 fixed in 2.18.8, 2.21.4, 3.1.4 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-54514 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 2.18.8, 2.21.4, 3.1.4 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-54515 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.8.2 fixed in 3.1.4, 2.18.9, 2.21.5, 2.22.1 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-54514 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 2.18.8, 2.21.4, 3.1.4 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-54515 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 fixed in 3.1.4, 2.18.9, 2.21.5, 2.22.1 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-54514 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 2.18.8, 2.21.4, 3.1.4 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-54515 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.9.10.6 fixed in 3.1.4, 2.18.9, 2.21.5, 2.22.1 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-54514 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 2.18.8, 2.21.4, 3.1.4 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-54515 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.9.8 fixed in 3.1.4, 2.18.9, 2.21.5, 2.22.1 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-54514 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 2.18.8, 2.21.4, 3.1.4 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-54515 | MEDIUM4.5 | com.fasterxml.jackson.core:jackson-databind 2.9.9 fixed in 3.1.4, 2.18.9, 2.21.5, 2.22.1 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-50020 | MEDIUM4.5 | io.netty:netty-codec-http 4.1.0.CR1 fixed in 4.2.15.Final, 4.1.135.Final | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-50020 | MEDIUM4.5 | io.netty:netty-codec-http 4.1.27.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-50020 | MEDIUM4.5 | io.netty:netty-codec-http 4.1.8.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-47244 | MEDIUM4.5 | io.netty:netty-codec-http2 4.1.0.CR1 fixed in 4.2.15.Final, 4.1.135.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-50560 | MEDIUM4.5 | io.netty:netty-codec-http2 4.1.0.CR1 fixed in 4.2.15.Final, 4.1.135.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-47244 | MEDIUM4.5 | io.netty:netty-codec-http2 4.1.27.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-50560 | MEDIUM4.5 | io.netty:netty-codec-http2 4.1.27.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-47244 | MEDIUM4.5 | io.netty:netty-codec-http2 4.1.8.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-50560 | MEDIUM4.5 | io.netty:netty-codec-http2 4.1.8.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-8916 | MEDIUM4.5 | org.bouncycastle:bcpkix-jdk15on 1.60 fixed in 1.79 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2020-26939 | MEDIUM4.5 | org.bouncycastle:bcprov-jdk15on 1.60 fixed in 1.61 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2023-33201 | MEDIUM4.5 | org.bouncycastle:bcprov-jdk15on 1.60 No fix yet | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2024-6763 | MEDIUM4.5 | org.eclipse.jetty:jetty-http 8.1.19.v20160209 fixed in 12.0.12 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2024-6763 | MEDIUM4.5 | org.eclipse.jetty:jetty-http 8.2.0.v20160908 fixed in 12.0.12 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2024-6763 | MEDIUM4.5 | org.eclipse.jetty:jetty-http 9.3.27.v20190418 fixed in 12.0.12 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2024-6763 | MEDIUM4.5 | org.eclipse.jetty:jetty-http 9.4.31.v20200723 fixed in 12.0.12 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2024-36124 | MEDIUM4.5 | org.iq80.snappy:snappy 0.2 fixed in 0.5 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2026-34073 | MEDIUM4.5 | cryptography 3.2.1 fixed in 46.0.6 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-45409 | MEDIUM4.5 | idna 2.10 fixed in 3.15 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2025-4565 | MEDIUM4.5 | protobuf 3.14.0 fixed in 4.25.8, 5.29.5, 6.31.1 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-27448 | MEDIUM4.5 | pyOpenSSL 19.1.0 fixed in 26.0.0 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2024-47081 | MEDIUM4.5 | requests 2.24.0 fixed in 2.32.4 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2026-35536 | MEDIUM4.5 | tornado 6.1 fixed in 6.5.5 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-44431 | MEDIUM4.5 | urllib3 1.25.11 fixed in 2.7.0 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2022-21699 | MEDIUM4.49 | ipython 7.20.0 fixed in 5.11, 7.16.3, 7.31.1, 8.0.1 | 0.7% Theoretical Threat | Post-Exploit |
| CVE-2024-28085 | MEDIUM4.4 | libblkid1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.6 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2024-28085 | MEDIUM4.4 | libfdisk1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.6 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2024-28085 | MEDIUM4.4 | libmount1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.6 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2024-28085 | MEDIUM4.4 | libsmartcols1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.6 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2024-28085 | MEDIUM4.4 | libuuid1 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.6 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2024-29131 | MEDIUM4.4 | org.apache.commons:commons-configuration2 2.2 fixed in 2.10.1 | 2.1% Low-Moderate Risk | Directly Exposed |
| CVE-2024-29133 | MEDIUM4.4 | org.apache.commons:commons-configuration2 2.2 fixed in 2.10.1 | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-2341 | MEDIUM4.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 4.2% Low-Moderate Risk | Directly Exposed |
| CVE-2021-2369 | MEDIUM4.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 3.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21248 | MEDIUM4.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 3.8% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21443 | MEDIUM4.3 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u342-b07-0ubuntu1~20.04 | 2.7% Low-Moderate Risk | Directly Exposed |
| CVE-2024-47554 | MEDIUM4.3 | commons-io:commons-io 2.6 fixed in 2.14.0 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-29458 | MEDIUM4.26 | ncurses-bin 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 1.3% Low-Moderate Risk | Post-Exploit |
| CVE-2023-24816 | MEDIUM4.2 | ipython 7.20.0 fixed in 8.10.0 | 1.3% Low-Moderate Risk | Post-Exploit |
| CVE-2024-21140 | MEDIUM4.08 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u422-b05-1~20.04 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2024-21145 | MEDIUM4.08 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u422-b05-1~20.04 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2024-21235 | MEDIUM4.08 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u432-ga~us1-0ubuntu2~20.04 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2025-30691 | MEDIUM4.08 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u452-ga~us1-0ubuntu1~20.04 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2025-68161 | MEDIUM4.08 | org.apache.logging.log4j:log4j-core 2.6.1 fixed in 2.25.3 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2022-4304 | MEDIUM4.07 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.17 | 16.2% High Exploitation Risk | Post-Exploit |
| CVE-2024-13176 | MEDIUM4 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.24 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2021-24032 | MEDIUM4 | libzstd1 1.4.4+dfsg-3 fixed in 1.4.4+dfsg-3ubuntu0.1 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2024-20945 | MEDIUM4 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u402-ga-2ubuntu1~20.04 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2020-1960 | MEDIUM4 | org.apache.flink:flink-core 1.2.1 fixed in 1.9.3, 1.10.1 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2018-1334 | MEDIUM4 | org.apache.spark:spark-core_2.10 1.6.2 fixed in 2.1.3, 2.2.2 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2018-1334 | MEDIUM4 | org.apache.spark:spark-core_2.10 1.6.3 fixed in 2.1.3, 2.2.2 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2024-33601 | MEDIUM4 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.16 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2024-33601 | MEDIUM4 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.16 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2023-29491 | LOW3.98 | ncurses-bin 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 0.9% Theoretical Threat | Post-Exploit |
| CVE-2020-16156 | LOW3.98 | perl-base 5.30.0-9ubuntu0.2 fixed in 5.30.0-9ubuntu0.3 | 0.8% Theoretical Threat | Post-Exploit |
| CVE-2023-47038 | LOW3.98 | perl-base 5.30.0-9ubuntu0.2 fixed in 5.30.0-9ubuntu0.5 | 0.8% Theoretical Threat | Post-Exploit |
| CVE-2025-53000 | LOW3.98 | nbconvert 5.6.1 fixed in 7.17.0 | 0.2% Theoretical Threat | Post-Exploit |
| CVE-2022-34903 | LOW3.9 | gpgv 2.2.19-3ubuntu2 fixed in 2.2.19-3ubuntu2.2 | 2.6% Low-Moderate Risk | Post-Exploit |
| CVE-2013-2035 | LOW3.74 | org.fusesource.hawtjni:hawtjni-runtime 1.0 fixed in 1.8 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2024-9143 | LOW3.7 | libssl1.1 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.24 | 6.0% Low-Moderate Risk | Directly Exposed |
| CVE-2021-35603 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 4.1% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21619 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u352-ga-1~20.04 | 2.4% Low-Moderate Risk | Directly Exposed |
| CVE-2022-21624 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u352-ga-1~20.04 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2023-21937 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u372-ga~us1-0ubuntu1~20.04 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-21938 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u372-ga~us1-0ubuntu1~20.04 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-21968 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u372-ga~us1-0ubuntu1~20.04 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2023-22045 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u382-ga-1~20.04.1 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2023-22049 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u382-ga-1~20.04.1 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2024-21011 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u412-ga-1~20.04.1 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2024-21068 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u412-ga-1~20.04.1 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2024-21085 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u412-ga-1~20.04.1 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2024-21138 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u422-b05-1~20.04 | 1.3% Low-Moderate Risk | Directly Exposed |
| CVE-2024-21144 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u422-b05-1~20.04 | 1.1% Low-Moderate Risk | Directly Exposed |
| CVE-2023-21843 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u362-ga-0ubuntu1~20.04.1 | 1.4% Low-Moderate Risk | Directly Exposed |
| CVE-2024-21208 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u432-ga~us1-0ubuntu2~20.04 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2024-21217 | LOW3.7 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u432-ga~us1-0ubuntu2~20.04 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2025-48924 | LOW3.7 | org.apache.commons:commons-lang3 3.10 fixed in 3.18.0 | 2.2% Low-Moderate Risk | Directly Exposed |
| CVE-2020-9488 | LOW3.7 | org.apache.logging.log4j:log4j-core 2.6.1 fixed in 2.13.2, 2.12.3, 2.3.2 | 8.1% Low-Moderate Risk | Directly Exposed |
| CVE-2023-6135 | LOW3.65 | libnss3 2:3.49.1-1ubuntu1.5 fixed in 2:3.98-0ubuntu0.20.04.1 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2023-45803 | LOW3.57 | urllib3 1.25.11 fixed in 2.0.7, 1.26.18 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2021-23841 | LOW3.54 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.2 | 7.5% Low-Moderate Risk | Post-Exploit |
| CVE-2024-5535 | LOW3.54 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.23 | 5.6% Low-Moderate Risk | Post-Exploit |
| CVE-2022-1664 | LOW3.53 | dpkg 1.19.7ubuntu3 fixed in 1.19.7ubuntu3.2 | 2.9% Low-Moderate Risk | Post-Exploit |
| CVE-2021-23840 | LOW3.51 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.2 | 50.7% Actively Exploited | Post-Exploit |
| CVE-2023-0286 | LOW3.46 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.17 | 59.5% Actively Exploited | Post-Exploit |
| CVE-2021-3712 | LOW3.46 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.8 | 50.4% Actively Exploited | Post-Exploit |
| CVE-2021-3572 | LOW3.42 | pip 20.2.4 fixed in 21.1 | 1.7% Low-Moderate Risk | Post-Exploit |
| CVE-2022-1292 | LOW3.41 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.13 | 83.2% Actively Exploited | Post-Exploit |
| CVE-2022-2068 | LOW3.41 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.15 | 95.8% Actively Exploited | Post-Exploit |
| CVE-2024-33602 | LOW3.4 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.16 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2024-33602 | LOW3.4 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.16 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.1.3 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.10.1 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.10.3 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.4.0 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.4.4 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.6.7 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.7.0 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.7.4 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.7.9 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.8.1 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.8.2 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.8.8 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.9.10 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.9.8 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2025-49128 | LOW3.4 | com.fasterxml.jackson.core:jackson-core 2.9.9 fixed in 2.13.0 | 0.3% Theoretical Threat | Directly Exposed |
| CVE-2026-45536 | LOW3.4 | io.netty:netty-transport-native-epoll 4.1.27.Final fixed in 4.2.15.Final, 4.1.135.Final | 0.1% Theoretical Threat | Directly Exposed |
| CVE-2024-4741 | LOW3.36 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.23 | 2.9% Low-Moderate Risk | Post-Exploit |
| CVE-2024-0727 | LOW3.3 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.21 | 3.2% Low-Moderate Risk | Post-Exploit |
| CVE-2022-48303 | LOW3.3 | tar 1.30+dfsg-7ubuntu0.20.04.1 fixed in 1.30+dfsg-7ubuntu0.20.04.3 | 4.5% Low-Moderate Risk | Post-Exploit |
| CVE-2019-8842 | LOW3.3 | libcups2 2.3.1-9ubuntu1.1 fixed in 2.3.1-9ubuntu1.2 | 2.0% Low-Moderate Risk | Directly Exposed |
| CVE-2025-46392 | LOW3.3 | commons-configuration:commons-configuration 1.9 No fix yet | 1.7% Low-Moderate Risk | Directly Exposed |
| CVE-2021-32862 | LOW3.24 | nbconvert 5.6.1 fixed in 6.5.1 | 1.1% Low-Moderate Risk | Post-Exploit |
| CVE-2022-2097 | LOW3.18 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.16 | 4.4% Low-Moderate Risk | Post-Exploit |
| CVE-2023-0465 | LOW3.18 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.18 | 1.6% Low-Moderate Risk | Post-Exploit |
| CVE-2023-0466 | LOW3.18 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.18 | 1.6% Low-Moderate Risk | Post-Exploit |
| CVE-2023-3446 | LOW3.18 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.20 | 5.5% Low-Moderate Risk | Post-Exploit |
| CVE-2023-3817 | LOW3.18 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.20 | 2.6% Low-Moderate Risk | Post-Exploit |
| CVE-2023-5678 | LOW3.18 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.21 | 4.5% Low-Moderate Risk | Post-Exploit |
| CVE-2023-22025 | LOW3.15 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u392-ga-1~20.04 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2024-21094 | LOW3.15 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u412-ga-1~20.04.1 | 0.7% Theoretical Threat | Directly Exposed |
| CVE-2024-21131 | LOW3.15 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u422-b05-1~20.04 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2024-21210 | LOW3.15 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u432-ga~us1-0ubuntu2~20.04 | 0.8% Theoretical Threat | Directly Exposed |
| CVE-2021-35588 | LOW3.1 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u312-b07-0ubuntu1~20.04 | 3.6% Low-Moderate Risk | Directly Exposed |
| CVE-2023-36479 | LOW3.1 | org.eclipse.jetty:jetty-servlets 9.3.27.v20190418 fixed in 9.4.52, 10.0.16, 11.0.16 | 1.0% Low-Moderate Risk | Directly Exposed |
| CVE-2021-34428 | LOW2.98 | org.eclipse.jetty:jetty-server 8.1.19.v20160209 fixed in 9.4.41, 10.0.3, 11.0.3 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2021-34428 | LOW2.98 | org.eclipse.jetty:jetty-server 8.2.0.v20160908 fixed in 9.4.41, 10.0.3, 11.0.3 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2021-34428 | LOW2.98 | org.eclipse.jetty:jetty-server 9.3.27.v20190418 fixed in 9.4.41, 10.0.3, 11.0.3 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2021-34428 | LOW2.98 | org.eclipse.jetty:jetty-server 9.4.31.v20200723 fixed in 9.4.41, 10.0.3, 11.0.3 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2026-6357 | LOW2.96 | pip 20.2.4 fixed in 26.1 | 0.1% Theoretical Threat | Post-Exploit |
| CVE-2024-2511 | LOW2.89 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.23 | 54.0% Actively Exploited | Post-Exploit |
| CVE-2021-3995 | LOW2.8 | bsdutils 1:2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Post-Exploit |
| CVE-2021-3996 | LOW2.8 | bsdutils 1:2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Post-Exploit |
| CVE-2021-3995 | LOW2.8 | fdisk 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Post-Exploit |
| CVE-2021-3996 | LOW2.8 | fdisk 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Post-Exploit |
| CVE-2023-4641 | LOW2.8 | login 1:4.8.1-1ubuntu5.20.04 fixed in 1:4.8.1-1ubuntu5.20.04.5 | 0.3% Theoretical Threat | Post-Exploit |
| CVE-2021-3995 | LOW2.8 | mount 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Post-Exploit |
| CVE-2021-3996 | LOW2.8 | mount 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Post-Exploit |
| CVE-2023-4641 | LOW2.8 | passwd 1:4.8.1-1ubuntu5.20.04 fixed in 1:4.8.1-1ubuntu5.20.04.5 | 0.3% Theoretical Threat | Post-Exploit |
| CVE-2021-3995 | LOW2.8 | util-linux 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Post-Exploit |
| CVE-2021-3996 | LOW2.8 | util-linux 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.3 | 0.6% Theoretical Threat | Post-Exploit |
| CVE-2026-8643 | LOW2.8 | pip 20.2.4 fixed in 26.1.2 | 0.3% Theoretical Threat | Post-Exploit |
| CVE-2023-4016 | LOW2.8 | libprocps8 2:3.3.16-1ubuntu2 fixed in 2:3.3.16-1ubuntu2.4 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2021-36084 | LOW2.8 | libsepol1 3.0-1 fixed in 3.0-1ubuntu0.1 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2021-36085 | LOW2.8 | libsepol1 3.0-1 fixed in 3.0-1ubuntu0.1 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2021-36086 | LOW2.8 | libsepol1 3.0-1 fixed in 3.0-1ubuntu0.1 | 0.6% Theoretical Threat | Directly Exposed |
| CVE-2021-36087 | LOW2.8 | libsepol1 3.0-1 fixed in 3.0-1ubuntu0.1 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2020-8908 | LOW2.8 | com.google.guava:guava 11.0 fixed in 32.0.0-android | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2020-8908 | LOW2.8 | com.google.guava:guava 11.0.2 fixed in 32.0.0-android | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2020-8908 | LOW2.8 | com.google.guava:guava 13.0.1 fixed in 32.0.0-android | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2020-8908 | LOW2.8 | com.google.guava:guava 14.0.1 fixed in 32.0.0-android | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2020-8908 | LOW2.8 | com.google.guava:guava 15.0 fixed in 32.0.0-android | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2020-8908 | LOW2.8 | com.google.guava:guava 18.0 fixed in 32.0.0-android | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2020-8908 | LOW2.8 | com.google.guava:guava 19.0 fixed in 32.0.0-android | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2020-8908 | LOW2.8 | com.google.guava:guava 20.0 fixed in 32.0.0-android | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2020-8908 | LOW2.8 | com.google.guava:guava 22.0 fixed in 32.0.0-android | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2020-8908 | LOW2.8 | com.google.guava:guava 24.1.1-jre fixed in 32.0.0-android | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2020-8908 | LOW2.8 | com.google.guava:guava 25.0-jre fixed in 32.0.0-android | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2026-4539 | LOW2.8 | Pygments 2.7.4 fixed in 2.20.0 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2025-8869 | LOW2.7 | pip 20.2.4 fixed in 25.3 | 0.4% Theoretical Threat | Post-Exploit |
| CVE-2022-2047 | LOW2.7 | org.eclipse.jetty:jetty-http 8.1.19.v20160209 fixed in 9.4.47, 10.0.10, 11.0.10 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-2047 | LOW2.7 | org.eclipse.jetty:jetty-http 8.2.0.v20160908 fixed in 9.4.47, 10.0.10, 11.0.10 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-2047 | LOW2.7 | org.eclipse.jetty:jetty-http 9.3.27.v20190418 fixed in 9.4.47, 10.0.10, 11.0.10 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2022-2047 | LOW2.7 | org.eclipse.jetty:jetty-http 9.4.31.v20200723 fixed in 9.4.47, 10.0.10, 11.0.10 | 1.2% Low-Moderate Risk | Directly Exposed |
| CVE-2024-28085 | LOW2.64 | bsdutils 1:2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.6 | 2.2% Low-Moderate Risk | Post-Exploit |
| CVE-2024-28085 | LOW2.64 | fdisk 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.6 | 2.2% Low-Moderate Risk | Post-Exploit |
| CVE-2024-28085 | LOW2.64 | mount 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.6 | 2.2% Low-Moderate Risk | Post-Exploit |
| CVE-2024-28085 | LOW2.64 | util-linux 2.34-0.1ubuntu9.1 fixed in 2.34-0.1ubuntu9.6 | 2.2% Low-Moderate Risk | Post-Exploit |
| CVE-2020-7020 | LOW2.63 | org.elasticsearch:elasticsearch 2.4.3 fixed in 6.8.13, 7.9.2 | 1.0% Theoretical Threat | Directly Exposed |
| CVE-2021-2163 | LOW2.6 | openjdk-8-jre-headless 8u282-b08-0ubuntu1~20.04 fixed in 8u292-b10-0ubuntu1~20.04 | 3.6% Low-Moderate Risk | Directly Exposed |
| CVE-2022-29238 | LOW2.58 | notebook 6.2.0 fixed in 6.4.12 | 1.0% Low-Moderate Risk | Post-Exploit |
| CVE-2026-3219 | LOW2.55 | pip 20.2.4 fixed in 26.1 | 0.1% Theoretical Threat | Post-Exploit |
| CVE-2025-30258 | LOW2.4 | gpgv 2.2.19-3ubuntu2 fixed in 2.2.19-3ubuntu2.4 | 0.2% Theoretical Threat | Post-Exploit |
| CVE-2024-13176 | LOW2.4 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.24 | 0.6% Theoretical Threat | Post-Exploit |
| CVE-2024-9143 | LOW2.22 | openssl 1.1.1f-1ubuntu2.1 fixed in 1.1.1f-1ubuntu2.24 | 6.0% Low-Moderate Risk | Post-Exploit |
| CVE-2021-27645 | LOW2.12 | libc-bin 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2021-27645 | LOW2.12 | libc6 2.31-0ubuntu9.1 fixed in 2.31-0ubuntu9.7 | 0.4% Theoretical Threat | Directly Exposed |
| CVE-2026-23901 | LOW2.12 | org.apache.shiro:shiro-core 1.7.0 fixed in 2.1.0 | 0.2% Theoretical Threat | Directly Exposed |
| CVE-2026-1703 | LOW1.99 | pip 20.2.4 fixed in 26.0 | 0.4% Theoretical Threat | Post-Exploit |
| CVE-2021-20193 | LOW1.98 | tar 1.30+dfsg-7ubuntu0.20.04.1 fixed in 1.30+dfsg-7ubuntu0.20.04.2 | 1.1% Low-Moderate Risk | Post-Exploit |
| CVE-2023-4016 | LOW1.68 | procps 2:3.3.16-1ubuntu2 fixed in 2:3.3.16-1ubuntu2.4 | 0.2% Theoretical Threat | Post-Exploit |
| CVE-2023-39804 | LOW1.68 | tar 1.30+dfsg-7ubuntu0.20.04.1 fixed in 1.30+dfsg-7ubuntu0.20.04.4 | 0.3% Theoretical Threat | Post-Exploit |
| CVE-2023-5752 | LOW1.68 | pip 20.2.4 fixed in 23.3 | 0.5% Theoretical Threat | Post-Exploit |
| CVE-2022-28321 | NONE0 | libpam-modules 1.3.1-5ubuntu4.1 fixed in 1.3.1-5ubuntu4.4 | 1.2% Low-Moderate Risk | Not Applicable |
| CVE-2022-28321 | NONE0 | libpam-modules-bin 1.3.1-5ubuntu4.1 fixed in 1.3.1-5ubuntu4.4 | 1.2% Low-Moderate Risk | Not Applicable |
| CVE-2022-28321 | NONE0 | libpam-runtime 1.3.1-5ubuntu4.1 fixed in 1.3.1-5ubuntu4.4 | 1.2% Low-Moderate Risk | Not Applicable |
| CVE-2022-28321 | NONE0 | libpam0g 1.3.1-5ubuntu4.1 fixed in 1.3.1-5ubuntu4.4 | 1.2% Low-Moderate Risk | Not Applicable |
| CVE-2022-23218 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.7 | 4.7% Low-Moderate Risk | Not Applicable |
| CVE-2022-23219 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.7 | 4.2% Low-Moderate Risk | Not Applicable |
| CVE-2024-37371 | NONE0 | krb5-locales 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.6 | 1.9% Low-Moderate Risk | Not Applicable |
| CVE-2021-35942 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.7 | 2.7% Low-Moderate Risk | Not Applicable |
| CVE-2024-3596 | NONE0 | krb5-locales 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.8 | 14.9% High Exploitation Risk | Not Applicable |
| CVE-2022-42898 | NONE0 | krb5-locales 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.2 | 6.4% Low-Moderate Risk | Not Applicable |
| CVE-2021-39537 | NONE0 | libncurses6 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 3.0% Low-Moderate Risk | Not Applicable |
| CVE-2021-39537 | NONE0 | libncursesw6 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 3.0% Low-Moderate Risk | Not Applicable |
| CVE-2021-39537 | NONE0 | libtinfo6 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 3.0% Low-Moderate Risk | Not Applicable |
| CVE-2024-2961 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.15 | 88.3% Actively Exploited | Not Applicable |
| CVE-2021-39537 | NONE0 | ncurses-base 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 3.0% Low-Moderate Risk | Not Applicable |
| CVE-2020-6096 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.7 | 5.2% Low-Moderate Risk | Not Applicable |
| CVE-2020-35512 | NONE0 | dbus 1.12.16-2ubuntu2.1 fixed in 1.12.16-2ubuntu2.2 | 0.3% Theoretical Threat | Not Applicable |
| CVE-2023-29491 | NONE0 | libncurses6 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 0.9% Theoretical Threat | Not Applicable |
| CVE-2023-29491 | NONE0 | libncursesw6 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 0.9% Theoretical Threat | Not Applicable |
| CVE-2023-29491 | NONE0 | libtinfo6 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 0.9% Theoretical Threat | Not Applicable |
| CVE-2021-3999 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.7 | 0.7% Theoretical Threat | Not Applicable |
| CVE-2023-29491 | NONE0 | ncurses-base 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 0.9% Theoretical Threat | Not Applicable |
| CVE-2024-33599 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.16 | 1.3% Low-Moderate Risk | Not Applicable |
| CVE-2021-36222 | NONE0 | krb5-locales 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.3 | 10.3% High Exploitation Risk | Not Applicable |
| CVE-2024-37370 | NONE0 | krb5-locales 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.6 | 0.7% Theoretical Threat | Not Applicable |
| CVE-2021-3326 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.7 | 3.1% Low-Moderate Risk | Not Applicable |
| CVE-2022-29458 | NONE0 | libncurses6 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 1.3% Low-Moderate Risk | Not Applicable |
| CVE-2022-29458 | NONE0 | libncursesw6 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 1.3% Low-Moderate Risk | Not Applicable |
| CVE-2022-29458 | NONE0 | libtinfo6 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 1.3% Low-Moderate Risk | Not Applicable |
| CVE-2022-29458 | NONE0 | ncurses-base 6.2-0ubuntu2 fixed in 6.2-0ubuntu2.1 | 1.3% Low-Moderate Risk | Not Applicable |
| CVE-2025-4802 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.18 | 0.6% Theoretical Threat | Not Applicable |
| CVE-2022-42010 | NONE0 | dbus 1.12.16-2ubuntu2.1 fixed in 1.12.16-2ubuntu2.3 | 0.8% Theoretical Threat | Not Applicable |
| CVE-2022-42011 | NONE0 | dbus 1.12.16-2ubuntu2.1 fixed in 1.12.16-2ubuntu2.3 | 1.3% Low-Moderate Risk | Not Applicable |
| CVE-2022-42012 | NONE0 | dbus 1.12.16-2ubuntu2.1 fixed in 1.12.16-2ubuntu2.3 | 1.3% Low-Moderate Risk | Not Applicable |
| CVE-2021-37750 | NONE0 | krb5-locales 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.3 | 2.2% Low-Moderate Risk | Not Applicable |
| CVE-2023-36054 | NONE0 | krb5-locales 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.4 | 2.1% Low-Moderate Risk | Not Applicable |
| CVE-2025-24528 | NONE0 | krb5-locales 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 0.6% Theoretical Threat | Not Applicable |
| CVE-2025-3576 | NONE0 | krb5-locales 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.11 | 0.3% Theoretical Threat | Not Applicable |
| CVE-2024-26458 | NONE0 | krb5-locales 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 0.8% Theoretical Threat | Not Applicable |
| CVE-2024-26461 | NONE0 | krb5-locales 1.17-6ubuntu4.1 fixed in 1.17-6ubuntu4.9 | 1.1% Low-Moderate Risk | Not Applicable |
| CVE-2016-10228 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.7 | 4.0% Low-Moderate Risk | Not Applicable |
| CVE-2019-25013 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.7 | 3.5% Low-Moderate Risk | Not Applicable |
| CVE-2023-4806 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.14 | 1.4% Low-Moderate Risk | Not Applicable |
| CVE-2023-4813 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.14 | 1.7% Low-Moderate Risk | Not Applicable |
| CVE-2024-22365 | NONE0 | libpam-modules 1.3.1-5ubuntu4.1 fixed in 1.3.1-5ubuntu4.7 | 0.5% Theoretical Threat | Not Applicable |
| CVE-2024-22365 | NONE0 | libpam-modules-bin 1.3.1-5ubuntu4.1 fixed in 1.3.1-5ubuntu4.7 | 0.5% Theoretical Threat | Not Applicable |
| CVE-2024-22365 | NONE0 | libpam-runtime 1.3.1-5ubuntu4.1 fixed in 1.3.1-5ubuntu4.7 | 0.5% Theoretical Threat | Not Applicable |
| CVE-2024-22365 | NONE0 | libpam0g 1.3.1-5ubuntu4.1 fixed in 1.3.1-5ubuntu4.7 | 0.5% Theoretical Threat | Not Applicable |
| CVE-2025-0395 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.17 | 0.3% Theoretical Threat | Not Applicable |
| CVE-2020-27618 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.7 | 0.9% Theoretical Threat | Not Applicable |
| CVE-2024-33600 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.16 | 1.2% Low-Moderate Risk | Not Applicable |
| CVE-2020-29562 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.7 | 1.5% Low-Moderate Risk | Not Applicable |
| CVE-2024-33601 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.16 | 1.1% Low-Moderate Risk | Not Applicable |
| CVE-2024-33602 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.16 | 0.4% Theoretical Threat | Not Applicable |
| CVE-2025-48924 | NONE0 | commons-lang:commons-lang 2.4 No fix yet | 2.2% Low-Moderate Risk | Not Applicable |
| CVE-2025-48924 | NONE0 | commons-lang:commons-lang 2.5 No fix yet | 2.2% Low-Moderate Risk | Not Applicable |
| CVE-2025-48924 | NONE0 | commons-lang:commons-lang 2.6 No fix yet | 2.2% Low-Moderate Risk | Not Applicable |
| CVE-2021-27645 | NONE0 | locales 2.31-0ubuntu9.2 fixed in 2.31-0ubuntu9.7 | 0.4% Theoretical Threat | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.1.3 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.10.1 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.10.3 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.4.0 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.4.4 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.6.7 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.7.0 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.7.4 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.7.9 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.8.1 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.8.2 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.8.8 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.9.10 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.9.8 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| GHSA-72hv-8253-57qq | NONE0 | com.fasterxml.jackson.core:jackson-core 2.9.9 fixed in 2.21.1, 2.18.6 | — | Not Applicable |
| CVE-2023-45859 | NONE0 | com.hazelcast:hazelcast 3.10 fixed in 5.2.5, 5.3.5 | 0.5% Theoretical Threat | Not Applicable |
| CVE-2026-25526 | NONE0 | com.hubspot.jinjava:jinjava 2.4.0 fixed in 2.8.3, 2.7.6 | 0.9% Theoretical Threat | Not Applicable |
| CVE-2026-25526 | NONE0 | com.hubspot.jinjava:jinjava 2.4.12 fixed in 2.8.3, 2.7.6 | 0.9% Theoretical Threat | Not Applicable |
| CVE-2026-25526 | NONE0 | com.hubspot.jinjava:jinjava 2.5.4 fixed in 2.8.3, 2.7.6 | 0.9% Theoretical Threat | Not Applicable |
| CVE-2024-36114 | NONE0 | io.airlift:aircompressor 0.10 fixed in 0.27 | 0.5% Theoretical Threat | Not Applicable |
| GHSA-xpw8-rcwv-8f8p | NONE0 | io.netty:netty-codec-http2 4.1.0.CR1 fixed in 4.1.100.Final | — | Not Applicable |
| GHSA-xpw8-rcwv-8f8p | NONE0 | io.netty:netty-codec-http2 4.1.27.Final fixed in 4.1.100.Final | — | Not Applicable |
| GHSA-xpw8-rcwv-8f8p | NONE0 | io.netty:netty-codec-http2 4.1.8.Final fixed in 4.1.100.Final | — | Not Applicable |
| CVE-2025-30474 | NONE0 | org.apache.commons:commons-vfs2 2.2 fixed in 2.10.0 | 0.8% Theoretical Threat | Not Applicable |
| CVE-2024-23454 | NONE0 | org.apache.hadoop:hadoop-common 2.3.0 fixed in 3.4.0 | 0.4% Theoretical Threat | Not Applicable |
| CVE-2024-23454 | NONE0 | org.apache.hadoop:hadoop-common 2.5.1 fixed in 3.4.0 | 0.4% Theoretical Threat | Not Applicable |
| CVE-2024-23454 | NONE0 | org.apache.hadoop:hadoop-common 2.6.5 fixed in 3.4.0 | 0.4% Theoretical Threat | Not Applicable |
| CVE-2024-23454 | NONE0 | org.apache.hadoop:hadoop-common 2.7.7 fixed in 3.4.0 | 0.4% Theoretical Threat | Not Applicable |
| CVE-2022-47894 | NONE0 | org.apache.zeppelin:sap 0.9.0 fixed in 0.11.0 | 1.3% Low-Moderate Risk | Not Applicable |
| CVE-2024-31866 | NONE0 | org.apache.zeppelin:zeppelin-interpreter 0.9.0 fixed in 0.11.1 | 1.4% Low-Moderate Risk | Not Applicable |
| CVE-2024-31868 | NONE0 | org.apache.zeppelin:zeppelin-interpreter 0.9.0 fixed in 0.11.1 | 1.3% Low-Moderate Risk | Not Applicable |
| CVE-2024-31864 | NONE0 | org.apache.zeppelin:zeppelin-jdbc 0.9.0 fixed in 0.11.1 | 1.3% Low-Moderate Risk | Not Applicable |
| CVE-2024-31860 | NONE0 | org.apache.zeppelin:zeppelin-server 0.9.0 fixed in 0.11.0 | 1.4% Low-Moderate Risk | Not Applicable |
| CVE-2024-31865 | NONE0 | org.apache.zeppelin:zeppelin-server 0.9.0 fixed in 0.11.1 | 1.7% Low-Moderate Risk | Not Applicable |
| CVE-2024-31867 | NONE0 | org.apache.zeppelin:zeppelin-server 0.9.0 fixed in 0.11.1 | 1.8% Low-Moderate Risk | Not Applicable |
| CVE-2021-28656 | NONE0 | org.apache.zeppelin:zeppelin-web 0.9.0 No fix yet | 0.5% Theoretical Threat | Not Applicable |
| CVE-2024-41177 | NONE0 | org.apache.zeppelin:zeppelin-web 0.9.0 fixed in 0.12.0 | 0.6% Theoretical Threat | Not Applicable |
| GHSA-58qw-p7qm-5rvh | NONE0 | org.eclipse.jetty:jetty-xml 9.4.31.v20200723 fixed in 10.0.16, 11.0.16, 12.0.0, 9.4.52.v20230823 | — | Not Applicable |
| GHSA-jgpv-4h4c-xhw3 | NONE0 | Pillow 8.1.0 fixed in 8.1.2 | — | Not Applicable |
| GHSA-4fx9-vc88-q2xc | NONE0 | Pillow 8.1.0 fixed in 9.0.0 | — | Not Applicable |
| GHSA-gj48-438w-jh9v | NONE0 | bleach 3.3.0 fixed in 6.4.0 | — | Not Applicable |
| GHSA-8rfp-98v4-mmr6 | NONE0 | bleach 3.3.0 fixed in 6.4.0 | — | Not Applicable |
| GHSA-537c-gmf6-5ccf | NONE0 | cryptography 3.2.1 fixed in 48.0.1 | — | Not Applicable |
| GHSA-5cpq-8wj7-hf2v | NONE0 | cryptography 3.2.1 fixed in 41.0.0 | — | Not Applicable |
| GHSA-jm77-qphf-c4w8 | NONE0 | cryptography 3.2.1 fixed in 41.0.3 | — | Not Applicable |
| GHSA-v8gr-m533-ghj9 | NONE0 | cryptography 3.2.1 fixed in 41.0.4 | — | Not Applicable |
| CVE-2026-33310 | NONE0 | intake 0.6.0 No fix yet | 0.4% Theoretical Threat | Not Applicable |
| CVE-2025-30167 | NONE0 | jupyter-core 4.7.1 fixed in 5.8.1 | 0.2% Theoretical Threat | Not Applicable |
| GHSA-6v7p-g79w-8964 | NONE0 | msgpack 1.0.2 fixed in 1.2.1 | — | Not Applicable |
| CVE-2026-49853 | NONE0 | tornado 6.1 fixed in 6.5.6 | — | Not Applicable |
| CVE-2026-49855 | NONE0 | tornado 6.1 fixed in 6.5.6 | — | Not Applicable |
| GHSA-753j-mpmx-qq6g | NONE0 | tornado 6.1 fixed in 6.4.1 | — | Not Applicable |
| GHSA-78cv-mqj4-43f7 | NONE0 | tornado 6.1 fixed in 6.5.5 | — | Not Applicable |
| GHSA-pw6j-qg29-8w7f | NONE0 | tornado 6.1 fixed in 6.5.7 | — | Not Applicable |
| GHSA-qppv-j76h-2rpx | NONE0 | tornado 6.1 fixed in 6.3.3 | — | Not Applicable |
| GHSA-w235-7p84-xx57 | NONE0 | tornado 6.1 fixed in 6.4.1 | — | Not Applicable |
| CVE-2026-49854 | NONE0 | tornado 6.1 fixed in 6.5.6 | — | Not Applicable |
Want to check another image? Run a full scan with the Docker Security Scanner.