Vulnerability Reportconfluentinc/cp-kafka:7.8.8

confluentinc/cp-kafka:7.8.8confluentinc/cp-kafka:7.8.8-1-ubi8

DIGESTsha256:6ed4c074b8169cd0e280350c41cddf1495a2ce4bf144d90f68b3a8856369ccd7

Executive Summary

Threat ScoreCAUTION• Popular community image (342M+ pulls) but with 178 exposed vulnerabilities; 35 have severity ≥6.0 and 1 critical (8.45).• CVE-2023-2650 (OpenSSL, 8.45) allows remote denial-of-service via TLS handshake with active exploitation (EPSS 0.779).• CVE-2026-28387 (OpenSSL, 6.88) risks arbitrary code execution through use-after-free in DANE TLSA authentication.• CVE-2026-44249 (netty-handler, 6.88) enables IPv6 subnet rule bypass, potentially allowing unauthorized network access.• All post-exploit-only findings have max severity 4.5, indicating no significant post-compromise risk.

74/100CAUTION

ReputationPOPULAR COMMUNITY• High Reputation Community Image (342M+ pulls)• Pinned by digest (Immutable)

RELIABLE

This image carries significant risk; production deployment is highly discouraged without strict compensating controls. An attacker could exploit CVE-2023-2650 to cause denial of service or, via CVE-2026-28387, achieve remote code execution if DANE TLSA client authentication is enabled. Disabling DANE TLSA entirely eliminates CVE-2026-28387. Note that CVE-2023-2650 is remotely exploitable without special configuration, while CVE-2026-28387 only affects clients using specific PKIX and DANE-TA TLSA records.

Vulnerabilities

Vulnerability Log

434 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2023-2650	HIGH8.45	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	77.9% Actively Exploited	Directly ExposedContext importance: HIGH
CVE-2026-28387	MEDIUM6.88	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2026-44249	MEDIUM6.88	io.netty:netty-handler 4.1.132.Final fixed in 4.2.15.Final, 4.1.135.Final	0.5% Theoretical Threat	Directly Exposed
CVE-2020-35512	MEDIUM6.63	dbus-daemon 1:1.12.8-28.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2020-35512	MEDIUM6.63	dbus-libs 1:1.12.8-28.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-25724	MEDIUM6.63	libarchive 3.3.3-7.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-29111	MEDIUM6.63	systemd-libs 239-82.el8_10.16 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-29111	MEDIUM6.63	systemd-pam 239-82.el8_10.16 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2021-4209	MEDIUM6.5	gnutls 3.6.16-8.el8_10.5 No fix yet	1.3% Low-Moderate Risk	Directly Exposed
CVE-2018-1000879	MEDIUM6.5	libarchive 3.3.3-7.el8_10 No fix yet	3.4% Low-Moderate Risk	Directly Exposed
CVE-2018-1000880	MEDIUM6.5	libarchive 3.3.3-7.el8_10 No fix yet	4.1% Low-Moderate Risk	Directly Exposed
CVE-2026-45186	MEDIUM6.38	expat 2.5.0-1.el8_10 fixed in 2.5.0-2.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2023-29499	MEDIUM6.38	glib2 2.56.4-168.el8_10 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2023-32636	MEDIUM6.38	glib2 2.56.4-168.el8_10 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-33846	MEDIUM6.38	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.9% Theoretical Threat	Directly Exposed
CVE-2026-42009	MEDIUM6.38	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.8% Theoretical Threat	Directly Exposed
CVE-2026-41989	MEDIUM6.38	libgcrypt 1.8.5-7.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-3731	MEDIUM6.38	libssh 0.9.6-16.el8_10 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2026-6732	MEDIUM6.38	libxml2 2.9.7-21.el8_10.4 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2026-28390	MEDIUM6.38	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-34183	MEDIUM6.38	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2025-69421	MEDIUM6.38	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-28388	MEDIUM6.38	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2026-28389	MEDIUM6.38	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2022-41409	MEDIUM6.38	pcre2 10.32-3.el8_6 No fix yet	1.0% Theoretical Threat	Directly Exposed
CVE-2026-42944	MEDIUM6.38	unbound-libs 1.16.2-5.9.el8_10 fixed in 1.16.2-5.11.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-42959	MEDIUM6.38	unbound-libs 1.16.2-5.9.el8_10 fixed in 1.16.2-5.11.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-45416	MEDIUM6.38	io.netty:netty-handler 4.1.132.Final fixed in 4.2.15.Final, 4.1.135.Final	0.6% Theoretical Threat	Directly Exposed
CVE-2026-50010	MEDIUM6.38	io.netty:netty-handler 4.1.132.Final fixed in 4.2.15.Final, 4.1.135.Final	0.2% Theoretical Threat	Directly Exposed
CVE-2026-3833	MEDIUM6.29	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42011	MEDIUM6.29	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.3% Theoretical Threat	Directly Exposed
CVE-2026-34182	MEDIUM6.29	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-24281	MEDIUM6.29	org.apache.zookeeper:zookeeper 3.8.4 fixed in 3.8.6, 3.9.5	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42012	MEDIUM6.03	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.3% Theoretical Threat	Directly Exposed
CVE-2026-24308	MEDIUM6	org.apache.zookeeper:zookeeper 3.8.4 fixed in 3.9.5, 3.8.6	1.1% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2026-44604	MEDIUM5.95	rpm-build-libs 4.14.3-32.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-44604	MEDIUM5.95	rpm-libs 4.14.3-32.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2019-12904	MEDIUM5.9	libgcrypt 1.8.5-7.el8_6 No fix yet	2.1% Low-Moderate Risk	Directly Exposed
CVE-2024-2236	MEDIUM5.9	libgcrypt 1.8.5-7.el8_6 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2025-13151	MEDIUM5.9	libtasn1 4.13-5.el8_10 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-41996	MEDIUM5.9	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2026-22185	MEDIUM5.78	openldap 2.4.46-21.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-4105	MEDIUM5.7	systemd-libs 239-82.el8_10.16 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-4105	MEDIUM5.7	systemd-pam 239-82.el8_10.16 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-42014	MEDIUM5.61	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.2% Theoretical Threat	Directly Exposed
CVE-2025-5915	MEDIUM5.61	libarchive 3.3.3-7.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-5918	MEDIUM5.61	libarchive 3.3.3-7.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-4741	MEDIUM5.6	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	2.9% Low-Moderate Risk	Directly Exposed
CVE-2026-42013	MEDIUM5.58	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.4% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2025-14512	MEDIUM5.52	glib2 2.56.4-168.el8_10 fixed in 2.56.4-169.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-4437	MEDIUM5.52	glibc 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4437	MEDIUM5.52	glibc-common 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4437	MEDIUM5.52	glibc-minimal-langpack 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4426	MEDIUM5.52	libarchive 3.3.3-7.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-5351	MEDIUM5.52	libssh 0.9.6-16.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2023-45322	MEDIUM5.52	libxml2 2.9.7-21.el8_10.4 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2019-14250	MEDIUM5.5	libgcc 8.5.0-28.el8_10 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2019-14250	MEDIUM5.5	libstdc++ 8.5.0-28.el8_10 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2018-1000654	MEDIUM5.5	libtasn1 4.13-5.el8_10 No fix yet	2.0% Low-Moderate Risk	Directly Exposed
CVE-2024-34459	MEDIUM5.5	libxml2 2.9.7-21.el8_10.4 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2024-0727	MEDIUM5.5	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	3.2% Low-Moderate Risk	Directly Exposed
CVE-2021-3997	MEDIUM5.5	systemd-libs 239-82.el8_10.16 No fix yet	1.5% Low-Moderate Risk	Directly Exposed
CVE-2021-3997	MEDIUM5.5	systemd-pam 239-82.el8_10.16 No fix yet	1.5% Low-Moderate Risk	Directly Exposed
CVE-2026-0964	MEDIUM5.35	libssh 0.9.6-16.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-34181	MEDIUM5.35	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-42768	MEDIUM5.35	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2023-0466	MEDIUM5.3	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	1.6% Low-Moderate Risk	Directly Exposed
CVE-2023-0465	MEDIUM5.3	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	1.6% Low-Moderate Risk	Directly Exposed
CVE-2026-1757	MEDIUM5.27	libxml2 2.9.7-21.el8_10.4 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-11411	MEDIUM5.18	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-50219	MEDIUM5.02	expat 2.5.0-1.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc 2.28-251.el8_10.34 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc-common 2.28-251.el8_10.34 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc-minimal-langpack 2.28-251.el8_10.34 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-40355	MEDIUM5.02	krb5-libs 1.18.2-33.el8_10 fixed in 1.18.2-34.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40356	MEDIUM5.02	krb5-libs 1.18.2-33.el8_10 fixed in 1.18.2-34.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40355	MEDIUM5.02	libkadm5 1.18.2-33.el8_10 fixed in 1.18.2-34.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40356	MEDIUM5.02	libkadm5 1.18.2-33.el8_10 fixed in 1.18.2-34.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-0990	MEDIUM5.02	libxml2 2.9.7-21.el8_10.4 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2026-42764	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2025-15468	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2025-69420	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-22796	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-42769	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42770	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-9076	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-44608	MEDIUM5.02	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42010	MEDIUM5	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.8% Theoretical Threat	Directly Exposed
CVE-2026-31789	MEDIUM5	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2024-2511	MEDIUM4.81	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	54.0% Actively Exploited	Directly Exposed
CVE-2025-5916	MEDIUM4.76	libarchive 3.3.3-7.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-32776	MEDIUM4.67	expat 2.5.0-1.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-32777	MEDIUM4.67	expat 2.5.0-1.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-32778	MEDIUM4.67	expat 2.5.0-1.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-66382	MEDIUM4.67	expat 2.5.0-1.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-32611	MEDIUM4.67	glib2 2.56.4-168.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2023-32665	MEDIUM4.67	glib2 2.56.4-168.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-60753	MEDIUM4.67	libarchive 3.3.3-7.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5745	MEDIUM4.67	libarchive 3.3.3-7.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-1632	MEDIUM4.67	libarchive 3.3.3-7.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libgcc 8.5.0-28.el8_10 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2026-0967	MEDIUM4.67	libssh 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libstdc++ 8.5.0-28.el8_10 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2025-15469	MEDIUM4.67	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-22795	MEDIUM4.67	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-7383	MEDIUM4.67	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-0232	MEDIUM4.67	sqlite-libs 3.26.0-20.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-27171	MEDIUM4.67	zlib 1.2.11-25.el8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-1489	MEDIUM4.59	glib2 2.56.4-168.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-0464	MEDIUM4.5	openssl 1:1.1.1k-15.el8_6 No fix yet	3.7% Low-Moderate Risk	Post-Exploit
CVE-2023-0464	MEDIUM4.5	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	3.7% Low-Moderate Risk	Directly Exposed
CVE-2019-9674	MEDIUM4.5	platform-python 3.6.8-76.el8_10 No fix yet	5.5% Low-Moderate Risk	Post-Exploit
CVE-2024-7592	MEDIUM4.5	platform-python 3.6.8-76.el8_10 No fix yet	2.3% Low-Moderate Risk	Post-Exploit
CVE-2019-9674	MEDIUM4.5	python3-libs 3.6.8-76.el8_10 No fix yet	5.5% Low-Moderate Risk	Post-Exploit
CVE-2024-7592	MEDIUM4.5	python3-libs 3.6.8-76.el8_10 No fix yet	2.3% Low-Moderate Risk	Post-Exploit
CVE-2022-0391	MEDIUM4.5	python39 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	8.3% Low-Moderate Risk	Post-Exploit
CVE-2024-7592	MEDIUM4.5	python39 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	2.3% Low-Moderate Risk	Post-Exploit
CVE-2022-0391	MEDIUM4.5	python39-libs 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	8.3% Low-Moderate Risk	Post-Exploit
CVE-2024-7592	MEDIUM4.5	python39-libs 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	2.3% Low-Moderate Risk	Post-Exploit
CVE-2022-0391	MEDIUM4.5	python39-pip 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	8.3% Low-Moderate Risk	Post-Exploit
CVE-2024-7592	MEDIUM4.5	python39-pip 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	2.3% Low-Moderate Risk	Post-Exploit
CVE-2022-0391	MEDIUM4.5	python39-pip-wheel 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	8.3% Low-Moderate Risk	Post-Exploit
CVE-2024-7592	MEDIUM4.5	python39-pip-wheel 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	2.3% Low-Moderate Risk	Post-Exploit
CVE-2022-0391	MEDIUM4.5	python39-setuptools-wheel 50.3.2-7.module+el8.10.0+23406+03055bfb No fix yet	8.3% Low-Moderate Risk	Post-Exploit
CVE-2024-7592	MEDIUM4.5	python39-setuptools-wheel 50.3.2-7.module+el8.10.0+23406+03055bfb No fix yet	2.3% Low-Moderate Risk	Post-Exploit
CVE-2019-9923	MEDIUM4.5	tar 2:1.30-11.el8_10 No fix yet	3.1% Low-Moderate Risk	Post-Exploit
CVE-2026-4046	MEDIUM4.5	glibc 2.28-251.el8_10.34 fixed in 2.28-251.el8_10.37	0.4% Theoretical Threat	Directly Exposed
CVE-2026-4046	MEDIUM4.5	glibc-common 2.28-251.el8_10.34 fixed in 2.28-251.el8_10.37	0.4% Theoretical Threat	Directly Exposed
CVE-2026-4046	MEDIUM4.5	glibc-minimal-langpack 2.28-251.el8_10.34 fixed in 2.28-251.el8_10.37	0.4% Theoretical Threat	Directly Exposed
CVE-2026-42015	MEDIUM4.5	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.7% Theoretical Threat	Directly Exposed
CVE-2026-42766	MEDIUM4.5	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2026-42767	MEDIUM4.5	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32792	MEDIUM4.5	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42923	MEDIUM4.5	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-34743	MEDIUM4.5	xz-libs 5.2.4-4.el8_6 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2024-6763	MEDIUM4.5	org.eclipse.jetty:jetty-http 9.4.60 fixed in 12.0.12	1.0% Theoretical Threat	Directly Exposed
CVE-2024-7264	MEDIUM4.48	curl 7.61.1-34.el8_10.11 No fix yet	16.2% High Exploitation Risk	Post-Exploit
CVE-2024-7264	MEDIUM4.48	libcurl 7.61.1-34.el8_10.11 No fix yet	16.2% High Exploitation Risk	Post-Exploit
CVE-2018-20839	MEDIUM4.3	systemd-libs 239-82.el8_10.16 No fix yet	2.5% Low-Moderate Risk	Directly Exposed
CVE-2018-20839	MEDIUM4.3	systemd-pam 239-82.el8_10.16 No fix yet	2.5% Low-Moderate Risk	Directly Exposed
CVE-2026-42250	MEDIUM4.25	bzip2-libs 1.0.6-28.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc 2.28-251.el8_10.34 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc-common 2.28-251.el8_10.34 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc-common 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc-minimal-langpack 2.28-251.el8_10.34 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc-minimal-langpack 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	krb5-libs 1.18.2-33.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-5917	MEDIUM4.25	libarchive 3.3.3-7.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	libkadm5 1.18.2-33.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-34180	MEDIUM4.25	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5260	MEDIUM4.18	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.7% Theoretical Threat	Directly Exposed
CVE-2025-15079	MEDIUM4.13	curl 7.61.1-34.el8_10.11 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-15079	MEDIUM4.13	libcurl 7.61.1-34.el8_10.11 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-28387	MEDIUM4.13	openssl 1:1.1.1k-15.el8_6 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2024-43168	MEDIUM4.08	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libblkid 2.32.1-48.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libmount 2.32.1-48.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-8114	MEDIUM4	libssh 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libuuid 2.32.1-48.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2021-24032	MEDIUM4	libzstd 1.4.4-1.el8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-13176	MEDIUM4	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2025-68160	MEDIUM4	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-4598	MEDIUM4	systemd-libs 239-82.el8_10.16 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2025-4598	MEDIUM4	systemd-pam 239-82.el8_10.16 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2020-35512	LOW3.98	dbus-tools 1:1.12.8-28.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-47268	LOW3.9	iputils 20180629-11.el8 No fix yet	1.3% Low-Moderate Risk	Post-Exploit
CVE-2024-10524	LOW3.9	wget 1.19.5-12.el8_10 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2026-5773	LOW3.82	curl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW3.82	curl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5773	LOW3.82	libcurl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW3.82	libcurl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-28390	LOW3.82	openssl 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-34183	LOW3.82	openssl 1:1.1.1k-15.el8_6 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-69421	LOW3.82	openssl 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-28388	LOW3.82	openssl 1:1.1.1k-15.el8_6 No fix yet	0.9% Theoretical Threat	Post-Exploit
CVE-2026-28389	LOW3.82	openssl 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-3644	LOW3.82	platform-python 3.6.8-76.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-4224	LOW3.82	platform-python 3.6.8-76.el8_10 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7210	LOW3.82	platform-python 3.6.8-76.el8_10 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-3644	LOW3.82	python3-libs 3.6.8-76.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-4224	LOW3.82	python3-libs 3.6.8-76.el8_10 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7210	LOW3.82	python3-libs 3.6.8-76.el8_10 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-42944	LOW3.82	python3-unbound 1.16.2-5.9.el8_10 fixed in 1.16.2-5.11.el8_10	0.5% Theoretical Threat	Post-Exploit
CVE-2026-42959	LOW3.82	python3-unbound 1.16.2-5.9.el8_10 fixed in 1.16.2-5.11.el8_10	0.5% Theoretical Threat	Post-Exploit
CVE-2026-44432	LOW3.82	urllib3 2.6.3 fixed in 2.7.0	0.4% Theoretical Threat	Post-Exploit
CVE-2026-34182	LOW3.77	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2019-8905	LOW3.74	file-libs 5.33-27.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2019-8906	LOW3.74	file-libs 5.33-27.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2024-33655	LOW3.7	unbound-libs 1.16.2-5.9.el8_10 No fix yet	1.7% Low-Moderate Risk	Directly Exposed
CVE-2021-31879	LOW3.66	wget 1.19.5-12.el8_10 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2023-4156	LOW3.62	gawk 4.2.1-4.el8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2005-2541	LOW3.6	tar 2:1.30-11.el8_10 No fix yet	4.0% Low-Moderate Risk	Post-Exploit
CVE-2026-44604	LOW3.57	python3-rpm 4.14.3-32.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-44604	LOW3.57	rpm 4.14.3-32.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-1484	LOW3.57	glib2 2.56.4-168.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-11053	LOW3.54	curl 7.61.1-34.el8_10.11 No fix yet	1.4% Low-Moderate Risk	Post-Exploit
CVE-2024-11053	LOW3.54	libcurl 7.61.1-34.el8_10.11 No fix yet	1.4% Low-Moderate Risk	Post-Exploit
CVE-2024-41996	LOW3.54	openssl 1:1.1.1k-15.el8_6 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2018-1121	LOW3.54	procps-ng 3.3.15-14.el8 No fix yet	4.2% Low-Moderate Risk	Post-Exploit
CVE-2025-13034	LOW3.47	curl 7.61.1-34.el8_10.11 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-1965	LOW3.47	curl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-13034	LOW3.47	libcurl 7.61.1-34.el8_10.11 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-1965	LOW3.47	libcurl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2024-25260	LOW3.4	elfutils-libelf 0.190-2.el8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-25260	LOW3.4	elfutils-libs 0.190-2.el8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4438	LOW3.4	glibc 2.28-251.el8_10.34 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-4438	LOW3.4	glibc-common 2.28-251.el8_10.34 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-4438	LOW3.4	glibc-minimal-langpack 2.28-251.el8_10.34 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2024-57970	LOW3.4	libarchive 3.3.3-7.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-69418	LOW3.4	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-45536	LOW3.4	io.netty:netty-transport-native-epoll 4.1.132.Final fixed in 4.2.15.Final, 4.1.135.Final	0.2% Theoretical Threat	Directly Exposed
CVE-2024-4741	LOW3.36	openssl 1:1.1.1k-15.el8_6 No fix yet	2.9% Low-Moderate Risk	Post-Exploit
CVE-2026-3784	LOW3.31	curl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	curl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	curl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	curl 7.61.1-34.el8_10.11 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-3784	LOW3.31	libcurl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	libcurl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	libcurl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	libcurl 7.61.1-34.el8_10.11 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-33056	LOW3.31	tar 2:1.30-11.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2024-0727	LOW3.3	openssl 1:1.1.1k-15.el8_6 No fix yet	3.2% Low-Moderate Risk	Post-Exploit
CVE-2026-3805	LOW3.21	curl 7.61.1-34.el8_10.11 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-3805	LOW3.21	libcurl 7.61.1-34.el8_10.11 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-34181	LOW3.21	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42768	LOW3.21	openssl 1:1.1.1k-15.el8_6 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-5958	LOW3.21	sed 4.5-5.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2023-0466	LOW3.18	openssl 1:1.1.1k-15.el8_6 No fix yet	1.6% Low-Moderate Risk	Post-Exploit
CVE-2023-0465	LOW3.18	openssl 1:1.1.1k-15.el8_6 No fix yet	1.6% Low-Moderate Risk	Post-Exploit
CVE-2023-27534	LOW3.17	curl 7.61.1-34.el8_10.11 No fix yet	2.2% Low-Moderate Risk	Post-Exploit
CVE-2023-27534	LOW3.17	libcurl 7.61.1-34.el8_10.11 No fix yet	2.2% Low-Moderate Risk	Post-Exploit
CVE-2026-41080	LOW3.15	expat 2.5.0-1.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-3360	LOW3.15	glib2 2.56.4-168.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-7039	LOW3.15	glib2 2.56.4-168.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0988	LOW3.15	glib2 2.56.4-168.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-3832	LOW3.15	gnutls 3.6.16-8.el8_10.5 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5419	LOW3.15	gnutls 3.6.16-8.el8_10.5 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-0989	LOW3.15	libxml2 2.9.7-21.el8_10.4 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-45446	LOW3.15	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-6019	LOW3.11	platform-python 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-50181	LOW3.11	platform-python-pip 9.0.3-24.el8 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-50182	LOW3.11	platform-python-pip 9.0.3-24.el8 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6019	LOW3.11	python3-libs 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-50181	LOW3.11	python3-pip-wheel 9.0.3-24.el8 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-50182	LOW3.11	python3-pip-wheel 9.0.3-24.el8 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-11411	LOW3.11	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42960	LOW3.06	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42960	LOW3.06	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-5713	LOW3.06	platform-python 3.6.8-76.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-5713	LOW3.06	python3-libs 3.6.8-76.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-4878	LOW3.06	libssh 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-2650	LOW3.04	openssl 1:1.1.1k-15.el8_6 No fix yet	77.9% Actively Exploited	Post-Exploit
CVE-2026-40355	LOW3.01	krb5-workstation 1.18.2-33.el8_10 fixed in 1.18.2-34.el8_10	0.5% Theoretical Threat	Post-Exploit
CVE-2026-40356	LOW3.01	krb5-workstation 1.18.2-33.el8_10 fixed in 1.18.2-34.el8_10	0.5% Theoretical Threat	Post-Exploit
CVE-2026-42764	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2025-15468	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2025-69420	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-22796	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-42769	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42770	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-9076	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-44608	LOW3.01	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-14087	LOW3	glib2 2.56.4-168.el8_10 fixed in 2.56.4-169.el8_10	0.8% Theoretical Threat	Post-Exploit
CVE-2026-31789	LOW3	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-45447	LOW2.92	openssl 1:1.1.1k-15.el8_6 No fix yet	1.4% Low-Moderate Risk	Post-Exploit
CVE-2026-45447	LOW2.92	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	1.4% Low-Moderate Risk	Post-Exploit
CVE-2026-3783	LOW2.91	curl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-3783	LOW2.91	libcurl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2024-2511	LOW2.89	openssl 1:1.1.1k-15.el8_6 No fix yet	54.0% Actively Exploited	Post-Exploit
CVE-2025-45582	LOW2.86	tar 2:1.30-11.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2018-20225	LOW2.81	platform-python-pip 9.0.3-24.el8 No fix yet	1.7% Low-Moderate Risk	Post-Exploit
CVE-2018-20225	LOW2.81	python3-pip-wheel 9.0.3-24.el8 No fix yet	1.7% Low-Moderate Risk	Post-Exploit
CVE-2026-24883	LOW2.8	gnupg2 2.2.20-4.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2018-25282	LOW2.8	nmap-ncat 2:7.92-2.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-15469	LOW2.8	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-22795	LOW2.8	openssl 1:1.1.1k-15.el8_6 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-7383	LOW2.8	openssl 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-13837	LOW2.8	platform-python 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42308	LOW2.8	platform-python 3.6.8-76.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-6075	LOW2.8	platform-python 3.6.8-76.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-25645	LOW2.8	platform-python-pip 9.0.3-24.el8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-13837	LOW2.8	python3-libs 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42308	LOW2.8	python3-libs 3.6.8-76.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-6075	LOW2.8	python3-libs 3.6.8-76.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-25645	LOW2.8	python3-pip-wheel 9.0.3-24.el8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-5704	LOW2.8	tar 2:1.30-11.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-25645	LOW2.8	requests 2.32.5 fixed in 2.33.0	0.2% Theoretical Threat	Post-Exploit
CVE-2026-41990	LOW2.8	libgcrypt 1.8.5-7.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-0965	LOW2.8	libssh 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-70873	LOW2.8	sqlite-libs 3.26.0-20.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-33845	LOW2.78	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.6% Theoretical Threat	Post-Exploit
CVE-2018-20657	LOW2.7	libgcc 8.5.0-28.el8_10 No fix yet	4.0% Low-Moderate Risk	Post-Exploit
CVE-2018-20657	LOW2.7	libstdc++ 8.5.0-28.el8_10 No fix yet	4.0% Low-Moderate Risk	Post-Exploit
CVE-2025-27113	LOW2.7	libxml2 2.9.7-21.el8_10.4 No fix yet	1.0% Low-Moderate Risk	Post-Exploit
CVE-2022-4899	LOW2.7	libzstd 1.4.4-1.el8 No fix yet	1.6% Low-Moderate Risk	Post-Exploit
CVE-2019-16866	LOW2.7	python3-unbound 1.16.2-5.9.el8_10 No fix yet	3.5% Low-Moderate Risk	Post-Exploit
CVE-2019-19244	LOW2.7	sqlite-libs 3.26.0-20.el8_10 No fix yet	3.3% Low-Moderate Risk	Post-Exploit
CVE-2019-9936	LOW2.7	sqlite-libs 3.26.0-20.el8_10 No fix yet	5.7% Low-Moderate Risk	Post-Exploit
CVE-2019-9937	LOW2.7	sqlite-libs 3.26.0-20.el8_10 No fix yet	6.3% Low-Moderate Risk	Post-Exploit
CVE-2019-16866	LOW2.7	unbound-libs 1.16.2-5.9.el8_10 No fix yet	3.5% Low-Moderate Risk	Post-Exploit
CVE-2026-4873	LOW2.7	curl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	curl 7.61.1-34.el8_10.11 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	curl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-48964	LOW2.7	iputils 20180629-11.el8 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-4873	LOW2.7	libcurl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	libcurl 7.61.1-34.el8_10.11 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	libcurl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-42766	LOW2.7	openssl 1:1.1.1k-15.el8_6 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-42767	LOW2.7	openssl 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-12781	LOW2.7	platform-python 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-3276	LOW2.7	platform-python 3.6.8-76.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-12781	LOW2.7	python3-libs 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-3276	LOW2.7	python3-libs 3.6.8-76.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-32792	LOW2.7	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42923	LOW2.7	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-45409	LOW2.7	idna 3.13 fixed in 3.15	0.4% Theoretical Threat	Post-Exploit
CVE-2026-44431	LOW2.7	urllib3 2.6.3 fixed in 2.7.0	0.3% Theoretical Threat	Post-Exploit
CVE-2025-8277	LOW2.63	libssh 0.9.6-16.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0968	LOW2.63	libssh 0.9.6-16.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-4516	LOW2.6	platform-python 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-4516	LOW2.6	python3-libs 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-11850	LOW2.55	krb5-workstation 1.18.2-33.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-34180	LOW2.55	openssl 1:1.1.1k-15.el8_6 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2024-0397	LOW2.55	platform-python 3.6.8-76.el8_10 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2024-0397	LOW2.55	python3-libs 3.6.8-76.el8_10 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2024-0397	LOW2.55	python39 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2024-0397	LOW2.55	python39-libs 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2024-0397	LOW2.55	python39-pip 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2024-0397	LOW2.55	python39-pip-wheel 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2024-0397	LOW2.55	python39-setuptools-wheel 50.3.2-7.module+el8.10.0+23406+03055bfb No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-0966	LOW2.51	libssh 0.9.6-16.el8_10 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-0992	LOW2.46	libxml2 2.9.7-21.el8_10.4 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-14017	LOW2.45	curl 7.61.1-34.el8_10.11 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-14017	LOW2.45	libcurl 7.61.1-34.el8_10.11 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-15282	LOW2.45	platform-python 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-0672	LOW2.45	platform-python 3.6.8-76.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-15282	LOW2.45	python3-libs 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-0672	LOW2.45	python3-libs 3.6.8-76.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2024-43168	LOW2.45	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	curl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-68972	LOW2.4	gnupg2 2.2.20-4.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-30258	LOW2.4	gnupg2 2.2.20-4.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	libcurl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2024-13176	LOW2.4	openssl 1:1.1.1k-15.el8_6 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-68160	LOW2.4	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-64118	LOW2.4	tar 2:1.30-11.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.32.1-48.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-1485	LOW2.38	glib2 2.56.4-168.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2024-43167	LOW2.38	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-11468	LOW2.29	platform-python 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-1502	LOW2.29	platform-python 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-11468	LOW2.29	python3-libs 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-1502	LOW2.29	python3-libs 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-5278	LOW2.24	coreutils-single 8.30-17.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2024-33655	LOW2.22	python3-unbound 1.16.2-5.9.el8_10 No fix yet	1.7% Low-Moderate Risk	Post-Exploit
CVE-2025-6069	LOW2.19	platform-python 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-8291	LOW2.19	platform-python 3.6.8-76.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-6069	LOW2.19	python3-libs 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-8291	LOW2.19	python3-libs 3.6.8-76.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2023-45803	LOW2.14	platform-python-pip 9.0.3-24.el8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2023-45803	LOW2.14	python3-pip-wheel 9.0.3-24.el8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-24515	LOW2.12	expat 2.5.0-1.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-6170	LOW2.12	libxml2 2.9.7-21.el8_10.4 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-69418	LOW2.04	openssl 1:1.1.1k-15.el8_6 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2021-20193	LOW1.98	tar 2:1.30-11.el8_10 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2026-45446	LOW1.89	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2024-56433	LOW1.84	shadow-utils 2:4.6-23.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-3219	LOW1.68	gnupg2 2.2.20-4.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-2297	LOW1.68	platform-python 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-3479	LOW1.68	platform-python 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-2297	LOW1.68	python3-libs 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-3479	LOW1.68	python3-libs 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2023-39804	LOW1.68	tar 2:1.30-11.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-11961	LOW1.61	libpcap 14:1.9.1-5.el8 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-1795	LOW1.58	platform-python 3.6.8-76.el8_10 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1795	LOW1.58	python3-libs 3.6.8-76.el8_10 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1795	LOW1.58	python39 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1795	LOW1.58	python39-libs 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1795	LOW1.58	python39-pip 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1795	LOW1.58	python39-pip-wheel 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1795	LOW1.58	python39-setuptools-wheel 50.3.2-7.module+el8.10.0+23406+03055bfb No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2024-43167	LOW1.43	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2021-39537	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	3.0% Low-Moderate Risk	Not Applicable
CVE-2021-39537	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	3.0% Low-Moderate Risk	Not Applicable
CVE-2026-0966	NONE0	libssh-config 0.9.6-16.el8_10 No fix yet	0.6% Theoretical Threat	Not Applicable
CVE-2020-35512	NONE0	dbus 1:1.12.8-28.el8_10 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2020-35512	NONE0	dbus-common 1:1.12.8-28.el8_10 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-48864	NONE0	libsolv 0.7.20-6.el8 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-29111	NONE0	systemd 239-82.el8_10.16 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-33416	NONE0	libpng 2:1.6.34-10.el8_10 No fix yet	1.1% Low-Moderate Risk	Not Applicable
CVE-2026-3731	NONE0	libssh-config 0.9.6-16.el8_10 No fix yet	0.6% Theoretical Threat	Not Applicable
CVE-2026-4105	NONE0	systemd 239-82.el8_10.16 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-9149	NONE0	libsolv 0.7.20-6.el8 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2025-5351	NONE0	libssh-config 0.9.6-16.el8_10 No fix yet	0.5% Theoretical Threat	Not Applicable
CVE-2020-19185	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2020-19186	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.5% Low-Moderate Risk	Not Applicable
CVE-2020-19187	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2020-19188	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2020-19189	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.9% Low-Moderate Risk	Not Applicable
CVE-2020-19190	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2023-50495	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2020-19185	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2020-19186	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.5% Low-Moderate Risk	Not Applicable
CVE-2020-19187	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2020-19188	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2020-19189	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.9% Low-Moderate Risk	Not Applicable
CVE-2020-19190	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2023-50495	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2026-0964	NONE0	libssh-config 0.9.6-16.el8_10 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2025-64506	NONE0	libpng 2:1.6.34-10.el8_10 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-0967	NONE0	libssh-config 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2018-19211	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	0.9% Theoretical Threat	Not Applicable
CVE-2018-19211	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	0.9% Theoretical Threat	Not Applicable
CVE-2021-3997	NONE0	systemd 239-82.el8_10.16 No fix yet	1.5% Low-Moderate Risk	Not Applicable
CVE-2026-23865	NONE0	freetype 2.9.1-10.el8_10 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2019-7317	NONE0	libpng 2:1.6.34-10.el8_10 No fix yet	9.4% Low-Moderate Risk	Not Applicable
CVE-2025-28164	NONE0	libpng 2:1.6.34-10.el8_10 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	libfdisk 2.32.1-48.el8_10 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	libsmartcols 2.32.1-48.el8_10 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2025-8114	NONE0	libssh-config 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-4598	NONE0	systemd 239-82.el8_10.16 No fix yet	0.6% Theoretical Threat	Not Applicable
CVE-2025-64505	NONE0	libpng 2:1.6.34-10.el8_10 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-34757	NONE0	libpng 2:1.6.34-10.el8_10 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-25068	NONE0	alsa-lib 1.2.10-2.el8 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2018-20839	NONE0	systemd 239-82.el8_10.16 No fix yet	2.5% Low-Moderate Risk	Not Applicable
CVE-2024-25260	NONE0	elfutils-default-yama-scope 0.190-2.el8 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2025-4878	NONE0	libssh-config 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-0965	NONE0	libssh-config 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-8277	NONE0	libssh-config 0.9.6-16.el8_10 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2026-0968	NONE0	libssh-config 0.9.6-16.el8_10 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2026-22020	NONE0	libpng 2:1.6.34-10.el8_10 No fix yet	—	Not Applicable
GHSA-72hv-8253-57qq	NONE0	com.fasterxml.jackson.core:jackson-core 2.16.0 fixed in 2.21.1, 2.18.6	—	Not Applicable
CVE-2026-42583	NONE0	io.netty:netty-codec 4.1.132.Final fixed in 4.1.133.Final	0.4% Theoretical Threat	Not Applicable