This image poses a critical security risk and must not be used in production, especially as an internet-facing service. An attacker could exploit CVE-2019-14697 to execute arbitrary code on the host or crash the service, potentially leading to full system compromise. Updating musl libc to a version beyond 1.1.23 would fully mitigate this vulnerability.
| CVE ID | Adjusted Severity | Package | Exploit Probability | Risk Context |
|---|---|---|---|---|
| CVE-2019-14697 | CRITICAL9.8 | musl 1.1.18-r2 fixed in 1.1.18-r4 | 2.5% Low-Moderate Risk | Directly ExposedContext importance: HIGH |
| CVE-2018-0495 | MEDIUM4 | libressl2.6-libcrypto 2.6.3-r0 fixed in 2.6.5-r0 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2018-0495 | MEDIUM4 | libressl2.6-libssl 2.6.3-r0 fixed in 2.6.5-r0 | 0.9% Theoretical Threat | Directly Exposed |
| CVE-2018-20483 | LOW3.98 | wget 1.19.5-r0 fixed in 1.20.1-r0 | 0.7% Theoretical Threat | Post-Exploit |
| CVE-2019-14697 | LOW3.53 | musl-utils 1.1.18-r2 fixed in 1.1.18-r4 | 2.5% Low-Moderate Risk | Post-Exploit |
| CVE-2018-0732 | LOW3.1 | libressl2.6-libcrypto 2.6.3-r0 fixed in 2.6.5-r0 | 49.3% High Exploitation Risk | Post-Exploit |
| CVE-2018-0732 | LOW3.1 | libressl2.6-libssl 2.6.3-r0 fixed in 2.6.5-r0 | 49.3% High Exploitation Risk | Post-Exploit |
| CVE-2018-20843 | LOW2.7 | expat 2.2.5-r0 fixed in 2.2.7-r0 | 7.1% Low-Moderate Risk | Post-Exploit |
| CVE-2019-15903 | LOW2.7 | expat 2.2.5-r0 fixed in 2.2.7-r1 | 6.7% Low-Moderate Risk | Post-Exploit |
| CVE-2018-20217 | LOW1.91 | krb5-libs 1.15.3-r0 fixed in 1.15.4-r0 | 1.5% Low-Moderate Risk | Post-Exploit |