Vulnerability Reportdolthub/dolt-sql-server:2.1.6

Name: dolthub/dolt-sql-server:latest Security Vulnerability Report
Creator: BaseImage
Keywords: dolthub/dolt-sql-server:latest, Docker security, vulnerability scan, CVE, container security, SBOM

dolthub/dolt-sql-server:latestdolthub/dolt-sql-server:2.1.6

DIGESTsha256:1c714f83029387ebd0cefa88416313aec746494ac18332bfb5e83372166c5f00

Executive Summary

DANGEROUS

This image poses a critical security risk and must not be used in production, especially as an internet-facing service. An attacker could gain unauthorized remote access to the database server by bypassing authentication via CVE-2026-42010, or potentially achieve arbitrary code execution or service disruption if untrusted ZIP archives are processed due to CVE-2023-45853. Note that the authentication bypass in CVE-2026-42010 requires the server to be configured with RSA-PSK authentication, and the arbitrary code execution risk from CVE-2023-45853 depends on the server processing untrusted ZIP archives. Furthermore, this image is from an unverified community publisher and contains a significant attack surface with 155 total vulnerabilities. Production deployment of this image is strictly prohibited without significant security re-evaluation and hardening.

Threat Score

100/100

DANGEROUS

Contains a critical authentication bypass vulnerability, CVE-2026-42010, in `libgnutls30` (severity 8.33), directly impacting the network-facing SQL server and enabling unauthorized remote access.
Multiple other high-severity exposed vulnerabilities are present, including remote denial of service via `glibc` (e.g., CVE-2018-20796, severity 7.5) and potential arbitrary code execution from `zlib` (CVE-2023-45853, severity 7.84).
The image is from an 'UNVERIFIED' community publisher ('dolthub') with a low reputation score (55) and a warning status, indicating it is not suitable for production trust.
A significant attack surface is detected with 155 exposed vulnerabilities, 11 of which are rated critical or high severity (>=7.0).

Reputation

UNVERIFIED

dolthub

COMMUNITY

Community Image with low/unknown reputation
Pinned by digest (Immutable)

BaseImage/

dolthub/dolt-sql-server:2.1.6

Hardened

Grade

A+

Vulns

Verified & secured for production

Vulnerabilities

Vulnerability Log

294 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-42010	HIGH8.33	libgnutls30 3.7.9-2+deb12u6 fixed in 3.7.9-2+deb12u7	0.2% Theoretical Threat	Directly ExposedContext importance: HIGH
CVE-2023-45853	HIGH7.84	zlib1g 1:1.2.13.dfsg-1 No fix yet	1.4% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2018-20796	HIGH7.5	libc-bin 2.36-9+deb12u14 No fix yet	1.5% Low-Moderate Risk	Directly ExposedContext importance: HIGH
CVE-2018-20796	HIGH7.5	libc6 2.36-9+deb12u14 No fix yet	1.5% Low-Moderate Risk	Directly ExposedContext importance: HIGH
CVE-2024-28757	HIGH7.5	libexpat1 2.5.0-1+deb12u2 No fix yet	1.2% Low-Moderate Risk	Directly Exposed
CVE-2026-42009	HIGH7.5	libgnutls30 3.7.9-2+deb12u6 fixed in 3.7.9-2+deb12u7	—	Directly Exposed
CVE-2018-5709	HIGH7.5	libkrb5support0 1.20.1-2+deb12u5 No fix yet	1.5% Low-Moderate Risk	Directly Exposed
CVE-2023-2953	HIGH7.5	libldap-2.5-0 2.5.13+dfsg-5 No fix yet	1.4% Low-Moderate Risk	Directly Exposed
CVE-2019-1010023	HIGH7.48	libc-bin 2.36-9+deb12u14 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2019-1010023	HIGH7.48	libc6 2.36-9+deb12u14 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42012	HIGH7.1	libgnutls30 3.7.9-2+deb12u6 fixed in 3.7.9-2+deb12u7	—	Directly Exposed
CVE-2025-15079	MEDIUM6.88	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-15079	MEDIUM6.88	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-25210	MEDIUM6.63	libexpat1 2.5.0-1+deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-42013	MEDIUM6.56	libgnutls30 3.7.9-2+deb12u6 fixed in 3.7.9-2+deb12u7	—	Directly ExposedContext importance: MEDIUM
CVE-2026-5260	MEDIUM6.56	libgnutls30 3.7.9-2+deb12u6 fixed in 3.7.9-2+deb12u7	—	Directly ExposedContext importance: MEDIUM
CVE-2019-9192	MEDIUM6.38	libc-bin 2.36-9+deb12u14 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2019-9192	MEDIUM6.38	libc6 2.36-9+deb12u14 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-5773	MEDIUM6.38	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6276	MEDIUM6.38	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5773	MEDIUM6.38	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6276	MEDIUM6.38	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-45186	MEDIUM6.38	libexpat1 2.5.0-1+deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-41989	MEDIUM6.38	libgcrypt20 1.10.1-3 fixed in 1.10.1-3+deb12u1	<0.1% Theoretical Threat	Directly Exposed
CVE-2018-6829	MEDIUM6.38	libgcrypt20 1.10.1-3 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-33846	MEDIUM6.38	libgnutls30 3.7.9-2+deb12u6 fixed in 3.7.9-2+deb12u7	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-41602	MEDIUM6.38	github.com/apache/thrift v0.13.1-0.20201008052519-daf620915714 fixed in 0.23.0	0.2% Theoretical Threat	Directly Exposed
CVE-2026-33811	MEDIUM6.38	stdlib v1.26.2 fixed in 1.25.10, 1.26.3	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-33814	MEDIUM6.38	stdlib v1.26.2 fixed in 1.25.10, 1.26.3	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-39820	MEDIUM6.38	stdlib v1.26.2 fixed in 1.25.10, 1.26.3	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-39836	MEDIUM6.38	stdlib v1.26.2 fixed in 1.25.10, 1.26.3	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3833	MEDIUM6.29	libgnutls30 3.7.9-2+deb12u6 fixed in 3.7.9-2+deb12u7	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-42011	MEDIUM6.29	libgnutls30 3.7.9-2+deb12u6 fixed in 3.7.9-2+deb12u7	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-7598	MEDIUM6.18	libssh2-1 1.10.0-3+b1 No fix yet	<0.1% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2015-3276	MEDIUM6	libldap-2.5-0 2.5.13+dfsg-5 No fix yet	2.6% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2026-50219	MEDIUM5.9	libexpat1 2.5.0-1+deb12u2 No fix yet	—	Directly Exposed
CVE-2026-1965	MEDIUM5.78	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14819	MEDIUM5.78	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-1965	MEDIUM5.78	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14819	MEDIUM5.78	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-22185	MEDIUM5.78	libldap-2.5-0 2.5.13+dfsg-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc-bin 2.36-9+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc6 2.36-9+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3784	MEDIUM5.52	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5545	MEDIUM5.52	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6429	MEDIUM5.52	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14524	MEDIUM5.52	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3784	MEDIUM5.52	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5545	MEDIUM5.52	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6429	MEDIUM5.52	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14524	MEDIUM5.52	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-42496	MEDIUM5.46	libperl5.36 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-42496	MEDIUM5.46	perl 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-42496	MEDIUM5.46	perl-base 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-42496	MEDIUM5.46	perl-modules-5.36 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-42015	MEDIUM5.3	libgnutls30 3.7.9-2+deb12u6 fixed in 3.7.9-2+deb12u7	—	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libblkid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libmount1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libuuid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc-bin 2.36-9+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc6 2.36-9+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-10966	MEDIUM5.02	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-10966	MEDIUM5.02	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-2236	MEDIUM5.02	libgcrypt20 1.10.1-3 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libgssapi-krb5-2 1.20.1-2+deb12u5 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.02	libgssapi-krb5-2 1.20.1-2+deb12u5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libk5crypto3 1.20.1-2+deb12u5 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.02	libk5crypto3 1.20.1-2+deb12u5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libkrb5-3 1.20.1-2+deb12u5 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.02	libkrb5-3 1.20.1-2+deb12u5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libkrb5support0 1.20.1-2+deb12u5 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.02	libkrb5support0 1.20.1-2+deb12u5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-13151	MEDIUM5.02	libtasn1-6 4.19.0-2+deb12u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-42250	MEDIUM5	libbz2-1.0 1.0.8-5+b1 No fix yet	—	Directly Exposed
CVE-2026-3783	MEDIUM4.84	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3783	MEDIUM4.84	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-48962	MEDIUM4.68	libperl5.36 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-48962	MEDIUM4.68	perl 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-48962	MEDIUM4.68	perl-base 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-48962	MEDIUM4.68	perl-modules-5.36 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2022-27943	MEDIUM4.67	gcc-12-base 12.2.0-14+deb12u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libblkid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-66382	MEDIUM4.67	libexpat1 2.5.0-1+deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-32776	MEDIUM4.67	libexpat1 2.5.0-1+deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-32777	MEDIUM4.67	libexpat1 2.5.0-1+deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-32778	MEDIUM4.67	libexpat1 2.5.0-1+deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2023-52426	MEDIUM4.67	libexpat1 2.5.0-1+deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libgcc-s1 12.2.0-14+deb12u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libmount1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libstdc++6 12.2.0-14+deb12u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libuuid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27171	MEDIUM4.67	zlib1g 1:1.2.13.dfsg-1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-33845	MEDIUM4.64	libgnutls30 3.7.9-2+deb12u6 fixed in 3.7.9-2+deb12u7	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-2379	MEDIUM4.59	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2024-2379	MEDIUM4.59	libcurl4 7.88.1-10+deb12u14 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-39826	MEDIUM4.59	stdlib v1.26.2 fixed in 1.25.10, 1.26.3	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-42497	MEDIUM4.5	libperl5.36 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-9538	MEDIUM4.5	libperl5.36 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-42497	MEDIUM4.5	perl 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-9538	MEDIUM4.5	perl 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-42497	MEDIUM4.5	perl-base 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-9538	MEDIUM4.5	perl-base 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-42497	MEDIUM4.5	perl-modules-5.36 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-9538	MEDIUM4.5	perl-modules-5.36 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-3184	MEDIUM4.5	libblkid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2019-1010024	MEDIUM4.5	libc-bin 2.36-9+deb12u14 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2019-1010025	MEDIUM4.5	libc-bin 2.36-9+deb12u14 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2019-1010024	MEDIUM4.5	libc6 2.36-9+deb12u14 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2019-1010025	MEDIUM4.5	libc6 2.36-9+deb12u14 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-4873	MEDIUM4.5	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6253	MEDIUM4.5	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-7168	MEDIUM4.5	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-4873	MEDIUM4.5	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6253	MEDIUM4.5	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-7168	MEDIUM4.5	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-59375	MEDIUM4.5	libexpat1 2.5.0-1+deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-34743	MEDIUM4.5	liblzma5 5.4.1-1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libmount1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2023-31437	MEDIUM4.5	libsystemd0 252.39-1~deb12u2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-31438	MEDIUM4.5	libsystemd0 252.39-1~deb12u2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2023-31439	MEDIUM4.5	libsystemd0 252.39-1~deb12u2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2023-31437	MEDIUM4.5	libudev1 252.39-1~deb12u2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-31438	MEDIUM4.5	libudev1 252.39-1~deb12u2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2023-31439	MEDIUM4.5	libudev1 252.39-1~deb12u2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libuuid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-52005	MEDIUM4.49	git 1:2.39.5-0+deb12u3 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2011-3389	MEDIUM4.3	libgnutls30 3.7.9-2+deb12u6 No fix yet	3.8% Low-Moderate Risk	Directly Exposed
CVE-2026-5450	MEDIUM4.25	libc-bin 2.36-9+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	libc-bin 2.36-9+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	libc6 2.36-9+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	libc6 2.36-9+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-15079	MEDIUM4.13	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2023-31486	MEDIUM4.13	libperl5.36 5.36.0-7+deb12u3 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2023-31486	MEDIUM4.13	perl 5.36.0-7+deb12u3 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2023-31486	MEDIUM4.13	perl-base 5.36.0-7+deb12u3 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2023-31486	MEDIUM4.13	perl-modules-5.36 5.36.0-7+deb12u3 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2025-10148	MEDIUM4.08	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-14017	MEDIUM4.08	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-10148	MEDIUM4.08	libcurl4 7.88.1-10+deb12u14 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-14017	MEDIUM4.08	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libblkid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-15224	MEDIUM4	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-15224	MEDIUM4	libcurl4 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2017-14159	MEDIUM4	libldap-2.5-0 2.5.13+dfsg-5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libmount1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libuuid1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5773	LOW3.82	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW3.82	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-24975	LOW3.82	git 1:2.39.5-0+deb12u3 No fix yet	1.0% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW3.7	libapt-pkg6.0 2.6.1 No fix yet	1.5% Low-Moderate Risk	Directly Exposed
CVE-2026-5419	LOW3.7	libgnutls30 3.7.9-2+deb12u6 fixed in 3.7.9-2+deb12u7	—	Directly Exposed
CVE-2005-2541	LOW3.6	tar 1.34+dfsg-1.2+deb12u1 No fix yet	3.8% Low-Moderate Risk	Post-Exploit
CVE-2020-15719	LOW3.57	libldap-2.5-0 2.5.13+dfsg-5 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-8376	LOW3.53	libperl5.36 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-8376	LOW3.53	perl 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-8376	LOW3.53	perl-base 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-8376	LOW3.53	perl-modules-5.36 5.36.0-7+deb12u3 No fix yet	—	Post-Exploit
CVE-2026-1965	LOW3.47	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14819	LOW3.47	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2010-4756	LOW3.4	libc-bin 2.36-9+deb12u14 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2010-4756	LOW3.4	libc6 2.36-9+deb12u14 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-0725	LOW3.4	libcurl3-gnutls 7.88.1-10+deb12u14 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2025-0725	LOW3.4	libcurl4 7.88.1-10+deb12u14 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2016-2781	LOW3.31	coreutils 9.1-1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3784	LOW3.31	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-41080	LOW3.15	libexpat1 2.5.0-1+deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	LOW3.11	bsdutils 1:2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	mount 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	util-linux 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	util-linux-extra 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-10966	LOW3.01	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2019-1010022	LOW3	libc-bin 2.36-9+deb12u14 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2019-1010022	LOW3	libc6 2.36-9+deb12u14 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-42250	LOW3	bzip2 1.0.8-5+b1 No fix yet	—	Post-Exploit
CVE-2026-3783	LOW2.91	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	bsdutils 1:2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	mount 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-5704	LOW2.8	tar 1.34+dfsg-1.2+deb12u1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	util-linux 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	util-linux-extra 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2013-4392	LOW2.8	libsystemd0 252.39-1~deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libsystemd0 252.39-1~deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2013-4392	LOW2.8	libudev1 252.39-1~deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libudev1 252.39-1~deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-2379	LOW2.75	curl 7.88.1-10+deb12u14 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2018-5709	LOW2.7	libgssapi-krb5-2 1.20.1-2+deb12u5 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libk5crypto3 1.20.1-2+deb12u5 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libkrb5-3 1.20.1-2+deb12u5 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2017-17740	LOW2.7	libldap-2.5-0 2.5.13+dfsg-5 No fix yet	6.1% Low-Moderate Risk	Post-Exploit
CVE-2026-3184	LOW2.7	bsdutils 1:2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-4873	LOW2.7	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	mount 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	util-linux 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	util-linux-extra 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-34743	LOW2.7	xz-utils 5.4.1-1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2018-1000021	LOW2.55	git 1:2.39.5-0+deb12u3 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2007-5686	LOW2.5	login 1:4.13+dfsg1-1+deb12u2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2007-5686	LOW2.5	passwd 1:4.13+dfsg1-1+deb12u2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-10148	LOW2.45	curl 7.88.1-10+deb12u14 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-14017	LOW2.45	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	bsdutils 1:2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2017-18018	LOW2.4	coreutils 9.1-1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	curl 7.88.1-10+deb12u14 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-30258	LOW2.4	gpgv 2.2.40-1.1+deb12u2 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-68972	LOW2.4	gpgv 2.2.40-1.1+deb12u2 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	mount 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux-extra 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-5278	LOW2.24	coreutils 9.1-1 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW2.22	apt 2.6.1 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2024-56433	LOW2.16	login 1:4.13+dfsg1-1+deb12u2 No fix yet	4.5% Low-Moderate Risk	Post-Exploit
CVE-2024-56433	LOW2.16	passwd 1:4.13+dfsg1-1+deb12u2 No fix yet	4.5% Low-Moderate Risk	Post-Exploit
CVE-2026-24515	LOW2.12	libexpat1 2.5.0-1+deb12u2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-0725	LOW2.04	curl 7.88.1-10+deb12u14 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2022-3219	LOW1.68	gpgv 2.2.40-1.1+deb12u2 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW1.68	libperl5.36 5.36.0-7+deb12u3 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW1.68	perl 5.36.0-7+deb12u3 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW1.68	perl-base 5.36.0-7+deb12u3 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW1.68	perl-modules-5.36 5.36.0-7+deb12u3 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2024-52005	NONE0	git-man 1:2.39.5-0+deb12u3 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	libtinfo6 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	ncurses-base 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	ncurses-bin 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2022-24975	NONE0	git-man 1:2.39.5-0+deb12u3 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	libtinfo6 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	ncurses-base 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	ncurses-bin 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-14104	NONE0	libsmartcols1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2022-0563	NONE0	libsmartcols1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-3184	NONE0	libsmartcols1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2018-1000021	NONE0	git-man 1:2.39.5-0+deb12u3 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2024-10041	NONE0	libpam-modules 1.5.2-6+deb12u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2024-10041	NONE0	libpam-modules-bin 1.5.2-6+deb12u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2024-10041	NONE0	libpam-runtime 1.5.2-6+deb12u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2024-10041	NONE0	libpam0g 1.5.2-6+deb12u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	libsmartcols1 2.38.1-5+deb12u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	libtinfo6 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	ncurses-base 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	ncurses-bin 6.4-4 No fix yet	<0.1% Theoretical Threat	Not Applicable
TEMP-0841856-B18BAF	NONE0	bash 5.2.15-2+b13 No fix yet	—	Not Applicable
CVE-2026-42014	NONE0	libgnutls30 3.7.9-2+deb12u6 fixed in 3.7.9-2+deb12u7	—	Not Applicable
CVE-2026-48959	NONE0	libperl5.36 5.36.0-7+deb12u3 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	libperl5.36 5.36.0-7+deb12u3 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	libperl5.36 5.36.0-7+deb12u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-48961	NONE0	libperl5.36 5.36.0-7+deb12u3 No fix yet	—	Not Applicable
CVE-2026-45447	NONE0	libssl3 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-34182	NONE0	libssl3 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-45445	NONE0	libssl3 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2025-27587	NONE0	libssl3 3.0.20-1~deb12u1 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-34180	NONE0	libssl3 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-42766	NONE0	libssl3 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-42767	NONE0	libssl3 3.0.20-1~deb12u1 No fix yet	—	Not Applicable
CVE-2026-42770	NONE0	libssl3 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-45446	NONE0	libssl3 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-7383	NONE0	libssl3 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-9076	NONE0	libssl3 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
TEMP-0628843-DBAD28	NONE0	login 1:4.13+dfsg1-1+deb12u2 No fix yet	—	Not Applicable
CVE-2026-45447	NONE0	openssl 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-34182	NONE0	openssl 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-45445	NONE0	openssl 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2025-27587	NONE0	openssl 3.0.20-1~deb12u1 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-34180	NONE0	openssl 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-42766	NONE0	openssl 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-42767	NONE0	openssl 3.0.20-1~deb12u1 No fix yet	—	Not Applicable
CVE-2026-42770	NONE0	openssl 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-45446	NONE0	openssl 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-7383	NONE0	openssl 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
CVE-2026-9076	NONE0	openssl 3.0.20-1~deb12u1 fixed in 3.0.20-1~deb12u2	—	Not Applicable
TEMP-0628843-DBAD28	NONE0	passwd 1:4.13+dfsg1-1+deb12u2 No fix yet	—	Not Applicable
CVE-2026-48959	NONE0	perl 5.36.0-7+deb12u3 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	perl 5.36.0-7+deb12u3 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	perl 5.36.0-7+deb12u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-48961	NONE0	perl 5.36.0-7+deb12u3 No fix yet	—	Not Applicable
CVE-2026-48959	NONE0	perl-base 5.36.0-7+deb12u3 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	perl-base 5.36.0-7+deb12u3 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	perl-base 5.36.0-7+deb12u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-48961	NONE0	perl-base 5.36.0-7+deb12u3 No fix yet	—	Not Applicable
CVE-2026-48959	NONE0	perl-modules-5.36 5.36.0-7+deb12u3 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	perl-modules-5.36 5.36.0-7+deb12u3 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	perl-modules-5.36 5.36.0-7+deb12u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-48961	NONE0	perl-modules-5.36 5.36.0-7+deb12u3 No fix yet	—	Not Applicable
TEMP-0517018-A83CE6	NONE0	sysvinit-utils 3.06-4 No fix yet	—	Not Applicable
TEMP-0290435-0B57B5	NONE0	tar 1.34+dfsg-1.2+deb12u1 No fix yet	—	Not Applicable
CVE-2026-39823	NONE0	stdlib v1.26.2 fixed in 1.25.10, 1.26.3	<0.1% Theoretical Threat	Not Applicable
CVE-2026-39825	NONE0	stdlib v1.26.2 fixed in 1.25.10, 1.26.3	<0.1% Theoretical Threat	Not Applicable
CVE-2026-42499	NONE0	stdlib v1.26.2 fixed in 1.25.10, 1.26.3	<0.1% Theoretical Threat	Not Applicable
CVE-2026-42504	NONE0	stdlib v1.26.2 fixed in 1.25.11, 1.26.4	—	Not Applicable
CVE-2026-27145	NONE0	stdlib v1.26.2 fixed in 1.25.11, 1.26.4	—	Not Applicable
CVE-2026-42507	NONE0	stdlib v1.26.2 fixed in 1.25.11, 1.26.4	—	Not Applicable