Vulnerability Reportbitnamilegacy/valkey-sentinel:8.1.3-debian-12-r3

Name: bitnamilegacy/valkey-sentinel:8.1.3-debian-12-r3 Security Vulnerability Report
Creator: BaseImage
Keywords: bitnamilegacy/valkey-sentinel:8.1.3-debian-12-r3, Docker security, vulnerability scan, CVE, container security, SBOM

bitnamilegacy/valkey-sentinel:8.1.3-debian-12-r3

DIGESTsha256:340e6d0bc0c6b7dcd790ca4c3bf86aba432e879cf5949bedcb87c8a256901acd

Executive Summary

CAUTION

This image carries significant risk; production deployment is highly discouraged without strict compensating controls. A remote attacker could bypass critical certificate validation, enabling spoofing or man-in-the-middle attacks against the Valkey Sentinel's secure communications (CVE-2026-42013). Furthermore, a vulnerability in Perl's Archive::Tar module (CVE-2026-42497) could allow attackers to write files outside the intended extraction directory. The image also originates from an unverified, community publisher, adding to the overall risk. With a total of 10 vulnerabilities rated 7.0 or higher, remediation is strongly advised before production use.

Threat Score

74/100

CAUTION

The image is from an "UNVERIFIED" community publisher, "bitnamilegacy", with a "WARNING" status, raising trust concerns.
A critical certificate validation bypass (CVE-2026-42013, severity 8.2) in `libgnutls30` could enable man-in-the-middle attacks against this network-facing service.
An arbitrary file write vulnerability (CVE-2026-42497, severity 7.5) in `libperl5.36` allows extraction of hardlinks to attacker-controlled paths.
The image exposes 10 vulnerabilities with a severity of 7.0 or higher, including several Denial of Service flaws, and 31 vulnerabilities with a severity of 6.0 or higher, with a maximum severity of 8.2.

Reputation

UNVERIFIED

bitnamilegacy

COMMUNITY

Community Image with low/unknown reputation
Pinned by digest (Immutable)

BaseImage/

bitnamilegacy/valkey-sentinel:8.1.3-debian-12-r3

Hardened

Grade

A+

Vulns

Verified & secured for production

Vulnerabilities

Vulnerability Log

268 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-42013	HIGH8.2	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u7	—	Directly ExposedContext importance: HIGH
CVE-2026-48962	HIGH7.8	libperl5.36 5.36.0-7+deb12u2 No fix yet	—	Directly Exposed
CVE-2018-20796	HIGH7.5	libc6 2.36-9+deb12u10 No fix yet	1.5% Low-Moderate Risk	Directly Exposed
CVE-2026-42009	HIGH7.5	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u7	—	Directly Exposed
CVE-2026-42497	HIGH7.5	libperl5.36 5.36.0-7+deb12u2 No fix yet	—	Directly Exposed
CVE-2026-9538	HIGH7.5	libperl5.36 5.36.0-7+deb12u2 No fix yet	—	Directly Exposed
CVE-2019-1010023	HIGH7.48	libc-bin 2.36-9+deb12u10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2019-1010023	HIGH7.48	libc6 2.36-9+deb12u10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-34182	HIGH7.4	libssl3 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Directly Exposed
CVE-2026-42012	HIGH7.1	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u7	—	Directly Exposed
CVE-2026-0861	MEDIUM6.88	libc-bin 2.36-9+deb12u10 fixed in 2.36-9+deb12u14	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-0861	MEDIUM6.88	libc6 2.36-9+deb12u10 fixed in 2.36-9+deb12u14	<0.1% Theoretical Threat	Directly Exposed
CVE-2023-31486	MEDIUM6.88	libperl5.36 5.36.0-7+deb12u2 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2026-28387	MEDIUM6.88	libssl3 3.0.17-1~deb12u2 fixed in 3.0.19-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-29111	MEDIUM6.63	libsystemd0 252.38-1~deb12u1 fixed in 252.39-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-29111	MEDIUM6.63	libudev1 252.38-1~deb12u1 fixed in 252.39-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5260	MEDIUM6.56	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u7	—	Directly ExposedContext importance: MEDIUM
CVE-2019-9192	MEDIUM6.38	libc-bin 2.36-9+deb12u10 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2019-9192	MEDIUM6.38	libc6 2.36-9+deb12u10 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-41989	MEDIUM6.38	libgcrypt20 1.10.1-3 fixed in 1.10.1-3+deb12u1	<0.1% Theoretical Threat	Directly Exposed
CVE-2018-6829	MEDIUM6.38	libgcrypt20 1.10.1-3 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-33846	MEDIUM6.38	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u7	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-69421	MEDIUM6.38	libssl3 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-28388	MEDIUM6.38	libssl3 3.0.17-1~deb12u2 fixed in 3.0.19-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-28389	MEDIUM6.38	libssl3 3.0.17-1~deb12u2 fixed in 3.0.19-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-28390	MEDIUM6.38	libssl3 3.0.17-1~deb12u2 fixed in 3.0.19-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3833	MEDIUM6.29	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u7	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-42011	MEDIUM6.29	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u7	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-69419	MEDIUM6.29	libssl3 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-33845	MEDIUM6.18	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u7	<0.1% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2018-20796	MEDIUM6	libc-bin 2.36-9+deb12u10 No fix yet	1.5% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2025-4802	MEDIUM5.95	libc-bin 2.36-9+deb12u10 fixed in 2.36-9+deb12u11	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-4802	MEDIUM5.95	libc6 2.36-9+deb12u10 fixed in 2.36-9+deb12u11	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-4878	MEDIUM5.95	libcap2 1:2.66-4+deb12u1 fixed in 1:2.66-4+deb12u3	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-42770	MEDIUM5.9	libssl3 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Directly Exposed
CVE-2026-9076	MEDIUM5.9	libssl3 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Directly Exposed
CVE-2026-4105	MEDIUM5.7	libsystemd0 252.38-1~deb12u1 fixed in 252.39-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-4105	MEDIUM5.7	libudev1 252.38-1~deb12u1 fixed in 252.39-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-4437	MEDIUM5.52	libc-bin 2.36-9+deb12u10 fixed in 2.36-9+deb12u14	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc-bin 2.36-9+deb12u10 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-4437	MEDIUM5.52	libc6 2.36-9+deb12u10 fixed in 2.36-9+deb12u14	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc6 2.36-9+deb12u10 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-7383	MEDIUM5.5	libssl3 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Directly Exposed
CVE-2026-45445	MEDIUM5.46	openssl 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Post-Exploit
CVE-2026-42496	MEDIUM5.46	perl 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-42496	MEDIUM5.46	perl-base 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-42496	MEDIUM5.46	perl-modules-5.36 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-40225	MEDIUM5.44	libsystemd0 252.38-1~deb12u1 fixed in 252.39-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40226	MEDIUM5.44	libsystemd0 252.38-1~deb12u1 fixed in 252.39-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40225	MEDIUM5.44	libudev1 252.38-1~deb12u1 fixed in 252.39-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40226	MEDIUM5.44	libudev1 252.38-1~deb12u1 fixed in 252.39-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-42015	MEDIUM5.3	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u7	—	Directly Exposed
CVE-2026-42766	MEDIUM5.3	libssl3 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Directly Exposed
CVE-2026-42767	MEDIUM5.3	libssl3 3.0.17-1~deb12u2 No fix yet	—	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libblkid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libmount1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libsmartcols1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libuuid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc-bin 2.36-9+deb12u10 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-15281	MEDIUM5.02	libc-bin 2.36-9+deb12u10 fixed in 2.36-9+deb12u14	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc6 2.36-9+deb12u10 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-15281	MEDIUM5.02	libc6 2.36-9+deb12u10 fixed in 2.36-9+deb12u14	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-2236	MEDIUM5.02	libgcrypt20 1.10.1-3 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2025-40909	MEDIUM5.02	libperl5.36 5.36.0-7+deb12u2 fixed in 5.36.0-7+deb12u3	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-31790	MEDIUM5.02	libssl3 3.0.17-1~deb12u2 fixed in 3.0.19-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-69420	MEDIUM5.02	libssl3 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	0.5% Theoretical Threat	Directly Exposed
CVE-2026-22796	MEDIUM5.02	libssl3 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	0.2% Theoretical Threat	Directly Exposed
CVE-2025-13151	MEDIUM5.02	libtasn1-6 4.19.0-2+deb12u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-31789	MEDIUM5	openssl 3.0.17-1~deb12u2 fixed in 3.0.19-1~deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-42250	MEDIUM5	libbz2-1.0 1.0.8-5+b1 No fix yet	—	Directly Exposed
CVE-2026-34180	MEDIUM5	libssl3 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Directly Exposed
CVE-2026-45447	MEDIUM4.86	openssl 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Post-Exploit
CVE-2023-31484	MEDIUM4.86	perl 5.36.0-7+deb12u2 fixed in 5.36.0-7+deb12u3	1.3% Low-Moderate Risk	Post-Exploit
CVE-2023-31484	MEDIUM4.86	perl-base 5.36.0-7+deb12u2 fixed in 5.36.0-7+deb12u3	1.3% Low-Moderate Risk	Post-Exploit
CVE-2023-31484	MEDIUM4.86	perl-modules-5.36 5.36.0-7+deb12u2 fixed in 5.36.0-7+deb12u3	1.3% Low-Moderate Risk	Post-Exploit
CVE-2025-9230	MEDIUM4.76	libssl3 3.0.17-1~deb12u2 fixed in 3.0.17-1~deb12u3	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-48962	MEDIUM4.68	perl 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-48962	MEDIUM4.68	perl-base 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-48962	MEDIUM4.68	perl-modules-5.36 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2022-27943	MEDIUM4.67	gcc-12-base 12.2.0-14+deb12u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libblkid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libgcc-s1 12.2.0-14+deb12u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libmount1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libsmartcols1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-22795	MEDIUM4.67	libssl3 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libstdc++6 12.2.0-14+deb12u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libuuid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27171	MEDIUM4.67	zlib1g 1:1.2.13.dfsg-1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-42497	MEDIUM4.5	perl 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-9538	MEDIUM4.5	perl 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-42497	MEDIUM4.5	perl-base 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-9538	MEDIUM4.5	perl-base 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-42497	MEDIUM4.5	perl-modules-5.36 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-9538	MEDIUM4.5	perl-modules-5.36 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-3184	MEDIUM4.5	libblkid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-0915	MEDIUM4.5	libc-bin 2.36-9+deb12u10 fixed in 2.36-9+deb12u14	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-4046	MEDIUM4.5	libc-bin 2.36-9+deb12u10 fixed in 2.36-9+deb12u14	<0.1% Theoretical Threat	Directly Exposed
CVE-2019-1010024	MEDIUM4.5	libc-bin 2.36-9+deb12u10 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2019-1010025	MEDIUM4.5	libc-bin 2.36-9+deb12u10 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-0915	MEDIUM4.5	libc6 2.36-9+deb12u10 fixed in 2.36-9+deb12u14	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-4046	MEDIUM4.5	libc6 2.36-9+deb12u10 fixed in 2.36-9+deb12u14	<0.1% Theoretical Threat	Directly Exposed
CVE-2019-1010024	MEDIUM4.5	libc6 2.36-9+deb12u10 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2019-1010025	MEDIUM4.5	libc6 2.36-9+deb12u10 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2025-14831	MEDIUM4.5	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u6	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-34743	MEDIUM4.5	liblzma5 5.4.1-1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libmount1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libsmartcols1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2023-31437	MEDIUM4.5	libsystemd0 252.38-1~deb12u1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-31438	MEDIUM4.5	libsystemd0 252.38-1~deb12u1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2023-31439	MEDIUM4.5	libsystemd0 252.38-1~deb12u1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2023-31437	MEDIUM4.5	libudev1 252.38-1~deb12u1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-31438	MEDIUM4.5	libudev1 252.38-1~deb12u1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2023-31439	MEDIUM4.5	libudev1 252.38-1~deb12u1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libuuid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-34182	MEDIUM4.44	openssl 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Post-Exploit
CVE-2011-3389	MEDIUM4.3	libgnutls30 3.7.9-2+deb12u5 No fix yet	3.8% Low-Moderate Risk	Directly Exposed
CVE-2026-5450	MEDIUM4.25	libc-bin 2.36-9+deb12u10 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	libc-bin 2.36-9+deb12u10 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	libc6 2.36-9+deb12u10 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	libc6 2.36-9+deb12u10 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-28387	MEDIUM4.13	openssl 3.0.17-1~deb12u2 fixed in 3.0.19-1~deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2023-31486	MEDIUM4.13	perl 5.36.0-7+deb12u2 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2023-31486	MEDIUM4.13	perl-base 5.36.0-7+deb12u2 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2023-31486	MEDIUM4.13	perl-modules-5.36 5.36.0-7+deb12u2 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2019-1010022	MEDIUM4	libc-bin 2.36-9+deb12u10 No fix yet	0.1% Theoretical Threat	Post-ExploitContext importance: MEDIUM
CVE-2019-1010022	MEDIUM4	libc6 2.36-9+deb12u10 No fix yet	0.1% Theoretical Threat	Post-ExploitContext importance: MEDIUM
CVE-2026-27456	MEDIUM4	libblkid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libmount1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libsmartcols1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-68160	MEDIUM4	libssl3 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libuuid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-69421	LOW3.82	openssl 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-28388	LOW3.82	openssl 3.0.17-1~deb12u2 fixed in 3.0.19-1~deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-28389	LOW3.82	openssl 3.0.17-1~deb12u2 fixed in 3.0.19-1~deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-28390	LOW3.82	openssl 3.0.17-1~deb12u2 fixed in 3.0.19-1~deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-69419	LOW3.77	openssl 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW3.7	libapt-pkg6.0 2.6.1 No fix yet	1.5% Low-Moderate Risk	Directly Exposed
CVE-2026-5419	LOW3.7	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u7	—	Directly Exposed
CVE-2026-45446	LOW3.7	libssl3 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Directly Exposed
CVE-2005-2541	LOW3.6	tar 1.34+dfsg-1.2+deb12u1 No fix yet	3.8% Low-Moderate Risk	Post-Exploit
CVE-2025-68973	LOW3.57	gpgv 2.2.40-1.1 fixed in 2.2.40-1.1+deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-8058	LOW3.57	libc-bin 2.36-9+deb12u10 fixed in 2.36-9+deb12u13	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-8058	LOW3.57	libc6 2.36-9+deb12u10 fixed in 2.36-9+deb12u13	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-42770	LOW3.54	openssl 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Post-Exploit
CVE-2026-9076	LOW3.54	openssl 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Post-Exploit
CVE-2026-8376	LOW3.53	libperl5.36 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2025-15467	LOW3.53	libssl3 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	2.6% Low-Moderate Risk	Post-Exploit
CVE-2025-15467	LOW3.53	openssl 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	2.6% Low-Moderate Risk	Post-Exploit
CVE-2026-8376	LOW3.53	perl 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-8376	LOW3.53	perl-base 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-8376	LOW3.53	perl-modules-5.36 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2023-45853	LOW3.53	zlib1g 1:1.2.13.dfsg-1 No fix yet	1.4% Low-Moderate Risk	Post-Exploit
CVE-2010-4756	LOW3.4	libc-bin 2.36-9+deb12u10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-4438	LOW3.4	libc-bin 2.36-9+deb12u10 fixed in 2.36-9+deb12u14	<0.1% Theoretical Threat	Directly Exposed
CVE-2010-4756	LOW3.4	libc6 2.36-9+deb12u10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-4438	LOW3.4	libc6 2.36-9+deb12u10 fixed in 2.36-9+deb12u14	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-9820	LOW3.4	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u6	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-69418	LOW3.4	libssl3 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	<0.1% Theoretical Threat	Directly Exposed
CVE-2016-2781	LOW3.31	coreutils 9.1-1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-7383	LOW3.3	openssl 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Post-Exploit
CVE-2026-42496	LOW3.28	libperl5.36 5.36.0-7+deb12u2 No fix yet	—	Post-Exploit
CVE-2026-45445	LOW3.28	libssl3 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Post-Exploit
CVE-2026-5958	LOW3.21	sed 4.9-1 fixed in 4.9-1+deb12u1	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-42766	LOW3.18	openssl 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Post-Exploit
CVE-2026-42767	LOW3.18	openssl 3.0.17-1~deb12u2 No fix yet	—	Post-Exploit
CVE-2025-14104	LOW3.11	bsdutils 1:2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	mount 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	util-linux 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	util-linux-extra 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-31790	LOW3.01	openssl 3.0.17-1~deb12u2 fixed in 3.0.19-1~deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-69420	LOW3.01	openssl 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	0.5% Theoretical Threat	Post-Exploit
CVE-2026-22796	LOW3.01	openssl 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	0.2% Theoretical Threat	Post-Exploit
CVE-2025-40909	LOW3.01	perl 5.36.0-7+deb12u2 fixed in 5.36.0-7+deb12u3	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-40909	LOW3.01	perl-base 5.36.0-7+deb12u2 fixed in 5.36.0-7+deb12u3	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-40909	LOW3.01	perl-modules-5.36 5.36.0-7+deb12u2 fixed in 5.36.0-7+deb12u3	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-42010	LOW3	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u7	0.2% Theoretical Threat	Post-Exploit
CVE-2026-31789	LOW3	libssl3 3.0.17-1~deb12u2 fixed in 3.0.19-1~deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-34180	LOW3	openssl 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Post-Exploit
CVE-2023-31484	LOW2.92	libperl5.36 5.36.0-7+deb12u2 fixed in 5.36.0-7+deb12u3	1.3% Low-Moderate Risk	Post-Exploit
CVE-2026-45447	LOW2.92	libssl3 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Post-Exploit
CVE-2025-9230	LOW2.86	openssl 3.0.17-1~deb12u2 fixed in 3.0.17-1~deb12u3	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	bsdutils 1:2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	mount 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-22795	LOW2.8	openssl 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-5704	LOW2.8	tar 1.34+dfsg-1.2+deb12u1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	util-linux 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	util-linux-extra 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW2.8	libperl5.36 5.36.0-7+deb12u2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-4016	LOW2.8	libproc2-0 2:4.0.2-3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2013-4392	LOW2.8	libsystemd0 252.38-1~deb12u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libsystemd0 252.38-1~deb12u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2013-4392	LOW2.8	libudev1 252.38-1~deb12u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libudev1 252.38-1~deb12u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	LOW2.7	bsdutils 1:2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	mount 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	util-linux 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	util-linux-extra 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-9232	LOW2.63	libssl3 3.0.17-1~deb12u2 fixed in 3.0.17-1~deb12u3	<0.1% Theoretical Threat	Directly Exposed
CVE-2007-5686	LOW2.5	login 1:4.13+dfsg1-1+deb12u1 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2007-5686	LOW2.5	passwd 1:4.13+dfsg1-1+deb12u1 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	bsdutils 1:2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2017-18018	LOW2.4	coreutils 9.1-1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-30258	LOW2.4	gpgv 2.2.40-1.1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-68972	LOW2.4	gpgv 2.2.40-1.1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	mount 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-68160	LOW2.4	openssl 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux-extra 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-5278	LOW2.24	coreutils 9.1-1 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW2.22	apt 2.6.1 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2026-45446	LOW2.22	openssl 3.0.17-1~deb12u2 fixed in 3.0.20-1~deb12u2	—	Post-Exploit
CVE-2024-56433	LOW2.16	login 1:4.13+dfsg1-1+deb12u1 No fix yet	4.5% Low-Moderate Risk	Post-Exploit
CVE-2024-56433	LOW2.16	passwd 1:4.13+dfsg1-1+deb12u1 No fix yet	4.5% Low-Moderate Risk	Post-Exploit
CVE-2025-69418	LOW2.04	openssl 3.0.17-1~deb12u2 fixed in 3.0.18-1~deb12u2	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-3219	LOW1.68	gpgv 2.2.40-1.1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW1.68	perl 5.36.0-7+deb12u2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW1.68	perl-base 5.36.0-7+deb12u2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW1.68	perl-modules-5.36 5.36.0-7+deb12u2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2023-4016	LOW1.68	procps 2:4.0.2-3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-9232	LOW1.58	openssl 3.0.17-1~deb12u2 fixed in 3.0.17-1~deb12u3	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-69720	NONE0	libncursesw6 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6020	NONE0	libpam-modules 1.5.2-6+deb12u1 fixed in 1.5.2-6+deb12u2	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6020	NONE0	libpam-modules-bin 1.5.2-6+deb12u1 fixed in 1.5.2-6+deb12u2	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6020	NONE0	libpam-runtime 1.5.2-6+deb12u1 fixed in 1.5.2-6+deb12u2	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6020	NONE0	libpam0g 1.5.2-6+deb12u1 fixed in 1.5.2-6+deb12u2	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	libtinfo6 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	ncurses-base 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	libncursesw6 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	libtinfo6 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	ncurses-base 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2024-22365	NONE0	libpam-modules 1.5.2-6+deb12u1 fixed in 1.5.2-6+deb12u2	<0.1% Theoretical Threat	Not Applicable
CVE-2024-22365	NONE0	libpam-modules-bin 1.5.2-6+deb12u1 fixed in 1.5.2-6+deb12u2	<0.1% Theoretical Threat	Not Applicable
CVE-2024-22365	NONE0	libpam-runtime 1.5.2-6+deb12u1 fixed in 1.5.2-6+deb12u2	<0.1% Theoretical Threat	Not Applicable
CVE-2024-22365	NONE0	libpam0g 1.5.2-6+deb12u1 fixed in 1.5.2-6+deb12u2	<0.1% Theoretical Threat	Not Applicable
CVE-2024-10041	NONE0	libpam-modules 1.5.2-6+deb12u1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2024-10041	NONE0	libpam-modules-bin 1.5.2-6+deb12u1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2024-10041	NONE0	libpam-runtime 1.5.2-6+deb12u1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2024-10041	NONE0	libpam0g 1.5.2-6+deb12u1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	libncursesw6 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	libtinfo6 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	ncurses-base 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
TEMP-0841856-B18BAF	NONE0	bash 5.2.15-2+b8 No fix yet	—	Not Applicable
CVE-2026-2219	NONE0	dpkg 1.21.22 fixed in 1.21.23	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6297	NONE0	dpkg 1.21.22 fixed in 1.21.23	0.2% Theoretical Threat	Not Applicable
CVE-2026-42014	NONE0	libgnutls30 3.7.9-2+deb12u5 fixed in 3.7.9-2+deb12u7	—	Not Applicable
CVE-2026-48959	NONE0	libperl5.36 5.36.0-7+deb12u2 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	libperl5.36 5.36.0-7+deb12u2 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	libperl5.36 5.36.0-7+deb12u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-48961	NONE0	libperl5.36 5.36.0-7+deb12u2 No fix yet	—	Not Applicable
CVE-2025-27587	NONE0	libssl3 3.0.17-1~deb12u2 No fix yet	0.2% Theoretical Threat	Not Applicable
TEMP-0628843-DBAD28	NONE0	login 1:4.13+dfsg1-1+deb12u1 No fix yet	—	Not Applicable
CVE-2025-27587	NONE0	openssl 3.0.17-1~deb12u2 No fix yet	0.2% Theoretical Threat	Not Applicable
TEMP-0628843-DBAD28	NONE0	passwd 1:4.13+dfsg1-1+deb12u1 No fix yet	—	Not Applicable
CVE-2026-48959	NONE0	perl 5.36.0-7+deb12u2 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	perl 5.36.0-7+deb12u2 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	perl 5.36.0-7+deb12u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-48961	NONE0	perl 5.36.0-7+deb12u2 No fix yet	—	Not Applicable
CVE-2026-48959	NONE0	perl-base 5.36.0-7+deb12u2 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	perl-base 5.36.0-7+deb12u2 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	perl-base 5.36.0-7+deb12u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-48961	NONE0	perl-base 5.36.0-7+deb12u2 No fix yet	—	Not Applicable
CVE-2026-48959	NONE0	perl-modules-5.36 5.36.0-7+deb12u2 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	perl-modules-5.36 5.36.0-7+deb12u2 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	perl-modules-5.36 5.36.0-7+deb12u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-48961	NONE0	perl-modules-5.36 5.36.0-7+deb12u2 No fix yet	—	Not Applicable
TEMP-0517018-A83CE6	NONE0	sysv-rc 3.06-4 No fix yet	—	Not Applicable
TEMP-0517018-A83CE6	NONE0	sysvinit-utils 3.06-4 No fix yet	—	Not Applicable
TEMP-0290435-0B57B5	NONE0	tar 1.34+dfsg-1.2+deb12u1 No fix yet	—	Not Applicable