Vulnerability Reportdrupal:10.6.13-php8.4-fpm-alpine

drupal:10.6.13-php8.4-fpm-alpine
DIGESTsha256:b306e76e478eb3f8b63549ebeb97ecce50692ca50fbcc4798dfcfb320164a5f9

Executive Summary

Last scanned:

Threat Score
25/100NEEDS ATTENTION
Reputation
TRUSTED

This image is acceptable for production, but remediating the identified vulnerabilities is recommended to reduce the attack surface. It contains one medium-severity vulnerability (CVE-2026-33630) in c-ares that could cause a denial of service via crafted DNS responses. Upgrading c-ares to a patched version would fully mitigate this issue. The vulnerability requires an attacker to inject crafted DNS responses, which is possible in compromised network environments.

Vulnerabilities

Vulnerability Log

1 total
CVE IDAdjusted SeverityPackageExploit ProbabilityRisk Context
CVE-2026-33630MEDIUM6
c-ares
1.34.6-r0
fixed in 1.34.8-r0
Directly ExposedContext importance: MEDIUM

Want to check another image? Run a full scan with the Docker Security Scanner.