Vulnerability Reportconfluentinc/cp-kafka-connect:8.0.6

confluentinc/cp-kafka-connect:8.0.6confluentinc/cp-kafka-connect:8.0.6-1-ubi9

DIGESTsha256:9b2d86633085963d84f6a5391a7e0a836354eb830471fed6927fccf86ec65430

Executive Summary

Threat ScoreNEEDS ATTENTION• 115 exposed vulnerabilities found, with 4 severity >=6.0 (max 6.8).• CVE-2026-45674 (Netty DNS resolver) could enable cache poisoning if attacker controls DNS server.• CVE-2026-45416 (Netty TLS handshake) allows remote denial of service via memory exhaustion.• CVE-2025-27113 (libxml2) may cause crash when processing crafted XML (requires XML input).• Trust score high (90) and image popular (74M+ pulls), but not officially verified.• All post-exploit vulnerabilities (159) are low severity (max 3.9), minimal risk post-compromise.

30/100NEEDS ATTENTION

ReputationPOPULAR COMMUNITY• High Reputation Community Image (74M+ pulls)• Pinned by digest (Immutable)

RELIABLE

This image is acceptable for production, but remediating the identified vulnerabilities is recommended to reduce the attack surface. Most notably, CVE-2026-45674 in Netty's DNS resolver could allow DNS cache poisoning if an attacker controls a DNS server, while CVE-2026-45416 enables denial of service via TLS handshake without special configuration. CVE-2025-27113 in libxml2 may cause crashes if XML data is processed. Upgrading Netty packages to 4.1.135.Final or later and libxml2 to patched version fully resolves these issues. Note that the TLS handshake DoS is exploitable by any remote client, making it the most pressing concern, while DNS cache poisoning requires attacker-controlled infrastructure.

Vulnerabilities

Vulnerability Log

296 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-45674	MEDIUM6.8	io.netty:netty-resolver-dns 4.1.133.Final fixed in 4.2.15.Final, 4.1.135.Final	0.2% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-47691	MEDIUM6.8	io.netty:netty-resolver-dns 4.1.133.Final fixed in 4.2.15.Final, 4.1.135.Final	0.2% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-45416	MEDIUM6.38	io.netty:netty-handler 4.1.133.Final fixed in 4.2.15.Final, 4.1.135.Final	0.3% Theoretical Threat	Directly ExposedContext importance: HIGH
CVE-2025-27113	MEDIUM6	libxml2 2.9.13-14.el9_7 No fix yet	1.0% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2026-44604	MEDIUM5.95	rpm-libs 4.16.1.3-40.el9 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-44604	MEDIUM5.95	rpm-plugin-systemd-inhibit 4.16.1.3-40.el9 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-44604	MEDIUM5.95	rpm-sign-libs 4.16.1.3-40.el9 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2025-13151	MEDIUM5.9	libtasn1 4.16.0-9.el9 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-41996	MEDIUM5.9	openssl-libs 1:3.5.5-3.el9_8 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2026-56403	MEDIUM5.87	expat 2.5.0-6.el9_8.1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-22185	MEDIUM5.78	openldap 2.6.8-4.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-45673	MEDIUM5.78	io.netty:netty-resolver-dns 4.1.133.Final fixed in 4.2.15.Final, 4.1.135.Final	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4105	MEDIUM5.7	systemd-libs 252-67.el9_8.2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-4105	MEDIUM5.7	systemd-pam 252-67.el9_8.2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-5915	MEDIUM5.61	libarchive 3.5.3-9.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-5918	MEDIUM5.61	libarchive 3.5.3-9.el9_7 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	glibc 2.34-270.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	glibc-common 2.34-270.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	glibc-minimal-langpack 2.34-270.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4426	MEDIUM5.52	libarchive 3.5.3-9.el9_7 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-9149	MEDIUM5.52	libsolv 0.7.24-5.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-9150	MEDIUM5.52	libsolv 0.7.24-5.el9_8 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2023-45322	MEDIUM5.52	libxml2 2.9.13-14.el9_7 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-2673	MEDIUM5.52	openssl-fips-provider 3.0.7-8.el9 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-2673	MEDIUM5.52	openssl-fips-provider-so 3.0.7-8.el9 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-2673	MEDIUM5.52	openssl-libs 1:3.5.5-3.el9_8 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-44249	MEDIUM5.5	io.netty:netty-handler 4.1.133.Final fixed in 4.2.15.Final, 4.1.135.Final	0.4% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2024-34459	MEDIUM5.5	libxml2 2.9.13-14.el9_7 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2026-34181	MEDIUM5.35	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.2% Theoretical Threat	Directly Exposed
CVE-2026-42768	MEDIUM5.35	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.4% Theoretical Threat	Directly Exposed
CVE-2026-1757	MEDIUM5.27	libxml2 2.9.13-14.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-64506	MEDIUM5.18	libpng 2:1.6.37-15.el9_8 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-6732	MEDIUM5.1	libxml2 2.9.13-14.el9_7 No fix yet	0.6% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-48043	MEDIUM5.1	io.netty:netty-codec-http2 4.1.133.Final fixed in 4.1.135.Final, 4.2.15.Final	0.4% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-50010	MEDIUM5.1	io.netty:netty-handler 4.1.133.Final fixed in 4.2.15.Final, 4.1.135.Final	0.2% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-50219	MEDIUM5.02	expat 2.5.0-6.el9_8.1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc 2.34-270.el9_8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc-common 2.34-270.el9_8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc-minimal-langpack 2.34-270.el9_8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-0990	MEDIUM5.02	libxml2 2.9.13-14.el9_7 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2026-31790	MEDIUM5.02	openssl-fips-provider 3.0.7-8.el9 fixed in 3.0.7-11.el9_8	1.0% Theoretical Threat	Directly Exposed
CVE-2026-31790	MEDIUM5.02	openssl-fips-provider-so 3.0.7-8.el9 fixed in 3.0.7-11.el9_8	1.0% Theoretical Threat	Directly Exposed
CVE-2026-42764	MEDIUM5.02	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.7% Theoretical Threat	Directly Exposed
CVE-2026-42769	MEDIUM5.02	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42770	MEDIUM5.02	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.3% Theoretical Threat	Directly Exposed
CVE-2026-9076	MEDIUM5.02	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.3% Theoretical Threat	Directly Exposed
CVE-2025-5916	MEDIUM4.76	libarchive 3.5.3-9.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-32776	MEDIUM4.67	expat 2.5.0-6.el9_8.1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-32777	MEDIUM4.67	expat 2.5.0-6.el9_8.1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-32778	MEDIUM4.67	expat 2.5.0-6.el9_8.1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-66382	MEDIUM4.67	expat 2.5.0-6.el9_8.1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-60753	MEDIUM4.67	libarchive 3.5.3-9.el9_7 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5745	MEDIUM4.67	libarchive 3.5.3-9.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-1632	MEDIUM4.67	libarchive 3.5.3-9.el9_7 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2021-46195	MEDIUM4.67	libgcc 11.5.0-14.el9 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libgcc 11.5.0-14.el9 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2021-46195	MEDIUM4.67	libgomp 11.5.0-14.el9 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libgomp 11.5.0-14.el9 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2021-46195	MEDIUM4.67	libstdc++ 11.5.0-14.el9 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libstdc++ 11.5.0-14.el9 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2026-7383	MEDIUM4.67	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.4% Theoretical Threat	Directly Exposed
CVE-2024-0232	MEDIUM4.67	sqlite-libs 3.34.1-10.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-27171	MEDIUM4.67	zlib 1.2.11-40.el9 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-1489	MEDIUM4.59	glib2 2.68.4-19.el9_8.1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-30571	MEDIUM4.5	libarchive 3.5.3-9.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-42766	MEDIUM4.5	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.6% Theoretical Threat	Directly Exposed
CVE-2026-42767	MEDIUM4.5	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.3% Theoretical Threat	Directly Exposed
CVE-2026-34743	MEDIUM4.5	xz-libs 5.2.5-8.el9_0 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-50020	MEDIUM4.5	io.netty:netty-codec-http 4.1.133.Final fixed in 4.2.15.Final, 4.1.135.Final	0.2% Theoretical Threat	Directly Exposed
CVE-2026-47244	MEDIUM4.5	io.netty:netty-codec-http2 4.1.133.Final fixed in 4.2.15.Final, 4.1.135.Final	0.3% Theoretical Threat	Directly Exposed
CVE-2026-50560	MEDIUM4.5	io.netty:netty-codec-http2 4.1.133.Final fixed in 4.2.15.Final, 4.1.135.Final	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42250	MEDIUM4.25	bzip2-libs 1.0.8-11.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc 2.34-270.el9_8 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc 2.34-270.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc-common 2.34-270.el9_8 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc-common 2.34-270.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc-minimal-langpack 2.34-270.el9_8 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc-minimal-langpack 2.34-270.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	krb5-libs 1.21.1-10.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	krb5-pkinit 1.21.1-10.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-5917	MEDIUM4.25	libarchive 3.5.3-9.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	libkadm5 1.21.1-10.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-28164	MEDIUM4.25	libpng 2:1.6.37-15.el9_8 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-34180	MEDIUM4.25	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.5% Theoretical Threat	Directly Exposed
CVE-2026-56405	MEDIUM4.17	expat 2.5.0-6.el9_8.1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libblkid 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libfdisk 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libmount 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libsmartcols 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libuuid 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2024-13176	MEDIUM4	openssl-libs 1:3.5.5-3.el9_8 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2024-9681	LOW3.9	curl-minimal 7.76.1-40.el9 No fix yet	2.0% Low-Moderate Risk	Post-Exploit
CVE-2024-9681	LOW3.9	libcurl-minimal 7.76.1-40.el9 No fix yet	2.0% Low-Moderate Risk	Post-Exploit
CVE-2026-5773	LOW3.82	curl-minimal 7.76.1-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW3.82	curl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5773	LOW3.82	libcurl-minimal 7.76.1-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW3.82	libcurl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-34183	LOW3.82	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.5% Theoretical Threat	Post-Exploit
CVE-2026-28388	LOW3.82	openssl 1:3.5.5-3.el9_8 No fix yet	0.9% Theoretical Threat	Post-Exploit
CVE-2026-28389	LOW3.82	openssl 1:3.5.5-3.el9_8 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-3644	LOW3.82	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-4224	LOW3.82	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7210	LOW3.82	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-3644	LOW3.82	python3 3.9.25-7.el9_8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-4224	LOW3.82	python3 3.9.25-7.el9_8 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7210	LOW3.82	python3 3.9.25-7.el9_8 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-3644	LOW3.82	python3-libs 3.9.25-7.el9_8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-4224	LOW3.82	python3-libs 3.9.25-7.el9_8 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7210	LOW3.82	python3-libs 3.9.25-7.el9_8 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-44432	LOW3.82	urllib3 2.6.3 fixed in 2.7.0	0.4% Theoretical Threat	Post-Exploit
CVE-2026-34182	LOW3.77	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.2% Theoretical Threat	Post-Exploit
CVE-2025-64505	LOW3.74	libpng 2:1.6.37-15.el9_8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-34757	LOW3.74	libpng 2:1.6.37-15.el9_8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2024-29040	LOW3.74	tpm2-tss 3.2.3-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2021-31879	LOW3.66	wget 1.21.1-8.el9_4 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2023-4156	LOW3.62	gawk 5.1.0-6.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2005-2541	LOW3.6	tar 2:1.34-11.el9 No fix yet	4.0% Low-Moderate Risk	Post-Exploit
CVE-2026-44604	LOW3.57	python3-rpm 4.16.1.3-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-44604	LOW3.57	rpm 4.16.1.3-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-1484	LOW3.57	glib2 2.68.4-19.el9_8.1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-11053	LOW3.54	curl-minimal 7.76.1-40.el9 No fix yet	1.4% Low-Moderate Risk	Post-Exploit
CVE-2024-11053	LOW3.54	libcurl-minimal 7.76.1-40.el9 No fix yet	1.4% Low-Moderate Risk	Post-Exploit
CVE-2024-41996	LOW3.54	openssl 1:3.5.5-3.el9_8 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2025-13034	LOW3.47	curl-minimal 7.76.1-40.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-1965	LOW3.47	curl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-13034	LOW3.47	libcurl-minimal 7.76.1-40.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-1965	LOW3.47	libcurl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2021-3572	LOW3.42	python3-pip-wheel 21.3.1-2.el9_8 No fix yet	1.7% Low-Moderate Risk	Post-Exploit
CVE-2026-45536	LOW3.4	io.netty:netty-transport-native-epoll 4.1.133.Final fixed in 4.2.15.Final, 4.1.135.Final	0.1% Theoretical Threat	Directly Exposed
CVE-2026-45536	LOW3.4	io.netty:netty-transport-native-kqueue 4.1.133.Final fixed in 4.2.15.Final, 4.1.135.Final	0.1% Theoretical Threat	Directly Exposed
CVE-2026-3784	LOW3.31	curl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	curl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	curl-minimal 7.76.1-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	curl-minimal 7.76.1-40.el9 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-3784	LOW3.31	libcurl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	libcurl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	libcurl-minimal 7.76.1-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	libcurl-minimal 7.76.1-40.el9 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-2673	LOW3.31	openssl 1:3.5.5-3.el9_8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-33056	LOW3.31	tar 2:1.34-11.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-3805	LOW3.21	curl-minimal 7.76.1-40.el9 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-3805	LOW3.21	libcurl-minimal 7.76.1-40.el9 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-34181	LOW3.21	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42768	LOW3.21	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.4% Theoretical Threat	Post-Exploit
CVE-2026-5958	LOW3.21	sed 4.8-10.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-41080	LOW3.15	expat 2.5.0-6.el9_8.1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-3360	LOW3.15	glib2 2.68.4-19.el9_8.1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-7039	LOW3.15	glib2 2.68.4-19.el9_8.1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0988	LOW3.15	glib2 2.68.4-19.el9_8.1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0989	LOW3.15	libxml2 2.9.13-14.el9_7 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-45446	LOW3.15	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.2% Theoretical Threat	Directly Exposed
CVE-2026-6019	LOW3.11	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-6019	LOW3.11	python3 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-6019	LOW3.11	python3-libs 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-50181	LOW3.11	python3-pip-wheel 21.3.1-2.el9_8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-50182	LOW3.11	python3-pip-wheel 21.3.1-2.el9_8 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-9232	LOW3.1	openssl-libs 1:3.5.5-3.el9_8 No fix yet	2.0% Low-Moderate Risk	Directly Exposed
CVE-2026-5713	LOW3.06	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-5713	LOW3.06	python3 3.9.25-7.el9_8 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-5713	LOW3.06	python3-libs 3.9.25-7.el9_8 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-42764	LOW3.01	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.7% Theoretical Threat	Post-Exploit
CVE-2026-42769	LOW3.01	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42770	LOW3.01	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.3% Theoretical Threat	Post-Exploit
CVE-2026-9076	LOW3.01	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.3% Theoretical Threat	Post-Exploit
CVE-2026-32284	LOW3.01	python3-pip-wheel 21.3.1-2.el9_8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-31789	LOW3	openssl 1:3.5.5-3.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-31789	LOW3	openssl-libs 1:3.5.5-3.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-6357	LOW2.96	pip 26.0.1 fixed in 26.1	0.1% Theoretical Threat	Post-Exploit
CVE-2026-45447	LOW2.92	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	2.3% Low-Moderate Risk	Post-Exploit
CVE-2026-45447	LOW2.92	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	2.3% Low-Moderate Risk	Post-Exploit
CVE-2026-3783	LOW2.91	curl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-3783	LOW2.91	libcurl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-24883	LOW2.8	gnupg2 2.3.3-5.el9_7 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-7383	LOW2.8	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.4% Theoretical Threat	Post-Exploit
CVE-2025-13837	LOW2.8	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42308	LOW2.8	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-13837	LOW2.8	python3 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42308	LOW2.8	python3 3.9.25-7.el9_8 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-13837	LOW2.8	python3-libs 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42308	LOW2.8	python3-libs 3.9.25-7.el9_8 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-25645	LOW2.8	python3-pip-wheel 21.3.1-2.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-5704	LOW2.8	tar 2:1.34-11.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-25645	LOW2.8	requests 2.32.5 fixed in 2.33.0	0.2% Theoretical Threat	Post-Exploit
CVE-2026-41990	LOW2.8	libgcrypt 1.10.0-11.el9 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-70873	LOW2.8	sqlite-libs 3.34.1-10.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-45445	LOW2.78	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.3% Theoretical Threat	Post-Exploit
CVE-2026-45445	LOW2.78	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.3% Theoretical Threat	Post-Exploit
CVE-2026-4873	LOW2.7	curl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	curl-minimal 7.76.1-40.el9 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	curl-minimal 7.76.1-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-4873	LOW2.7	libcurl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	libcurl-minimal 7.76.1-40.el9 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	libcurl-minimal 7.76.1-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-42766	LOW2.7	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.6% Theoretical Threat	Post-Exploit
CVE-2026-42767	LOW2.7	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.3% Theoretical Threat	Post-Exploit
CVE-2025-12781	LOW2.7	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-3276	LOW2.7	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-12781	LOW2.7	python3 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-3276	LOW2.7	python3 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-12781	LOW2.7	python3-libs 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-3276	LOW2.7	python3-libs 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-44431	LOW2.7	urllib3 2.6.3 fixed in 2.7.0	0.5% Theoretical Threat	Post-Exploit
CVE-2024-7264	LOW2.69	curl-minimal 7.76.1-40.el9 No fix yet	16.2% High Exploitation Risk	Post-Exploit
CVE-2024-7264	LOW2.69	libcurl-minimal 7.76.1-40.el9 No fix yet	16.2% High Exploitation Risk	Post-Exploit
CVE-2025-4516	LOW2.6	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-4516	LOW2.6	python3 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-4516	LOW2.6	python3-libs 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-11850	LOW2.55	krb5-workstation 1.21.1-10.el9_8 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-34180	LOW2.55	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.5% Theoretical Threat	Post-Exploit
CVE-2026-3219	LOW2.55	pip 26.0.1 fixed in 26.1	0.1% Theoretical Threat	Post-Exploit
CVE-2025-15079	LOW2.48	curl-minimal 7.76.1-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-15079	LOW2.48	libcurl-minimal 7.76.1-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-28387	LOW2.48	openssl 1:3.5.5-3.el9_8 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-28387	LOW2.48	openssl-libs 1:3.5.5-3.el9_8 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-0992	LOW2.46	libxml2 2.9.13-14.el9_7 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-14017	LOW2.45	curl-minimal 7.76.1-40.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-14017	LOW2.45	libcurl-minimal 7.76.1-40.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-15282	LOW2.45	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-0672	LOW2.45	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-15282	LOW2.45	python3 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-0672	LOW2.45	python3 3.9.25-7.el9_8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-15282	LOW2.45	python3-libs 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-0672	LOW2.45	python3-libs 3.9.25-7.el9_8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	curl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-68972	LOW2.4	gnupg2 2.3.3-5.el9_7 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-30258	LOW2.4	gnupg2 2.3.3-5.el9_7 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	libcurl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2024-13176	LOW2.4	openssl 1:3.5.5-3.el9_8 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-64118	LOW2.4	tar 2:1.34-11.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux-core 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-48864	LOW2.39	libsolv 0.7.24-5.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-1485	LOW2.38	glib2 2.68.4-19.el9_8.1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2024-10524	LOW2.34	wget 1.21.1-8.el9_4 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2023-32636	LOW2.29	glib2 2.68.4-19.el9_8.1 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-41989	LOW2.29	libgcrypt 1.10.0-11.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-34183	LOW2.29	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.5% Theoretical Threat	Post-Exploit
CVE-2026-28388	LOW2.29	openssl-libs 1:3.5.5-3.el9_8 No fix yet	0.9% Theoretical Threat	Post-Exploit
CVE-2026-28389	LOW2.29	openssl-libs 1:3.5.5-3.el9_8 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2022-41409	LOW2.29	pcre2 10.40-6.el9 No fix yet	1.0% Theoretical Threat	Post-Exploit
CVE-2025-11468	LOW2.29	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-1502	LOW2.29	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-11468	LOW2.29	python3 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-1502	LOW2.29	python3 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-11468	LOW2.29	python3-libs 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-1502	LOW2.29	python3-libs 3.9.25-7.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-34182	LOW2.26	openssl-libs 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.2% Theoretical Threat	Post-Exploit
CVE-2025-5278	LOW2.24	coreutils-single 8.32-40.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2023-45803	LOW2.14	python3-pip-wheel 21.3.1-2.el9_8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-24515	LOW2.12	expat 2.5.0-6.el9_8.1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-6170	LOW2.12	libxml2 2.9.13-14.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-45446	LOW1.89	openssl 1:3.5.5-3.el9_8 fixed in 1:3.5.5-4.el9_8	0.2% Theoretical Threat	Post-Exploit
CVE-2025-9232	LOW1.86	openssl 1:3.5.5-3.el9_8 No fix yet	2.0% Low-Moderate Risk	Post-Exploit
CVE-2022-3219	LOW1.68	gnupg2 2.3.3-5.el9_7 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-13462	LOW1.68	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-2297	LOW1.68	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-3479	LOW1.68	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-13462	LOW1.68	python3 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-2297	LOW1.68	python3 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-3479	LOW1.68	python3 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-13462	LOW1.68	python3-libs 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-2297	LOW1.68	python3-libs 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-3479	LOW1.68	python3-libs 3.9.25-7.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2023-39804	LOW1.68	tar 2:1.34-11.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-11961	LOW1.61	libpcap 14:1.10.0-4.el9 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-1795	LOW1.58	python-unversioned-command 3.9.25-7.el9_8 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1795	LOW1.58	python3 3.9.25-7.el9_8 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1795	LOW1.58	python3-libs 3.9.25-7.el9_8 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2022-41409	NONE0	pcre2-syntax 10.40-6.el9 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2026-44604	NONE0	rpm-build-libs 4.16.1.3-40.el9 No fix yet	0.5% Theoretical Threat	Not Applicable
CVE-2026-4105	NONE0	systemd 252-67.el9_8.2 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-4105	NONE0	systemd-rpm-macros 252-67.el9_8.2 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	ncurses-base 6.2-12.20210508.el9 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	ncurses-libs 6.2-12.20210508.el9 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2025-1371	NONE0	elfutils-default-yama-scope 0.194-1.el9 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-1377	NONE0	elfutils-default-yama-scope 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2025-1371	NONE0	elfutils-libelf 0.194-1.el9 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-1377	NONE0	elfutils-libelf 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2025-1371	NONE0	elfutils-libs 0.194-1.el9 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-1377	NONE0	elfutils-libs 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-23865	NONE0	freetype 2.10.4-10.el9_5 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-22693	NONE0	harfbuzz 2.7.4-10.el9 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2026-54411	NONE0	pam 1.5.1-28.el9 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2025-1376	NONE0	elfutils-default-yama-scope 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2025-1376	NONE0	elfutils-libelf 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2025-1376	NONE0	elfutils-libs 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-25068	NONE0	alsa-lib 1.2.15.3-1.el9 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2024-25260	NONE0	elfutils-default-yama-scope 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2024-25260	NONE0	elfutils-libelf 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2024-25260	NONE0	elfutils-libs 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-22020	NONE0	libpng 2:1.6.37-15.el9_8 No fix yet	—	Not Applicable
CVE-2026-33117	NONE0	com.azure:azure-security-keyvault-keys 4.9.2 fixed in 4.10.6	0.5% Theoretical Threat	Not Applicable
GHSA-2r2c-cx56-8933	NONE0	org.jline:jline-remote-telnet 3.25.1 fixed in 4.2.1	—	Not Applicable
GHSA-47qp-hqvx-6r3f	NONE0	org.jline:jline-remote-telnet 3.25.1 fixed in 4.2.1	—	Not Applicable
GHSA-537c-gmf6-5ccf	NONE0	cryptography 46.0.7 fixed in 48.0.1	—	Not Applicable
GHSA-qp9x-wp8f-qgjj	NONE0	tuf 6.0.0 fixed in 7.0.0	—	Not Applicable