Vulnerability Reporteclipse-temurin:8-jre-ubi9-minimal

eclipse-temurin:8u492-b09-jre-ubi9-minimaleclipse-temurin:8-jre-ubi9-minimal

DIGESTsha256:c64d5e42e0b798420e284e75aa893914888199ce73306e79425e9fd23672cc5e

Executive Summary

Threat ScoreNEEDS ATTENTION• Official Docker Hub image pinned by digest ensures immutability.• Contains 102 exposed vulnerabilities, including one medium-severity (6.0) CVE-2025-27113.• No high-severity exposed or post-exploit vulnerabilities; 160 post-exploit findings have max severity 3.98.• Trusted publisher and popular image (783 stars, 291M pulls).

25/100NEEDS ATTENTION

ReputationOFFICIAL• Official Docker Hub Image• Pinned by digest (Immutable)

TRUSTED

This base/runtime image is a reasonable foundation, but it ships vulnerabilities worth remediating in the images built on top of it. The only notable vulnerability is CVE-2025-27113 in libxml2, which can cause denial of service when processing crafted XML. While 160 post-exploit vulnerabilities exist, they are all low severity (max 3.98) and unlikely to be exploited in practice. Updating libxml2 in derived images would fully mitigate the medium-severity issue. Note: this is a general-purpose base/runtime image — many findings live in components that an application built on top may never load, so actual exploitability depends on the final image. For an accurate risk picture, re-scan the final application image with context.

Vulnerabilities

Vulnerability Log

263 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2025-27113	MEDIUM6	libxml2 2.9.13-14.el9_7 No fix yet	1.0% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2026-44604	MEDIUM5.95	rpm-libs 4.16.1.3-40.el9 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-22185	MEDIUM5.78	openldap 2.6.8-4.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-4105	MEDIUM5.7	systemd-libs 252-67.el9_8.2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-4105	MEDIUM5.7	systemd-pam 252-67.el9_8.2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-4105	MEDIUM5.7	systemd-rpm-macros 252-67.el9_8.2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-5915	MEDIUM5.61	libarchive 3.5.3-9.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-5918	MEDIUM5.61	libarchive 3.5.3-9.el9_7 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-9149	MEDIUM5.52	libsolv 0.7.24-5.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-9150	MEDIUM5.52	libsolv 0.7.24-5.el9_8 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-28387	MEDIUM5.5	openssl-libs 1:3.5.5-4.el9_8 No fix yet	0.6% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2024-34459	MEDIUM5.5	libxml2 2.9.13-14.el9_7 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2026-1757	MEDIUM5.27	libxml2 2.9.13-14.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-64506	MEDIUM5.18	libpng 2:1.6.37-15.el9_8 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-41989	MEDIUM5.1	libgcrypt 1.10.0-11.el9 No fix yet	0.2% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-6732	MEDIUM5.1	libxml2 2.9.13-14.el9_7 No fix yet	0.6% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-28388	MEDIUM5.1	openssl-libs 1:3.5.5-4.el9_8 No fix yet	0.9% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-28389	MEDIUM5.1	openssl-libs 1:3.5.5-4.el9_8 No fix yet	0.8% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-50219	MEDIUM5.02	expat 2.5.0-6.el9_8.1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc 2.34-270.el9_8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc-common 2.34-270.el9_8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc-langpack-en 2.34-270.el9_8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	glibc-minimal-langpack 2.34-270.el9_8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-0990	MEDIUM5.02	libxml2 2.9.13-14.el9_7 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2026-31790	MEDIUM5.02	openssl-fips-provider 3.0.7-8.el9 No fix yet	1.0% Theoretical Threat	Directly Exposed
CVE-2026-31790	MEDIUM5.02	openssl-fips-provider-so 3.0.7-8.el9 No fix yet	1.0% Theoretical Threat	Directly Exposed
CVE-2026-31789	MEDIUM5	openssl-libs 1:3.5.5-4.el9_8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-5916	MEDIUM4.76	libarchive 3.5.3-9.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-13151	MEDIUM4.72	libtasn1 4.16.0-9.el9 No fix yet	1.1% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2024-41996	MEDIUM4.72	openssl-libs 1:3.5.5-4.el9_8 No fix yet	1.1% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2025-1371	MEDIUM4.67	elfutils-debuginfod-client 0.194-1.el9 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-1377	MEDIUM4.67	elfutils-debuginfod-client 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-1371	MEDIUM4.67	elfutils-default-yama-scope 0.194-1.el9 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-1377	MEDIUM4.67	elfutils-default-yama-scope 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-1371	MEDIUM4.67	elfutils-libelf 0.194-1.el9 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-1377	MEDIUM4.67	elfutils-libelf 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-1371	MEDIUM4.67	elfutils-libs 0.194-1.el9 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-1377	MEDIUM4.67	elfutils-libs 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32776	MEDIUM4.67	expat 2.5.0-6.el9_8.1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-32777	MEDIUM4.67	expat 2.5.0-6.el9_8.1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-32778	MEDIUM4.67	expat 2.5.0-6.el9_8.1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-66382	MEDIUM4.67	expat 2.5.0-6.el9_8.1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-60753	MEDIUM4.67	libarchive 3.5.3-9.el9_7 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5745	MEDIUM4.67	libarchive 3.5.3-9.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-1632	MEDIUM4.67	libarchive 3.5.3-9.el9_7 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2021-46195	MEDIUM4.67	libgcc 11.5.0-14.el9 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libgcc 11.5.0-14.el9 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2021-46195	MEDIUM4.67	libstdc++ 11.5.0-14.el9 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libstdc++ 11.5.0-14.el9 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2024-0232	MEDIUM4.67	sqlite-libs 3.34.1-10.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-27171	MEDIUM4.67	zlib 1.2.11-40.el9 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-1489	MEDIUM4.59	glib2 2.68.4-19.el9_8.1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-23865	MEDIUM4.5	freetype 2.10.4-10.el9_5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-22693	MEDIUM4.5	harfbuzz 2.7.4-10.el9 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2023-30571	MEDIUM4.5	libarchive 3.5.3-9.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-34743	MEDIUM4.5	xz-libs 5.2.5-8.el9_0 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-2673	MEDIUM4.42	openssl-fips-provider 3.0.7-8.el9 No fix yet	0.4% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-2673	MEDIUM4.42	openssl-fips-provider-so 3.0.7-8.el9 No fix yet	0.4% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-2673	MEDIUM4.42	openssl-libs 1:3.5.5-4.el9_8 No fix yet	0.4% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-42250	MEDIUM4.25	bzip2-libs 1.0.8-11.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc 2.34-270.el9_8 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc 2.34-270.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc-common 2.34-270.el9_8 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc-common 2.34-270.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc-langpack-en 2.34-270.el9_8 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc-langpack-en 2.34-270.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	glibc-minimal-langpack 2.34-270.el9_8 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	glibc-minimal-langpack 2.34-270.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	krb5-libs 1.21.1-10.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-5917	MEDIUM4.25	libarchive 3.5.3-9.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-28164	MEDIUM4.25	libpng 2:1.6.37-15.el9_8 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-1376	MEDIUM4	elfutils-debuginfod-client 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-1376	MEDIUM4	elfutils-default-yama-scope 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-1376	MEDIUM4	elfutils-libelf 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-1376	MEDIUM4	elfutils-libs 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libblkid 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libfdisk 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libmount 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libsmartcols 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libuuid 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2024-13176	MEDIUM4	openssl-libs 1:3.5.5-4.el9_8 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2025-11082	LOW3.98	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-5245	LOW3.98	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-7545	LOW3.98	binutils 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2022-44840	LOW3.98	binutils 2.35.2-72.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-11082	LOW3.98	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-5245	LOW3.98	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-7545	LOW3.98	binutils-gold 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2022-44840	LOW3.98	binutils-gold 2.35.2-72.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2021-3826	LOW3.9	binutils-gold 2.35.2-72.el9 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2024-9681	LOW3.9	curl-minimal 7.76.1-40.el9 No fix yet	2.0% Low-Moderate Risk	Post-Exploit
CVE-2024-9681	LOW3.9	libcurl-minimal 7.76.1-40.el9 No fix yet	2.0% Low-Moderate Risk	Post-Exploit
CVE-2024-10524	LOW3.9	wget 1.21.1-8.el9_4 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2025-66864	LOW3.82	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-66866	LOW3.82	binutils 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-69649	LOW3.82	binutils 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-69650	LOW3.82	binutils 2.35.2-72.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-66864	LOW3.82	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-66866	LOW3.82	binutils-gold 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-69649	LOW3.82	binutils-gold 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-69650	LOW3.82	binutils-gold 2.35.2-72.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-5773	LOW3.82	curl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW3.82	curl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5773	LOW3.82	libcurl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW3.82	libcurl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-28388	LOW3.82	openssl 1:3.5.5-4.el9_8 No fix yet	0.9% Theoretical Threat	Post-Exploit
CVE-2026-28389	LOW3.82	openssl 1:3.5.5-4.el9_8 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2025-64505	LOW3.74	libpng 2:1.6.37-15.el9_8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-34757	LOW3.74	libpng 2:1.6.37-15.el9_8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2021-31879	LOW3.66	wget 1.21.1-8.el9_4 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2023-4156	LOW3.62	gawk 5.1.0-6.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2005-2541	LOW3.6	tar 2:1.34-11.el9 No fix yet	4.0% Low-Moderate Risk	Post-Exploit
CVE-2026-44604	LOW3.57	rpm 4.16.1.3-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-1484	LOW3.57	glib2 2.68.4-19.el9_8.1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-1153	LOW3.54	binutils 2.35.2-72.el9 No fix yet	1.3% Low-Moderate Risk	Post-Exploit
CVE-2025-1153	LOW3.54	binutils-gold 2.35.2-72.el9 No fix yet	1.3% Low-Moderate Risk	Post-Exploit
CVE-2024-11053	LOW3.54	curl-minimal 7.76.1-40.el9 No fix yet	1.4% Low-Moderate Risk	Post-Exploit
CVE-2024-11053	LOW3.54	libcurl-minimal 7.76.1-40.el9 No fix yet	1.4% Low-Moderate Risk	Post-Exploit
CVE-2024-41996	LOW3.54	openssl 1:3.5.5-4.el9_8 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2025-13034	LOW3.47	curl-minimal 7.76.1-40.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-1965	LOW3.47	curl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-13034	LOW3.47	libcurl-minimal 7.76.1-40.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-1965	LOW3.47	libcurl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2024-25260	LOW3.4	elfutils-debuginfod-client 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-25260	LOW3.4	elfutils-default-yama-scope 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-25260	LOW3.4	elfutils-libelf 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-25260	LOW3.4	elfutils-libs 0.194-1.el9 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-1972	LOW3.31	binutils 2.35.2-72.el9 No fix yet	0.9% Theoretical Threat	Post-Exploit
CVE-2023-1972	LOW3.31	binutils-gold 2.35.2-72.el9 No fix yet	0.9% Theoretical Threat	Post-Exploit
CVE-2026-3784	LOW3.31	curl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	curl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	curl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	curl-minimal 7.76.1-40.el9 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-3784	LOW3.31	libcurl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	libcurl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	libcurl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	libcurl-minimal 7.76.1-40.el9 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2023-45322	LOW3.31	libxml2 2.9.13-14.el9_7 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-2673	LOW3.31	openssl 1:3.5.5-4.el9_8 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-33056	LOW3.31	tar 2:1.34-11.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2021-20197	LOW3.21	binutils 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2021-20197	LOW3.21	binutils-gold 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-3805	LOW3.21	curl-minimal 7.76.1-40.el9 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-3805	LOW3.21	libcurl-minimal 7.76.1-40.el9 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-5958	LOW3.21	sed 4.8-10.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-41080	LOW3.15	expat 2.5.0-6.el9_8.1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-3360	LOW3.15	glib2 2.68.4-19.el9_8.1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-7039	LOW3.15	glib2 2.68.4-19.el9_8.1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0988	LOW3.15	glib2 2.68.4-19.el9_8.1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0989	LOW3.15	libxml2 2.9.13-14.el9_7 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-4647	LOW3.11	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-4647	LOW3.11	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-9232	LOW3.1	openssl-libs 1:3.5.5-4.el9_8 No fix yet	2.0% Low-Moderate Risk	Directly Exposed
CVE-2026-31789	LOW3	openssl 1:3.5.5-4.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-3783	LOW2.91	curl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-3783	LOW2.91	libcurl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2021-45078	LOW2.81	binutils 2.35.2-72.el9 No fix yet	1.3% Low-Moderate Risk	Post-Exploit
CVE-2021-45078	LOW2.81	binutils-gold 2.35.2-72.el9 No fix yet	1.3% Low-Moderate Risk	Post-Exploit
CVE-2025-11081	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-6844	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2022-38533	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2022-47007	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-47008	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-47010	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-47011	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-11412	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-11413	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-11414	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-11494	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-11495	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-11839	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-11840	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-3198	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-69651	LOW2.8	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-11081	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-6844	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2022-38533	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2022-47007	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-47008	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-47010	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-47011	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-11412	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-11413	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-11414	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-11494	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-11495	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-11839	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-11840	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-3198	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-69651	LOW2.8	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-24883	LOW2.8	gnupg2 2.3.3-5.el9_7 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-5704	LOW2.8	tar 2:1.34-11.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-41990	LOW2.8	libgcrypt 1.10.0-11.el9 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-70873	LOW2.8	sqlite-libs 3.34.1-10.el9_8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4873	LOW2.7	curl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	curl-minimal 7.76.1-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	curl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-4873	LOW2.7	libcurl-minimal 7.76.1-40.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	libcurl-minimal 7.76.1-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	libcurl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2024-7264	LOW2.69	curl-minimal 7.76.1-40.el9 No fix yet	16.2% High Exploitation Risk	Post-Exploit
CVE-2024-7264	LOW2.69	libcurl-minimal 7.76.1-40.el9 No fix yet	16.2% High Exploitation Risk	Post-Exploit
CVE-2026-6845	LOW2.55	binutils 2.35.2-72.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2024-57360	LOW2.55	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-6845	LOW2.55	binutils-gold 2.35.2-72.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2024-57360	LOW2.55	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-15079	LOW2.48	curl-minimal 7.76.1-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-15079	LOW2.48	libcurl-minimal 7.76.1-40.el9 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-28387	LOW2.48	openssl 1:3.5.5-4.el9_8 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-0992	LOW2.46	libxml2 2.9.13-14.el9_7 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-14017	LOW2.45	curl-minimal 7.76.1-40.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-14017	LOW2.45	libcurl-minimal 7.76.1-40.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	curl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-68972	LOW2.4	gnupg2 2.3.3-5.el9_7 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-30258	LOW2.4	gnupg2 2.3.3-5.el9_7 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	libcurl-minimal 7.76.1-40.el9 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2024-13176	LOW2.4	openssl 1:3.5.5-4.el9_8 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-64118	LOW2.4	tar 2:1.34-11.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux-core 2.37.4-25.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-48864	LOW2.39	libsolv 0.7.24-5.el9_8 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-1485	LOW2.38	glib2 2.68.4-19.el9_8.1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2021-3826	LOW2.34	binutils 2.35.2-72.el9 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2023-32636	LOW2.29	glib2 2.68.4-19.el9_8.1 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2022-41409	LOW2.29	pcre2 10.40-6.el9 No fix yet	1.0% Theoretical Threat	Post-Exploit
CVE-2022-41409	LOW2.29	pcre2-syntax 10.40-6.el9 No fix yet	1.0% Theoretical Threat	Post-Exploit
CVE-2025-5278	LOW2.24	coreutils-single 8.32-40.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-24515	LOW2.12	expat 2.5.0-6.el9_8.1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-6170	LOW2.12	libxml2 2.9.13-14.el9_7 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-4426	LOW1.99	libarchive 3.5.3-9.el9_7 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2023-50495	LOW1.99	ncurses-base 6.2-12.20210508.el9 No fix yet	1.0% Theoretical Threat	Post-Exploit
CVE-2023-50495	LOW1.99	ncurses-libs 6.2-12.20210508.el9 No fix yet	1.0% Theoretical Threat	Post-Exploit
CVE-2025-1152	LOW1.89	binutils 2.35.2-72.el9 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1152	LOW1.89	binutils-gold 2.35.2-72.el9 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-9232	LOW1.86	openssl 1:3.5.5-4.el9_8 No fix yet	2.0% Low-Moderate Risk	Post-Exploit
CVE-2025-66861	LOW1.68	binutils 2.35.2-72.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-66862	LOW1.68	binutils 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-66863	LOW1.68	binutils 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-66865	LOW1.68	binutils 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-69647	LOW1.68	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-69648	LOW1.68	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-69652	LOW1.68	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-66861	LOW1.68	binutils-gold 2.35.2-72.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-66862	LOW1.68	binutils-gold 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-66863	LOW1.68	binutils-gold 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-66865	LOW1.68	binutils-gold 2.35.2-72.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-69647	LOW1.68	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-69648	LOW1.68	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-69652	LOW1.68	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2022-3219	LOW1.68	gnupg2 2.3.3-5.el9_7 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2023-39804	LOW1.68	tar 2:1.34-11.el9 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-1150	LOW1.58	binutils 2.35.2-72.el9 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1151	LOW1.58	binutils 2.35.2-72.el9 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1150	LOW1.58	binutils-gold 2.35.2-72.el9 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-1151	LOW1.58	binutils-gold 2.35.2-72.el9 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-69644	LOW1.43	binutils 2.35.2-72.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-69645	LOW1.43	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-69646	LOW1.43	binutils 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-69644	LOW1.43	binutils-gold 2.35.2-72.el9 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-69645	LOW1.43	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-69646	LOW1.43	binutils-gold 2.35.2-72.el9 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-4105	NONE0	systemd 252-67.el9_8.2 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-22020	NONE0	libpng 2:1.6.37-15.el9_8 No fix yet	—	Not Applicable