Vulnerability Reportcockroachdb/cockroach:v25.4.11

cockroachdb/cockroach:latest-v25.4cockroachdb/cockroach:v25.4.11
DIGESTsha256:c39f01df201a6c1b303c84433288d6a6814e9fbb7e46a1efc2aa842a6bf685ae

Executive Summary

Threat Score
50/100CAUTION
Reputation
RELIABLE

This image carries significant risk; production deployment is highly discouraged without strict compensating controls. An attacker could cause denial of service through multiple vectors (e.g., HTTP/2, TLS, DNS) or bypass TLS certificate validation during session resumption under specific configurations (CVE-2025-68121). The most impactful findings affect Go standard library and system libraries, many of which are remotely exploitable without authentication. Note that CVE-2025-68121 requires the application to mutate TLS configuration between handshakes, reducing its practical applicability. Rebuilding the image with patched base layers is recommended.

Vulnerabilities

Vulnerability Log

179 total
CVE IDAdjusted SeverityPackageExploit ProbabilityRisk Context
CVE-2025-68121MEDIUM6.8
stdlib
v1.23.12
fixed in 1.24.13, 1.25.7, 1.26.0-rc.3
0.8%
Theoretical Threat
Directly ExposedContext importance: MEDIUM
CVE-2026-41989MEDIUM6.38
libgcrypt
1.10.0-11.el9
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-6732MEDIUM6.38
libxml2
2.9.13-14.el9_7
No fix yet
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-34183MEDIUM6.38
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-61726MEDIUM6.38
stdlib
v1.23.12
fixed in 1.24.12, 1.25.6
0.8%
Theoretical Threat
Directly ExposedContext importance: HIGH
CVE-2025-61729MEDIUM6.38
stdlib
v1.23.12
fixed in 1.24.11, 1.25.5
0.5%
Theoretical Threat
Directly ExposedContext importance: HIGH
CVE-2026-32283MEDIUM6.38
stdlib
v1.23.12
fixed in 1.25.9, 1.26.2
0.4%
Theoretical Threat
Directly ExposedContext importance: HIGH
CVE-2026-33811MEDIUM6.38
stdlib
v1.23.12
fixed in 1.25.10, 1.26.3
0.5%
Theoretical Threat
Directly ExposedContext importance: HIGH
CVE-2026-33814MEDIUM6.38
stdlib
v1.23.12
fixed in 1.25.10, 1.26.3
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-39820MEDIUM6.38
stdlib
v1.23.12
fixed in 1.25.10, 1.26.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-39836MEDIUM6.38
stdlib
v1.23.12
fixed in 1.25.10, 1.26.3
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-34182MEDIUM6.29
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-44604MEDIUM5.95
rpm-libs
4.16.1.3-40.el9
No fix yet
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-13151MEDIUM5.9
libtasn1
4.16.0-9.el9
No fix yet
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-41996MEDIUM5.9
openssl-libs
1:3.5.5-3.el9_8
No fix yet
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2026-22185MEDIUM5.78
openldap
2.6.8-4.el9
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-4105MEDIUM5.7
systemd-libs
252-67.el9_8.2
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2025-5915MEDIUM5.61
libarchive
3.5.3-9.el9_7
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-5918MEDIUM5.61
libarchive
3.5.3-9.el9_7
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-6238MEDIUM5.52
glibc
2.34-270.el9_8
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-6238MEDIUM5.52
glibc-common
2.34-270.el9_8
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-4426MEDIUM5.52
libarchive
3.5.3-9.el9_7
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-9149MEDIUM5.52
libsolv
0.7.24-5.el9_8
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-9150MEDIUM5.52
libsolv
0.7.24-5.el9_8
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2023-45322MEDIUM5.52
libxml2
2.9.13-14.el9_7
No fix yet
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-2673MEDIUM5.52
openssl-fips-provider
3.0.7-8.el9
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-2673MEDIUM5.52
openssl-fips-provider-so
3.0.7-8.el9
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-2673MEDIUM5.52
openssl-libs
1:3.5.5-3.el9_8
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-61727MEDIUM5.52
stdlib
v1.23.12
fixed in 1.24.11, 1.25.5
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-34459MEDIUM5.5
libxml2
2.9.13-14.el9_7
No fix yet
2.3%
Low-Moderate Risk
Directly Exposed
CVE-2026-32282MEDIUM5.44
stdlib
v1.23.12
fixed in 1.25.9, 1.26.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-34181MEDIUM5.35
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-42768MEDIUM5.35
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-1757MEDIUM5.27
libxml2
2.9.13-14.el9_7
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-32289MEDIUM5.18
stdlib
v1.23.12
fixed in 1.25.9, 1.26.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-25679MEDIUM5.1
stdlib
v1.23.12
fixed in 1.25.8, 1.26.1
0.5%
Theoretical Threat
Directly ExposedContext importance: MEDIUM
CVE-2026-32280MEDIUM5.1
stdlib
v1.23.12
fixed in 1.25.9, 1.26.2
0.4%
Theoretical Threat
Directly ExposedContext importance: MEDIUM
CVE-2025-58183MEDIUM5.1
stdlib
v1.23.12
fixed in 1.24.8, 1.25.2
0.4%
Theoretical Threat
Directly ExposedContext importance: MEDIUM
CVE-2025-61728MEDIUM5.1
stdlib
v1.23.12
fixed in 1.24.12, 1.25.6
0.6%
Theoretical Threat
Directly ExposedContext importance: MEDIUM
CVE-2026-5435MEDIUM5.02
glibc
2.34-270.el9_8
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-5435MEDIUM5.02
glibc-common
2.34-270.el9_8
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-0990MEDIUM5.02
libxml2
2.9.13-14.el9_7
No fix yet
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-31790MEDIUM5.02
openssl-fips-provider
3.0.7-8.el9
No fix yet
1.0%
Theoretical Threat
Directly Exposed
CVE-2026-31790MEDIUM5.02
openssl-fips-provider-so
3.0.7-8.el9
No fix yet
1.0%
Theoretical Threat
Directly Exposed
CVE-2026-42764MEDIUM5.02
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-42769MEDIUM5.02
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42770MEDIUM5.02
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-9076MEDIUM5.02
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-31789MEDIUM5
openssl-libs
1:3.5.5-3.el9_8
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-5916MEDIUM4.76
libarchive
3.5.3-9.el9_7
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-60753MEDIUM4.67
libarchive
3.5.3-9.el9_7
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-5745MEDIUM4.67
libarchive
3.5.3-9.el9_7
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-1632MEDIUM4.67
libarchive
3.5.3-9.el9_7
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2021-46195MEDIUM4.67
libgcc
11.5.0-14.el9
No fix yet
0.8%
Theoretical Threat
Directly Exposed
CVE-2022-27943MEDIUM4.67
libgcc
11.5.0-14.el9
No fix yet
0.9%
Theoretical Threat
Directly Exposed
CVE-2021-46195MEDIUM4.67
libstdc++
11.5.0-14.el9
No fix yet
0.8%
Theoretical Threat
Directly Exposed
CVE-2022-27943MEDIUM4.67
libstdc++
11.5.0-14.el9
No fix yet
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-7383MEDIUM4.67
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-0232MEDIUM4.67
sqlite-libs
3.34.1-10.el9_8
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-27171MEDIUM4.67
zlib
1.2.11-40.el9
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-32288MEDIUM4.67
stdlib
v1.23.12
fixed in 1.25.9, 1.26.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-1489MEDIUM4.59
glib2
2.68.4-19.el9_8.1
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-27142MEDIUM4.59
stdlib
v1.23.12
fixed in 1.25.8, 1.26.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-39826MEDIUM4.59
stdlib
v1.23.12
fixed in 1.25.10, 1.26.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-27113MEDIUM4.5
libxml2
2.9.13-14.el9_7
No fix yet
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2023-30571MEDIUM4.5
libarchive
3.5.3-9.el9_7
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-42766MEDIUM4.5
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42767MEDIUM4.5
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-34743MEDIUM4.5
xz-libs
5.2.5-8.el9_0
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-47912MEDIUM4.5
stdlib
v1.23.12
fixed in 1.24.8, 1.25.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-58185MEDIUM4.5
stdlib
v1.23.12
fixed in 1.24.8, 1.25.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-58187MEDIUM4.5
stdlib
v1.23.12
fixed in 1.24.9, 1.25.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-58188MEDIUM4.5
stdlib
v1.23.12
fixed in 1.24.8, 1.25.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-58189MEDIUM4.5
stdlib
v1.23.12
fixed in 1.24.8, 1.25.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-61723MEDIUM4.5
stdlib
v1.23.12
fixed in 1.24.8, 1.25.2
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-61724MEDIUM4.5
stdlib
v1.23.12
fixed in 1.24.8, 1.25.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-61725MEDIUM4.5
stdlib
v1.23.12
fixed in 1.24.8, 1.25.2
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-61730MEDIUM4.5
stdlib
v1.23.12
fixed in 1.24.12, 1.25.6
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42507MEDIUM4.5
stdlib
v1.23.12
fixed in 1.25.11, 1.26.4
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-58186MEDIUM4.5
stdlib
v1.23.12
fixed in 1.24.8, 1.25.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-42250MEDIUM4.25
bzip2-libs
1.0.8-11.el9
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-5450MEDIUM4.25
glibc
2.34-270.el9_8
No fix yet
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-5928MEDIUM4.25
glibc
2.34-270.el9_8
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-5450MEDIUM4.25
glibc-common
2.34-270.el9_8
No fix yet
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-5928MEDIUM4.25
glibc-common
2.34-270.el9_8
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-11850MEDIUM4.25
krb5-libs
1.21.1-10.el9_8
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-5917MEDIUM4.25
libarchive
3.5.3-9.el9_7
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-34180MEDIUM4.25
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-28387MEDIUM4.13
openssl-libs
1:3.5.5-3.el9_8
No fix yet
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libblkid
2.37.4-25.el9
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libmount
2.37.4-25.el9
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libsmartcols
2.37.4-25.el9
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libuuid
2.37.4-25.el9
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2024-13176MEDIUM4
openssl-libs
1:3.5.5-3.el9_8
No fix yet
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-28388LOW3.83
openssl-libs
1:3.5.5-3.el9_8
No fix yet
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-32281LOW3.83
stdlib
v1.23.12
fixed in 1.25.9, 1.26.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2023-4156LOW3.62
gawk
5.1.0-6.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2005-2541LOW3.6
tar
2:1.34-11.el9
No fix yet
4.0%
Low-Moderate Risk
Post-Exploit
CVE-2026-44604LOW3.57
rpm
4.16.1.3-40.el9
No fix yet
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-1484LOW3.57
glib2
2.68.4-19.el9_8.1
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-11053LOW3.54
curl-minimal
7.76.1-40.el9
No fix yet
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2024-11053LOW3.54
libcurl-minimal
7.76.1-40.el9
No fix yet
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2025-13034LOW3.47
curl-minimal
7.76.1-40.el9
No fix yet
0.2%
Theoretical Threat
Post-Exploit
CVE-2026-1965LOW3.47
curl-minimal
7.76.1-40.el9
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2025-13034LOW3.47
libcurl-minimal
7.76.1-40.el9
No fix yet
0.2%
Theoretical Threat
Post-Exploit
CVE-2026-1965LOW3.47
libcurl-minimal
7.76.1-40.el9
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-3784LOW3.31
curl-minimal
7.76.1-40.el9
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-5545LOW3.31
curl-minimal
7.76.1-40.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-6429LOW3.31
curl-minimal
7.76.1-40.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2025-14524LOW3.31
curl-minimal
7.76.1-40.el9
No fix yet
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-3784LOW3.31
libcurl-minimal
7.76.1-40.el9
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-5545LOW3.31
libcurl-minimal
7.76.1-40.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-6429LOW3.31
libcurl-minimal
7.76.1-40.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2025-14524LOW3.31
libcurl-minimal
7.76.1-40.el9
No fix yet
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-33056LOW3.31
tar
2:1.34-11.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-3805LOW3.21
curl-minimal
7.76.1-40.el9
No fix yet
0.7%
Theoretical Threat
Post-Exploit
CVE-2026-3805LOW3.21
libcurl-minimal
7.76.1-40.el9
No fix yet
0.7%
Theoretical Threat
Post-Exploit
CVE-2026-5958LOW3.21
sed
4.8-10.el9
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-3360LOW3.15
glib2
2.68.4-19.el9_8.1
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-7039LOW3.15
glib2
2.68.4-19.el9_8.1
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-0988LOW3.15
glib2
2.68.4-19.el9_8.1
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-0989LOW3.15
libxml2
2.9.13-14.el9_7
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-45446LOW3.15
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-9232LOW3.1
openssl-libs
1:3.5.5-3.el9_8
No fix yet
2.0%
Low-Moderate Risk
Directly Exposed
CVE-2026-45447LOW2.92
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2026-3783LOW2.91
curl-minimal
7.76.1-40.el9
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-3783LOW2.91
libcurl-minimal
7.76.1-40.el9
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-24883LOW2.8
gnupg2
2.3.3-5.el9_7
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-5704LOW2.8
tar
2:1.34-11.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-41990LOW2.8
libgcrypt
1.10.0-11.el9
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-70873LOW2.8
sqlite-libs
3.34.1-10.el9_8
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-45445LOW2.78
openssl-libs
1:3.5.5-3.el9_8
fixed in 1:3.5.5-4.el9_8
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-4873LOW2.7
curl-minimal
7.76.1-40.el9
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-6253LOW2.7
curl-minimal
7.76.1-40.el9
No fix yet
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-7168LOW2.7
curl-minimal
7.76.1-40.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-4873LOW2.7
libcurl-minimal
7.76.1-40.el9
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-6253LOW2.7
libcurl-minimal
7.76.1-40.el9
No fix yet
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-7168LOW2.7
libcurl-minimal
7.76.1-40.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-34743LOW2.7
xz
5.2.5-8.el9_0
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2024-7264LOW2.69
curl-minimal
7.76.1-40.el9
No fix yet
16.2%
High Exploitation Risk
Post-Exploit
CVE-2024-7264LOW2.69
libcurl-minimal
7.76.1-40.el9
No fix yet
16.2%
High Exploitation Risk
Post-Exploit
CVE-2025-15079LOW2.48
curl-minimal
7.76.1-40.el9
No fix yet
0.5%
Theoretical Threat
Post-Exploit
CVE-2025-15079LOW2.48
libcurl-minimal
7.76.1-40.el9
No fix yet
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-0992LOW2.46
libxml2
2.9.13-14.el9_7
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-14017LOW2.45
curl-minimal
7.76.1-40.el9
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-14017LOW2.45
libcurl-minimal
7.76.1-40.el9
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-15224LOW2.4
curl-minimal
7.76.1-40.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2025-68972LOW2.4
gnupg2
2.3.3-5.el9_7
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-30258LOW2.4
gnupg2
2.3.3-5.el9_7
No fix yet
0.2%
Theoretical Threat
Post-Exploit
CVE-2025-15224LOW2.4
libcurl-minimal
7.76.1-40.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2025-64118LOW2.4
tar
2:1.34-11.el9
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2026-48864LOW2.39
libsolv
0.7.24-5.el9_8
No fix yet
0.2%
Theoretical Threat
Post-Exploit
CVE-2026-1485LOW2.38
glib2
2.68.4-19.el9_8.1
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2024-9681LOW2.34
curl-minimal
7.76.1-40.el9
No fix yet
2.0%
Low-Moderate Risk
Post-Exploit
CVE-2024-9681LOW2.34
libcurl-minimal
7.76.1-40.el9
No fix yet
2.0%
Low-Moderate Risk
Post-Exploit
CVE-2026-5773LOW2.29
curl-minimal
7.76.1-40.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-6276LOW2.29
curl-minimal
7.76.1-40.el9
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2023-32636LOW2.29
glib2
2.68.4-19.el9_8.1
No fix yet
0.8%
Theoretical Threat
Post-Exploit
CVE-2026-5773LOW2.29
libcurl-minimal
7.76.1-40.el9
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-6276LOW2.29
libcurl-minimal
7.76.1-40.el9
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-28389LOW2.29
openssl-libs
1:3.5.5-3.el9_8
No fix yet
0.8%
Theoretical Threat
Post-Exploit
CVE-2022-41409LOW2.29
pcre2
10.40-6.el9
No fix yet
1.0%
Theoretical Threat
Post-Exploit
CVE-2025-5278LOW2.24
coreutils-single
8.32-40.el9
No fix yet
0.2%
Theoretical Threat
Post-Exploit
CVE-2025-6170LOW2.12
libxml2
2.9.13-14.el9_7
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-27139LOW2.12
stdlib
v1.23.12
fixed in 1.25.8, 1.26.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2022-3219LOW1.68
gnupg2
2.3.3-5.el9_7
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2023-39804LOW1.68
tar
2:1.34-11.el9
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2022-41409NONE0
pcre2-syntax
10.40-6.el9
No fix yet
1.0%
Theoretical Threat
Not Applicable
CVE-2026-6238NONE0
glibc-minimal-langpack
2.34-270.el9_8
No fix yet
0.3%
Theoretical Threat
Not Applicable
CVE-2023-50495NONE0
ncurses-base
6.2-12.20210508.el9
No fix yet
1.0%
Theoretical Threat
Not Applicable
CVE-2023-50495NONE0
ncurses-libs
6.2-12.20210508.el9
No fix yet
1.0%
Theoretical Threat
Not Applicable
CVE-2026-5435NONE0
glibc-minimal-langpack
2.34-270.el9_8
No fix yet
0.2%
Theoretical Threat
Not Applicable
CVE-2026-5450NONE0
glibc-minimal-langpack
2.34-270.el9_8
No fix yet
0.5%
Theoretical Threat
Not Applicable
CVE-2026-5928NONE0
glibc-minimal-langpack
2.34-270.el9_8
No fix yet
0.3%
Theoretical Threat
Not Applicable
CVE-2026-39823NONE0
stdlib
v1.23.12
fixed in 1.25.10, 1.26.3
0.3%
Theoretical Threat
Not Applicable
CVE-2026-39825NONE0
stdlib
v1.23.12
fixed in 1.25.10, 1.26.3
0.4%
Theoretical Threat
Not Applicable
CVE-2026-42499NONE0
stdlib
v1.23.12
fixed in 1.25.10, 1.26.3
0.6%
Theoretical Threat
Not Applicable
CVE-2026-42504NONE0
stdlib
v1.23.12
fixed in 1.25.11, 1.26.4
0.4%
Theoretical Threat
Not Applicable
CVE-2026-27145NONE0
stdlib
v1.23.12
fixed in 1.25.11, 1.26.4
0.3%
Theoretical Threat
Not Applicable