Vulnerability Reportbitnami/redis:latest

bitnami/redis:latest

DIGESTsha256:6e7a020f1f6504698a7272c58783bdc2c23588c49febbae5aca1bb8dfa10af25

Executive Summary

Threat ScoreSAFE• Reputable community image with 3.3B+ pulls and a trust score of 90 (RELIABLE)• Pinned by digest ensures immutability and supply chain integrity• All identified vulnerabilities are low severity (max exposed severity 5.35, max post-exploit severity 3.21)• No high-severity or critical vulnerabilities exist in the image

0/100SAFE

ReputationPOPULAR COMMUNITY• High Reputation Community Image (3340M+ pulls)• Pinned by digest (Immutable)

RELIABLE

This image is safe for production use. Although 6 exposed and 31 post-exploit vulnerabilities were detected, all are low severity (max CVSS 5.35) and pose no practical risk in typical deployments. The image is maintained by the trusted Bitnami team and enjoys massive community validation. No actionable threats were identified.

Vulnerabilities

Vulnerability Log

40 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-34181	MEDIUM5.35	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.2% Theoretical Threat	Directly Exposed
CVE-2026-42768	MEDIUM5.35	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.4% Theoretical Threat	Directly Exposed
CVE-2026-7383	MEDIUM4.67	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.3% Theoretical Threat	Directly Exposed
CVE-2026-27171	MEDIUM4.67	zlib 1.2.13-5.ph5 fixed in 1.3.2-1.ph5	0.2% Theoretical Threat	Directly Exposed
CVE-2026-34181	LOW3.21	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42768	LOW3.21	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.4% Theoretical Threat	Post-Exploit
CVE-2026-45446	LOW3.15	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.2% Theoretical Threat	Directly Exposed
CVE-2026-45447	LOW2.92	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	1.4% Low-Moderate Risk	Post-Exploit
CVE-2026-45447	LOW2.92	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	1.4% Low-Moderate Risk	Post-Exploit
CVE-2026-7383	LOW2.8	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.3% Theoretical Threat	Post-Exploit
CVE-2026-45445	LOW2.78	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.3% Theoretical Threat	Post-Exploit
CVE-2026-45445	LOW2.78	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.3% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	logger 2.41.4-2.ph5 fixed in 2.41.4-3.ph5	0.4% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	logger-bin 2.41.4-2.ph5 fixed in 2.41.4-3.ph5	0.4% Theoretical Threat	Post-Exploit
CVE-2026-42766	LOW2.7	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.6% Theoretical Threat	Post-Exploit
CVE-2026-42767	LOW2.7	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.3% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	util-linux 2.41.4-2.ph5 fixed in 2.41.4-3.ph5	0.4% Theoretical Threat	Post-Exploit
CVE-2026-34180	LOW2.55	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.5% Theoretical Threat	Post-Exploit
CVE-2026-34183	LOW2.29	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.5% Theoretical Threat	Post-Exploit
CVE-2026-34183	LOW2.29	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.5% Theoretical Threat	Post-Exploit
CVE-2026-34182	LOW2.26	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.2% Theoretical Threat	Post-Exploit
CVE-2026-34182	LOW2.26	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.2% Theoretical Threat	Post-Exploit
CVE-2026-45446	LOW1.89	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42764	LOW1.81	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.7% Theoretical Threat	Post-Exploit
CVE-2026-9076	LOW1.81	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42769	LOW1.81	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42770	LOW1.81	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42764	LOW1.81	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.7% Theoretical Threat	Post-Exploit
CVE-2026-9076	LOW1.81	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42769	LOW1.81	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42770	LOW1.81	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42766	LOW1.62	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.6% Theoretical Threat	Post-Exploit
CVE-2026-42767	LOW1.62	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.3% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW1.62	util-linux-libs 2.41.4-2.ph5 fixed in 2.41.4-3.ph5	0.4% Theoretical Threat	Post-Exploit
CVE-2026-34180	LOW1.53	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.5% Theoretical Threat	Post-Exploit
CVE-2026-42507	NONE0	stdlib v1.26.3 fixed in 1.25.11, 1.26.4	0.3% Theoretical Threat	Not Applicable
CVE-2026-42765	NONE0	openssl 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.4% Theoretical Threat	Not Applicable
CVE-2026-42765	NONE0	openssl-libs 3.5.6-3.ph5 fixed in 3.5.7-1.ph5	0.4% Theoretical Threat	Not Applicable
CVE-2026-42504	NONE0	stdlib v1.26.3 fixed in 1.25.11, 1.26.4	0.4% Theoretical Threat	Not Applicable
CVE-2026-27145	NONE0	stdlib v1.26.3 fixed in 1.25.11, 1.26.4	0.3% Theoretical Threat	Not Applicable