Vulnerability Reportconfluentinc/cp-zookeeper:7.5.14

confluentinc/cp-zookeeper:7.5.14confluentinc/cp-zookeeper:7.5.14-1-ubi8

DIGESTsha256:4773eb7338c221271244c0a2ab621234399e58a7cc1d6e9ff1ecbba170dc9d18

Executive Summary

Threat ScoreCAUTION• 10 high-severity vulnerabilities on exposed surface (severity 7.5 each), including CVE-2026-33846, CVE-2026-42009, and CVE-2025-27113• 246 total vulnerabilities identified, with 52 at medium-high severity (CVSS >= 6)• High community reputation (204M+ pulls) but no official Docker verification• Post-exploit vulnerabilities are low severity (max 4.5), reducing lateral movement risk• Critical DoS flaws in core libraries (gnutls, libxml2, openssl) could cause service disruption

74/100CAUTION

ReputationPOPULAR COMMUNITY• High Reputation Community Image (204M+ pulls)• Pinned by digest (Immutable)

RELIABLE

This image carries significant risk; production deployment is highly discouraged without strict compensating controls. An attacker could exploit multiple denial-of-service vulnerabilities (e.g., CVE-2026-33846, CVE-2026-42009) to crash the ZooKeeper service, and CVE-2026-24308 might leak configuration secrets via logs. Note that CVE-2023-0464 requires enabling policy processing (disabled by default), and CVE-2024-7592 affects the http.cookies module only if used. Network segmentation and disabling unnecessary features (like DTLS) can reduce exposure but do not fully eliminate risk.

Vulnerabilities

Vulnerability Log

436 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-33846	HIGH7.5	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	1.0% Low-Moderate Risk	Directly Exposed
CVE-2026-42009	HIGH7.5	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	1.1% Low-Moderate Risk	Directly Exposed
CVE-2025-27113	HIGH7.5	libxml2 2.9.7-21.el8_10.4 No fix yet	1.0% Low-Moderate Risk	Directly Exposed
CVE-2022-4899	HIGH7.5	libzstd 1.4.4-1.el8 No fix yet	1.6% Low-Moderate Risk	Directly Exposed
CVE-2023-0464	HIGH7.5	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	3.7% Low-Moderate Risk	Directly Exposed
CVE-2024-7592	HIGH7.5	python3-libs 3.6.8-76.el8_10 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2024-7592	HIGH7.5	python39-libs 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2024-7592	HIGH7.5	python39-pip-wheel 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2024-7592	HIGH7.5	python39-setuptools-wheel 50.3.2-7.module+el8.10.0+23406+03055bfb No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2026-24308	HIGH7.5	org.apache.zookeeper:zookeeper 3.8.4 fixed in 3.9.5, 3.8.6	1.1% Low-Moderate Risk	Directly Exposed
CVE-2026-42013	MEDIUM6.97	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5260	MEDIUM6.97	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.6% Theoretical Threat	Directly Exposed
CVE-2026-0966	MEDIUM6.97	libssh 0.9.6-16.el8_10 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2026-0966	MEDIUM6.97	libssh-config 0.9.6-16.el8_10 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2026-28387	MEDIUM6.88	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2026-44249	MEDIUM6.88	io.netty:netty-handler 4.1.132.Final fixed in 4.2.15.Final, 4.1.135.Final	0.4% Theoretical Threat	Directly Exposed
CVE-2020-35512	MEDIUM6.63	dbus-daemon 1:1.12.8-28.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2020-35512	MEDIUM6.63	dbus-libs 1:1.12.8-28.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-25724	MEDIUM6.63	libarchive 3.3.3-7.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-48864	MEDIUM6.63	libsolv 0.7.20-6.el8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-29111	MEDIUM6.63	systemd-libs 239-82.el8_10.16 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2021-4209	MEDIUM6.5	gnutls 3.6.16-8.el8_10.5 No fix yet	1.3% Low-Moderate Risk	Directly Exposed
CVE-2018-1000879	MEDIUM6.5	libarchive 3.3.3-7.el8_10 No fix yet	3.4% Low-Moderate Risk	Directly Exposed
CVE-2018-1000880	MEDIUM6.5	libarchive 3.3.3-7.el8_10 No fix yet	4.1% Low-Moderate Risk	Directly Exposed
CVE-2026-45186	MEDIUM6.38	expat 2.5.0-1.el8_10 fixed in 2.5.0-2.el8_10	0.3% Theoretical Threat	Directly Exposed
CVE-2023-29499	MEDIUM6.38	glib2 2.56.4-168.el8_10 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2023-32636	MEDIUM6.38	glib2 2.56.4-168.el8_10 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-41989	MEDIUM6.38	libgcrypt 1.8.5-7.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-3731	MEDIUM6.38	libssh 0.9.6-16.el8_10 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2026-3731	MEDIUM6.38	libssh-config 0.9.6-16.el8_10 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2026-6732	MEDIUM6.38	libxml2 2.9.7-21.el8_10.4 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2026-28390	MEDIUM6.38	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-34183	MEDIUM6.38	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2025-69421	MEDIUM6.38	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-28388	MEDIUM6.38	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2026-28389	MEDIUM6.38	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2022-41409	MEDIUM6.38	pcre2 10.32-3.el8_6 No fix yet	1.0% Theoretical Threat	Directly Exposed
CVE-2026-3644	MEDIUM6.38	python3-libs 3.6.8-76.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-4224	MEDIUM6.38	python3-libs 3.6.8-76.el8_10 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2026-7210	MEDIUM6.38	python3-libs 3.6.8-76.el8_10 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-42944	MEDIUM6.38	python3-unbound 1.16.2-5.9.el8_10 fixed in 1.16.2-5.11.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-42959	MEDIUM6.38	python3-unbound 1.16.2-5.9.el8_10 fixed in 1.16.2-5.11.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-42944	MEDIUM6.38	unbound-libs 1.16.2-5.9.el8_10 fixed in 1.16.2-5.11.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-42959	MEDIUM6.38	unbound-libs 1.16.2-5.9.el8_10 fixed in 1.16.2-5.11.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-45416	MEDIUM6.38	io.netty:netty-handler 4.1.132.Final fixed in 4.2.15.Final, 4.1.135.Final	0.3% Theoretical Threat	Directly Exposed
CVE-2026-50010	MEDIUM6.38	io.netty:netty-handler 4.1.132.Final fixed in 4.2.15.Final, 4.1.135.Final	0.2% Theoretical Threat	Directly Exposed
CVE-2026-44432	MEDIUM6.38	urllib3 2.6.3 fixed in 2.7.0	0.4% Theoretical Threat	Directly Exposed
CVE-2026-3833	MEDIUM6.29	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.5% Theoretical Threat	Directly Exposed
CVE-2026-42011	MEDIUM6.29	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.4% Theoretical Threat	Directly Exposed
CVE-2026-34182	MEDIUM6.29	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-24281	MEDIUM6.29	org.apache.zookeeper:zookeeper 3.8.4 fixed in 3.8.6, 3.9.5	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42012	MEDIUM6.03	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.2% Theoretical Threat	Directly Exposed
CVE-2026-44604	MEDIUM5.95	python3-rpm 4.14.3-32.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-44604	MEDIUM5.95	rpm-build-libs 4.14.3-32.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-44604	MEDIUM5.95	rpm-libs 4.14.3-32.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2019-12904	MEDIUM5.9	libgcrypt 1.8.5-7.el8_6 No fix yet	2.1% Low-Moderate Risk	Directly Exposed
CVE-2024-2236	MEDIUM5.9	libgcrypt 1.8.5-7.el8_6 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2025-13151	MEDIUM5.9	libtasn1 4.13-5.el8_10 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-41996	MEDIUM5.9	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2026-56403	MEDIUM5.87	expat 2.5.0-1.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-22185	MEDIUM5.78	openldap 2.4.46-21.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-4105	MEDIUM5.7	systemd-libs 239-82.el8_10.16 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-42014	MEDIUM5.61	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.1% Theoretical Threat	Directly Exposed
CVE-2025-5915	MEDIUM5.61	libarchive 3.3.3-7.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-5918	MEDIUM5.61	libarchive 3.3.3-7.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-4741	MEDIUM5.6	openssl-libs 1:1.1.1k-15.el8_6 fixed in 1:1.1.1k-16.el8_6	2.9% Low-Moderate Risk	Directly Exposed
CVE-2025-14512	MEDIUM5.52	glib2 2.56.4-168.el8_10 fixed in 2.56.4-169.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-4437	MEDIUM5.52	glibc 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	glibc 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4437	MEDIUM5.52	glibc-common 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	glibc-common 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4437	MEDIUM5.52	glibc-minimal-langpack 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	glibc-minimal-langpack 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4426	MEDIUM5.52	libarchive 3.3.3-7.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-9149	MEDIUM5.52	libsolv 0.7.20-6.el8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-5351	MEDIUM5.52	libssh 0.9.6-16.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2025-5351	MEDIUM5.52	libssh-config 0.9.6-16.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2023-45322	MEDIUM5.52	libxml2 2.9.7-21.el8_10.4 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2019-14250	MEDIUM5.5	libgcc 8.5.0-28.el8_10 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2019-14250	MEDIUM5.5	libstdc++ 8.5.0-28.el8_10 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2018-1000654	MEDIUM5.5	libtasn1 4.13-5.el8_10 No fix yet	2.0% Low-Moderate Risk	Directly Exposed
CVE-2024-34459	MEDIUM5.5	libxml2 2.9.7-21.el8_10.4 fixed in 2.9.7-21.el8_10.5	2.3% Low-Moderate Risk	Directly Exposed
CVE-2024-0727	MEDIUM5.5	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	3.2% Low-Moderate Risk	Directly Exposed
CVE-2021-3997	MEDIUM5.5	systemd-libs 239-82.el8_10.16 No fix yet	1.6% Low-Moderate Risk	Directly Exposed
CVE-2026-0964	MEDIUM5.35	libssh 0.9.6-16.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0964	MEDIUM5.35	libssh-config 0.9.6-16.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-34181	MEDIUM5.35	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-42768	MEDIUM5.35	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2023-0466	MEDIUM5.3	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	1.6% Low-Moderate Risk	Directly Exposed
CVE-2023-0465	MEDIUM5.3	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	1.6% Low-Moderate Risk	Directly Exposed
CVE-2026-1757	MEDIUM5.27	libxml2 2.9.7-21.el8_10.4 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-6019	MEDIUM5.18	python3-libs 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-50181	MEDIUM5.18	python3-pip-wheel 9.0.3-24.el8 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-50182	MEDIUM5.18	python3-pip-wheel 9.0.3-24.el8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-11411	MEDIUM5.18	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-11411	MEDIUM5.18	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5713	MEDIUM5.1	python3-libs 3.6.8-76.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-50219	MEDIUM5.02	expat 2.5.0-1.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-56412	MEDIUM5.02	expat 2.5.0-1.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc 2.28-251.el8_10.34 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc-common 2.28-251.el8_10.34 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc-minimal-langpack 2.28-251.el8_10.34 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-40355	MEDIUM5.02	krb5-libs 1.18.2-33.el8_10 fixed in 1.18.2-34.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40356	MEDIUM5.02	krb5-libs 1.18.2-33.el8_10 fixed in 1.18.2-34.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40355	MEDIUM5.02	libkadm5 1.18.2-33.el8_10 fixed in 1.18.2-34.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40356	MEDIUM5.02	libkadm5 1.18.2-33.el8_10 fixed in 1.18.2-34.el8_10	0.5% Theoretical Threat	Directly Exposed
CVE-2026-0990	MEDIUM5.02	libxml2 2.9.7-21.el8_10.4 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2025-15468	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2025-69420	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-22796	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-42769	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42770	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-9076	MEDIUM5.02	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-44608	MEDIUM5.02	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-44608	MEDIUM5.02	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-2511	MEDIUM4.81	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	54.0% Actively Exploited	Directly Exposed
CVE-2025-5916	MEDIUM4.76	libarchive 3.3.3-7.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-32776	MEDIUM4.67	expat 2.5.0-1.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-32777	MEDIUM4.67	expat 2.5.0-1.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-32778	MEDIUM4.67	expat 2.5.0-1.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-66382	MEDIUM4.67	expat 2.5.0-1.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-32611	MEDIUM4.67	glib2 2.56.4-168.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2023-32665	MEDIUM4.67	glib2 2.56.4-168.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-60753	MEDIUM4.67	libarchive 3.3.3-7.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5745	MEDIUM4.67	libarchive 3.3.3-7.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-1632	MEDIUM4.67	libarchive 3.3.3-7.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libgcc 8.5.0-28.el8_10 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2026-0967	MEDIUM4.67	libssh 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-0967	MEDIUM4.67	libssh-config 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libstdc++ 8.5.0-28.el8_10 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2025-15469	MEDIUM4.67	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-22795	MEDIUM4.67	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-7383	MEDIUM4.67	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-13837	MEDIUM4.67	python3-libs 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-42308	MEDIUM4.67	python3-libs 3.6.8-76.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-6075	MEDIUM4.67	python3-libs 3.6.8-76.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-25645	MEDIUM4.67	python3-pip-wheel 9.0.3-24.el8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2024-0232	MEDIUM4.67	sqlite-libs 3.26.0-20.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-27171	MEDIUM4.67	zlib 1.2.11-25.el8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-25645	MEDIUM4.67	requests 2.32.5 fixed in 2.33.0	0.2% Theoretical Threat	Directly Exposed
CVE-2026-1489	MEDIUM4.59	glib2 2.56.4-168.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-0464	MEDIUM4.5	openssl 1:1.1.1k-15.el8_6 No fix yet	3.7% Low-Moderate Risk	Post-Exploit
CVE-2024-7592	MEDIUM4.5	platform-python 3.6.8-76.el8_10 No fix yet	2.3% Low-Moderate Risk	Post-Exploit
CVE-2024-7592	MEDIUM4.5	python39 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	2.3% Low-Moderate Risk	Post-Exploit
CVE-2022-0391	MEDIUM4.5	python39-pip 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	8.3% Low-Moderate Risk	Post-Exploit
CVE-2024-7592	MEDIUM4.5	python39-pip 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	2.3% Low-Moderate Risk	Post-Exploit
CVE-2026-4046	MEDIUM4.5	glibc 2.28-251.el8_10.34 fixed in 2.28-251.el8_10.37	0.4% Theoretical Threat	Directly Exposed
CVE-2026-4046	MEDIUM4.5	glibc-common 2.28-251.el8_10.34 fixed in 2.28-251.el8_10.37	0.4% Theoretical Threat	Directly Exposed
CVE-2026-4046	MEDIUM4.5	glibc-minimal-langpack 2.28-251.el8_10.34 fixed in 2.28-251.el8_10.37	0.4% Theoretical Threat	Directly Exposed
CVE-2026-42015	MEDIUM4.5	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.6% Theoretical Threat	Directly Exposed
CVE-2026-42766	MEDIUM4.5	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2026-42767	MEDIUM4.5	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-12781	MEDIUM4.5	python3-libs 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-3276	MEDIUM4.5	python3-libs 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-44390	MEDIUM4.5	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-32792	MEDIUM4.5	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42923	MEDIUM4.5	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-44390	MEDIUM4.5	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-32792	MEDIUM4.5	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42923	MEDIUM4.5	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-34743	MEDIUM4.5	xz-libs 5.2.4-4.el8_6 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2024-6763	MEDIUM4.5	org.eclipse.jetty:jetty-http 9.4.60 fixed in 12.0.12	1.0% Theoretical Threat	Directly Exposed
CVE-2026-45409	MEDIUM4.5	idna 3.13 fixed in 3.15	0.4% Theoretical Threat	Directly Exposed
CVE-2026-44431	MEDIUM4.5	urllib3 2.6.3 fixed in 2.7.0	0.5% Theoretical Threat	Directly Exposed
CVE-2024-7264	MEDIUM4.48	curl 7.61.1-34.el8_10.11 No fix yet	16.2% High Exploitation Risk	Post-Exploit
CVE-2024-7264	MEDIUM4.48	libcurl 7.61.1-34.el8_10.11 No fix yet	16.2% High Exploitation Risk	Post-Exploit
CVE-2025-4516	MEDIUM4.33	python3-libs 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2018-20839	MEDIUM4.3	systemd-libs 239-82.el8_10.16 No fix yet	2.5% Low-Moderate Risk	Directly Exposed
CVE-2026-42250	MEDIUM4.25	bzip2-libs 1.0.6-28.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc 2.28-251.el8_10.34 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc-common 2.28-251.el8_10.34 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc-common 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc-minimal-langpack 2.28-251.el8_10.34 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc-minimal-langpack 2.28-251.el8_10.34 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	krb5-libs 1.18.2-33.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-5917	MEDIUM4.25	libarchive 3.3.3-7.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	libkadm5 1.18.2-33.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-34180	MEDIUM4.25	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2024-0397	MEDIUM4.25	python3-libs 3.6.8-76.el8_10 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2024-0397	MEDIUM4.25	python39-libs 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2024-0397	MEDIUM4.25	python39-pip-wheel 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2024-0397	MEDIUM4.25	python39-setuptools-wheel 50.3.2-7.module+el8.10.0+23406+03055bfb No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-56405	MEDIUM4.17	expat 2.5.0-1.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-15079	MEDIUM4.13	curl 7.61.1-34.el8_10.11 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-15079	MEDIUM4.13	libcurl 7.61.1-34.el8_10.11 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-28387	MEDIUM4.13	openssl 1:1.1.1k-15.el8_6 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-15282	MEDIUM4.08	python3-libs 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-0672	MEDIUM4.08	python3-libs 3.6.8-76.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2024-43168	MEDIUM4.08	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-43168	MEDIUM4.08	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libblkid 2.32.1-48.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libfdisk 2.32.1-48.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libmount 2.32.1-48.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libsmartcols 2.32.1-48.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-8114	MEDIUM4	libssh 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-8114	MEDIUM4	libssh-config 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libuuid 2.32.1-48.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2021-24032	MEDIUM4	libzstd 1.4.4-1.el8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-13176	MEDIUM4	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2025-68160	MEDIUM4	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-4598	MEDIUM4	systemd-libs 239-82.el8_10.16 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2020-35512	LOW3.98	dbus-tools 1:1.12.8-28.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-47268	LOW3.9	iputils 20180629-11.el8 No fix yet	1.3% Low-Moderate Risk	Post-Exploit
CVE-2024-10524	LOW3.9	wget 1.19.5-12.el8_10 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2026-5773	LOW3.82	curl 7.61.1-34.el8_10.11 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW3.82	curl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5773	LOW3.82	libcurl 7.61.1-34.el8_10.11 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW3.82	libcurl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-28390	LOW3.82	openssl 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-34183	LOW3.82	openssl 1:1.1.1k-15.el8_6 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-69421	LOW3.82	openssl 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-28388	LOW3.82	openssl 1:1.1.1k-15.el8_6 No fix yet	0.9% Theoretical Threat	Post-Exploit
CVE-2026-28389	LOW3.82	openssl 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-3644	LOW3.82	platform-python 3.6.8-76.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-4224	LOW3.82	platform-python 3.6.8-76.el8_10 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7210	LOW3.82	platform-python 3.6.8-76.el8_10 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2025-11468	LOW3.82	python3-libs 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-1502	LOW3.82	python3-libs 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-34182	LOW3.77	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2019-8905	LOW3.74	file-libs 5.33-27.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2019-8906	LOW3.74	file-libs 5.33-27.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2024-33655	LOW3.7	python3-unbound 1.16.2-5.9.el8_10 No fix yet	1.7% Low-Moderate Risk	Directly Exposed
CVE-2024-33655	LOW3.7	unbound-libs 1.16.2-5.9.el8_10 No fix yet	1.7% Low-Moderate Risk	Directly Exposed
CVE-2021-31879	LOW3.66	wget 1.19.5-12.el8_10 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2025-6069	LOW3.65	python3-libs 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2025-8291	LOW3.65	python3-libs 3.6.8-76.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-4156	LOW3.62	gawk 4.2.1-4.el8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2005-2541	LOW3.6	tar 2:1.30-11.el8_10 No fix yet	4.0% Low-Moderate Risk	Post-Exploit
CVE-2026-44604	LOW3.57	rpm 4.14.3-32.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-1484	LOW3.57	glib2 2.56.4-168.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-45803	LOW3.57	python3-pip-wheel 9.0.3-24.el8 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2024-11053	LOW3.54	curl 7.61.1-34.el8_10.11 No fix yet	1.4% Low-Moderate Risk	Post-Exploit
CVE-2024-11053	LOW3.54	libcurl 7.61.1-34.el8_10.11 No fix yet	1.4% Low-Moderate Risk	Post-Exploit
CVE-2024-41996	LOW3.54	openssl 1:1.1.1k-15.el8_6 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2018-1121	LOW3.54	procps-ng 3.3.15-14.el8 No fix yet	4.2% Low-Moderate Risk	Post-Exploit
CVE-2025-13034	LOW3.47	curl 7.61.1-34.el8_10.11 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-1965	LOW3.47	curl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-13034	LOW3.47	libcurl 7.61.1-34.el8_10.11 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-1965	LOW3.47	libcurl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2024-25260	LOW3.4	elfutils-libelf 0.190-2.el8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-25260	LOW3.4	elfutils-libs 0.190-2.el8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4438	LOW3.4	glibc 2.28-251.el8_10.34 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-4438	LOW3.4	glibc-common 2.28-251.el8_10.34 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-4438	LOW3.4	glibc-minimal-langpack 2.28-251.el8_10.34 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2024-57970	LOW3.4	libarchive 3.3.3-7.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-69418	LOW3.4	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-45536	LOW3.4	io.netty:netty-transport-native-epoll 4.1.132.Final fixed in 4.2.15.Final, 4.1.135.Final	0.1% Theoretical Threat	Directly Exposed
CVE-2024-4741	LOW3.36	openssl 1:1.1.1k-15.el8_6 fixed in 1:1.1.1k-16.el8_6	2.9% Low-Moderate Risk	Post-Exploit
CVE-2026-3784	LOW3.31	curl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	curl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	curl 7.61.1-34.el8_10.11 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	curl 7.61.1-34.el8_10.11 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-3784	LOW3.31	libcurl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	libcurl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	libcurl 7.61.1-34.el8_10.11 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	libcurl 7.61.1-34.el8_10.11 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-33056	LOW3.31	tar 2:1.30-11.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2024-0727	LOW3.3	openssl 1:1.1.1k-15.el8_6 No fix yet	3.2% Low-Moderate Risk	Post-Exploit
CVE-2026-3805	LOW3.21	curl 7.61.1-34.el8_10.11 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-3805	LOW3.21	libcurl 7.61.1-34.el8_10.11 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-34181	LOW3.21	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42768	LOW3.21	openssl 1:1.1.1k-15.el8_6 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-5958	LOW3.21	sed 4.5-5.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2023-0466	LOW3.18	openssl 1:1.1.1k-15.el8_6 No fix yet	1.6% Low-Moderate Risk	Post-Exploit
CVE-2023-0465	LOW3.18	openssl 1:1.1.1k-15.el8_6 No fix yet	1.6% Low-Moderate Risk	Post-Exploit
CVE-2023-27534	LOW3.17	curl 7.61.1-34.el8_10.11 No fix yet	2.2% Low-Moderate Risk	Post-Exploit
CVE-2023-27534	LOW3.17	libcurl 7.61.1-34.el8_10.11 No fix yet	2.2% Low-Moderate Risk	Post-Exploit
CVE-2026-41080	LOW3.15	expat 2.5.0-1.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-3360	LOW3.15	glib2 2.56.4-168.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-7039	LOW3.15	glib2 2.56.4-168.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0988	LOW3.15	glib2 2.56.4-168.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-3832	LOW3.15	gnutls 3.6.16-8.el8_10.5 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2026-5419	LOW3.15	gnutls 3.6.16-8.el8_10.5 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-0989	LOW3.15	libxml2 2.9.7-21.el8_10.4 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-45446	LOW3.15	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-6019	LOW3.11	platform-python 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-50181	LOW3.11	platform-python-pip 9.0.3-24.el8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-50182	LOW3.11	platform-python-pip 9.0.3-24.el8 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42960	LOW3.06	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42960	LOW3.06	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-5713	LOW3.06	platform-python 3.6.8-76.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-4878	LOW3.06	libssh 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-4878	LOW3.06	libssh-config 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-2650	LOW3.04	openssl 1:1.1.1k-15.el8_6 No fix yet	77.9% Actively Exploited	Post-Exploit
CVE-2023-2650	LOW3.04	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	77.9% Actively Exploited	Post-Exploit
CVE-2026-40355	LOW3.01	krb5-workstation 1.18.2-33.el8_10 fixed in 1.18.2-34.el8_10	0.5% Theoretical Threat	Post-Exploit
CVE-2026-40356	LOW3.01	krb5-workstation 1.18.2-33.el8_10 fixed in 1.18.2-34.el8_10	0.5% Theoretical Threat	Post-Exploit
CVE-2025-15468	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2025-69420	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-22796	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-42769	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42770	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-9076	LOW3.01	openssl 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-14087	LOW3	glib2 2.56.4-168.el8_10 fixed in 2.56.4-169.el8_10	0.8% Theoretical Threat	Post-Exploit
CVE-2026-42010	LOW3	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.9% Theoretical Threat	Post-Exploit
CVE-2026-31789	LOW3	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-31789	LOW3	openssl-libs 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-45447	LOW2.92	openssl 1:1.1.1k-15.el8_6 fixed in 1:1.1.1k-16.el8_6	2.3% Low-Moderate Risk	Post-Exploit
CVE-2026-45447	LOW2.92	openssl-libs 1:1.1.1k-15.el8_6 fixed in 1:1.1.1k-16.el8_6	2.3% Low-Moderate Risk	Post-Exploit
CVE-2026-3783	LOW2.91	curl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-3783	LOW2.91	libcurl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2024-2511	LOW2.89	openssl 1:1.1.1k-15.el8_6 No fix yet	54.0% Actively Exploited	Post-Exploit
CVE-2025-45582	LOW2.86	tar 2:1.30-11.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2018-20225	LOW2.81	platform-python-pip 9.0.3-24.el8 No fix yet	1.7% Low-Moderate Risk	Post-Exploit
CVE-2018-20225	LOW2.81	python3-pip-wheel 9.0.3-24.el8 No fix yet	1.7% Low-Moderate Risk	Post-Exploit
CVE-2026-24883	LOW2.8	gnupg2 2.2.20-4.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2018-25282	LOW2.8	nmap-ncat 2:7.92-2.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-15469	LOW2.8	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-22795	LOW2.8	openssl 1:1.1.1k-15.el8_6 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-7383	LOW2.8	openssl 1:1.1.1k-15.el8_6 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-13837	LOW2.8	platform-python 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42308	LOW2.8	platform-python 3.6.8-76.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-6075	LOW2.8	platform-python 3.6.8-76.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-25645	LOW2.8	platform-python-pip 9.0.3-24.el8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-5704	LOW2.8	tar 2:1.30-11.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-41990	LOW2.8	libgcrypt 1.8.5-7.el8_6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-0965	LOW2.8	libssh 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-0965	LOW2.8	libssh-config 0.9.6-16.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-13462	LOW2.8	python3-libs 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-2297	LOW2.8	python3-libs 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-3479	LOW2.8	python3-libs 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-70873	LOW2.8	sqlite-libs 3.26.0-20.el8_10 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-33845	LOW2.78	gnutls 3.6.16-8.el8_10.5 fixed in 3.6.16-8.el8_10.6	0.7% Theoretical Threat	Post-Exploit
CVE-2018-20657	LOW2.7	libgcc 8.5.0-28.el8_10 No fix yet	4.0% Low-Moderate Risk	Post-Exploit
CVE-2018-20657	LOW2.7	libstdc++ 8.5.0-28.el8_10 No fix yet	4.0% Low-Moderate Risk	Post-Exploit
CVE-2019-9674	LOW2.7	platform-python 3.6.8-76.el8_10 No fix yet	5.5% Low-Moderate Risk	Post-Exploit
CVE-2019-9674	LOW2.7	python3-libs 3.6.8-76.el8_10 No fix yet	5.5% Low-Moderate Risk	Post-Exploit
CVE-2019-16866	LOW2.7	python3-unbound 1.16.2-5.9.el8_10 No fix yet	3.5% Low-Moderate Risk	Post-Exploit
CVE-2022-0391	LOW2.7	python39 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	8.3% Low-Moderate Risk	Post-Exploit
CVE-2022-0391	LOW2.7	python39-libs 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	8.3% Low-Moderate Risk	Post-Exploit
CVE-2022-0391	LOW2.7	python39-pip-wheel 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	8.3% Low-Moderate Risk	Post-Exploit
CVE-2022-0391	LOW2.7	python39-setuptools-wheel 50.3.2-7.module+el8.10.0+23406+03055bfb No fix yet	8.3% Low-Moderate Risk	Post-Exploit
CVE-2019-19244	LOW2.7	sqlite-libs 3.26.0-20.el8_10 No fix yet	3.3% Low-Moderate Risk	Post-Exploit
CVE-2019-9936	LOW2.7	sqlite-libs 3.26.0-20.el8_10 No fix yet	5.7% Low-Moderate Risk	Post-Exploit
CVE-2019-9937	LOW2.7	sqlite-libs 3.26.0-20.el8_10 No fix yet	6.3% Low-Moderate Risk	Post-Exploit
CVE-2019-9923	LOW2.7	tar 2:1.30-11.el8_10 No fix yet	3.0% Low-Moderate Risk	Post-Exploit
CVE-2019-16866	LOW2.7	unbound-libs 1.16.2-5.9.el8_10 No fix yet	3.5% Low-Moderate Risk	Post-Exploit
CVE-2026-4873	LOW2.7	curl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	curl 7.61.1-34.el8_10.11 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	curl 7.61.1-34.el8_10.11 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-48964	LOW2.7	iputils 20180629-11.el8 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-4873	LOW2.7	libcurl 7.61.1-34.el8_10.11 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	libcurl 7.61.1-34.el8_10.11 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	libcurl 7.61.1-34.el8_10.11 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-42766	LOW2.7	openssl 1:1.1.1k-15.el8_6 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-42767	LOW2.7	openssl 1:1.1.1k-15.el8_6 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-12781	LOW2.7	platform-python 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-3276	LOW2.7	platform-python 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-8277	LOW2.63	libssh 0.9.6-16.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0968	LOW2.63	libssh 0.9.6-16.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-8277	LOW2.63	libssh-config 0.9.6-16.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0968	LOW2.63	libssh-config 0.9.6-16.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-1795	LOW2.63	python3-libs 3.6.8-76.el8_10 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2025-1795	LOW2.63	python39-libs 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2025-1795	LOW2.63	python39-pip-wheel 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2025-1795	LOW2.63	python39-setuptools-wheel 50.3.2-7.module+el8.10.0+23406+03055bfb No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2025-4516	LOW2.6	platform-python 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-11850	LOW2.55	krb5-workstation 1.18.2-33.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-34180	LOW2.55	openssl 1:1.1.1k-15.el8_6 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2024-0397	LOW2.55	platform-python 3.6.8-76.el8_10 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2024-0397	LOW2.55	python39 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2024-0397	LOW2.55	python39-pip 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-0992	LOW2.46	libxml2 2.9.7-21.el8_10.4 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-14017	LOW2.45	curl 7.61.1-34.el8_10.11 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-14017	LOW2.45	libcurl 7.61.1-34.el8_10.11 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-15282	LOW2.45	platform-python 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-0672	LOW2.45	platform-python 3.6.8-76.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	curl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-68972	LOW2.4	gnupg2 2.2.20-4.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-30258	LOW2.4	gnupg2 2.2.20-4.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	libcurl 7.61.1-34.el8_10.11 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2024-13176	LOW2.4	openssl 1:1.1.1k-15.el8_6 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-68160	LOW2.4	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-64118	LOW2.4	tar 2:1.30-11.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.32.1-48.el8_10 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-1485	LOW2.38	glib2 2.56.4-168.el8_10 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2024-43167	LOW2.38	python3-unbound 1.16.2-5.9.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2024-43167	LOW2.38	unbound-libs 1.16.2-5.9.el8_10 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-11468	LOW2.29	platform-python 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-1502	LOW2.29	platform-python 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-5278	LOW2.24	coreutils-single 8.30-17.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-6069	LOW2.19	platform-python 3.6.8-76.el8_10 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-8291	LOW2.19	platform-python 3.6.8-76.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2023-45803	LOW2.14	platform-python-pip 9.0.3-24.el8 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-24515	LOW2.12	expat 2.5.0-1.el8_10 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-6170	LOW2.12	libxml2 2.9.7-21.el8_10.4 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-69418	LOW2.04	openssl 1:1.1.1k-15.el8_6 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2021-20193	LOW1.98	tar 2:1.30-11.el8_10 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2026-45446	LOW1.89	openssl 1:1.1.1k-15.el8_6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2024-56433	LOW1.84	shadow-utils 2:4.6-23.el8_10 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-3219	LOW1.68	gnupg2 2.2.20-4.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-13462	LOW1.68	platform-python 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-2297	LOW1.68	platform-python 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-3479	LOW1.68	platform-python 3.6.8-76.el8_10 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2023-39804	LOW1.68	tar 2:1.30-11.el8_10 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-11961	LOW1.61	libpcap 14:1.9.1-5.el8 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-1795	LOW1.58	platform-python 3.6.8-76.el8_10 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1795	LOW1.58	python39 3.9.25-2.module+el8.10.0+23718+1842ae33 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1795	LOW1.58	python39-pip 20.2.4-9.module+el8.10.0+21329+8d76b841 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2021-39537	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	3.0% Low-Moderate Risk	Not Applicable
CVE-2021-39537	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	3.0% Low-Moderate Risk	Not Applicable
CVE-2020-35512	NONE0	dbus 1:1.12.8-28.el8_10 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2020-35512	NONE0	dbus-common 1:1.12.8-28.el8_10 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-29111	NONE0	systemd 239-82.el8_10.16 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-29111	NONE0	systemd-pam 239-82.el8_10.16 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-4105	NONE0	systemd 239-82.el8_10.16 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-4105	NONE0	systemd-pam 239-82.el8_10.16 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2020-19185	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2020-19186	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.5% Low-Moderate Risk	Not Applicable
CVE-2020-19187	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2020-19188	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2020-19189	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.9% Low-Moderate Risk	Not Applicable
CVE-2020-19190	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2023-50495	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2020-19185	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2020-19186	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.5% Low-Moderate Risk	Not Applicable
CVE-2020-19187	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2020-19188	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2020-19189	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.9% Low-Moderate Risk	Not Applicable
CVE-2020-19190	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.4% Low-Moderate Risk	Not Applicable
CVE-2023-50495	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2018-19211	NONE0	ncurses-base 6.1-10.20180224.el8 No fix yet	0.9% Theoretical Threat	Not Applicable
CVE-2018-19211	NONE0	ncurses-libs 6.1-10.20180224.el8 No fix yet	0.9% Theoretical Threat	Not Applicable
CVE-2021-3997	NONE0	systemd 239-82.el8_10.16 No fix yet	1.6% Low-Moderate Risk	Not Applicable
CVE-2021-3997	NONE0	systemd-pam 239-82.el8_10.16 No fix yet	1.6% Low-Moderate Risk	Not Applicable
CVE-2026-54411	NONE0	pam 1.3.1-39.el8_10 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2025-4598	NONE0	systemd 239-82.el8_10.16 No fix yet	0.6% Theoretical Threat	Not Applicable
CVE-2025-4598	NONE0	systemd-pam 239-82.el8_10.16 No fix yet	0.6% Theoretical Threat	Not Applicable
CVE-2018-20839	NONE0	systemd 239-82.el8_10.16 No fix yet	2.5% Low-Moderate Risk	Not Applicable
CVE-2018-20839	NONE0	systemd-pam 239-82.el8_10.16 No fix yet	2.5% Low-Moderate Risk	Not Applicable
CVE-2024-25260	NONE0	elfutils-default-yama-scope 0.190-2.el8 No fix yet	0.3% Theoretical Threat	Not Applicable
GHSA-72hv-8253-57qq	NONE0	com.fasterxml.jackson.core:jackson-core 2.16.0 fixed in 2.21.1, 2.18.6	—	Not Applicable
CVE-2026-42583	NONE0	io.netty:netty-codec 4.1.132.Final fixed in 4.1.133.Final	0.4% Theoretical Threat	Not Applicable
GHSA-2r2c-cx56-8933	NONE0	org.jline:jline-remote-telnet 3.22.0 fixed in 4.2.1	—	Not Applicable
GHSA-47qp-hqvx-6r3f	NONE0	org.jline:jline-remote-telnet 3.22.0 fixed in 4.2.1	—	Not Applicable