Vulnerability Reportjenkins/jenkins:lts

Name: jenkins/jenkins:2.555.3-lts-jdk21 Security Vulnerability Report
Creator: BaseImage
Keywords: jenkins/jenkins:2.555.3-lts-jdk21, Docker security, vulnerability scan, CVE, container security, SBOM

jenkins/jenkins:2.555.3-ltsjenkins/jenkins:ltsjenkins/jenkins:2.555.3jenkins/jenkins:2.555.3-lts-jdk21jenkins/jenkins:lts-jdk21jenkins/jenkins:2.555.3-jdk21

DIGESTsha256:e82bbdcffb6361c081ac66bbdcd5802a299b3631c78c3be04a0a91c7f952fff3

Executive Summary

DANGEROUS

This image poses a critical security risk and must not be used in production, especially as an internet-facing service. An attacker could leverage vulnerabilities like CVE-2005-2541 and CVE-2026-42496 to gain local privilege escalation within the container, achieve unauthorized file modification or data exfiltration, or even execute arbitrary code remotely. The high number of severe and contextually important vulnerabilities, including issues in core components like tar, perl-archive-tar, and libssh2, indicates a significant attack surface inherent to the Jenkins operations of archive extraction and SSH integrations. While from a popular community publisher, the current state of these vulnerabilities overrides any positive reputation and presents an unacceptable risk profile for production deployment.

Threat Score

100/100

DANGEROUS

Critical EXPOSED_SURFACE vulnerabilities detected, with a maximum severity of 10.0 and 14 findings rated 7.0 or higher.
Key vulnerabilities such as CVE-2005-2541 (tar privilege escalation), CVE-2026-42496 (perl path traversal), and CVE-2026-7598 (libssh2 remote code execution/DoS) have high contextual importance within a Jenkins environment.
These critical findings enable severe consequences including local privilege escalation, arbitrary file access, data exfiltration, and potential remote code execution or denial of service.
Despite the image's 'RELIABLE' trust verdict and high popularity, the sheer volume and severity of exploitable vulnerabilities are concerning.

Reputation

RELIABLE

jenkins

POPULAR COMMUNITY

High Reputation Community Image (4947M+ pulls)
Pinned by digest (Immutable)

BaseImage/

jenkins/jenkins:lts

Hardened

Grade

A+

Vulns

Verified & secured for production

Vulnerabilities

Vulnerability Log

311 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2005-2541	CRITICAL10	tar 1.35+dfsg-3.1 No fix yet	3.8% Low-Moderate Risk	Directly ExposedContext importance: HIGH
CVE-2026-42496	CRITICAL9.1	libperl5.40 5.40.1-6 No fix yet	—	Directly ExposedContext importance: HIGH
CVE-2026-42496	CRITICAL9.1	perl 5.40.1-6 No fix yet	—	Directly ExposedContext importance: HIGH
CVE-2026-48962	HIGH7.8	libperl5.40 5.40.1-6 No fix yet	—	Directly Exposed
CVE-2026-7598	HIGH7.73	libssh2-1t64 1.11.1-1 No fix yet	<0.1% Theoretical Threat	Directly ExposedContext importance: HIGH
CVE-2026-5773	HIGH7.5	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-6276	HIGH7.5	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-5773	HIGH7.5	libcurl4t64 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-6276	HIGH7.5	libcurl4t64 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-45186	HIGH7.5	libexpat1 2.7.1-2 No fix yet	—	Directly ExposedContext importance: HIGH
CVE-2026-42497	HIGH7.5	libperl5.40 5.40.1-6 No fix yet	—	Directly ExposedContext importance: HIGH
CVE-2026-9538	HIGH7.5	libperl5.40 5.40.1-6 No fix yet	—	Directly Exposed
CVE-2019-1010023	HIGH7.48	libc-bin 2.41-12+deb13u3 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2019-1010023	HIGH7.48	libc6 2.41-12+deb13u3 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-15079	MEDIUM6.88	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-15079	MEDIUM6.88	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-25210	MEDIUM6.63	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5545	MEDIUM6.5	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-6429	MEDIUM6.5	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-5545	MEDIUM6.5	libcurl4t64 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-6429	MEDIUM6.5	libcurl4t64 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2019-9192	MEDIUM6.38	libc-bin 2.41-12+deb13u3 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2019-9192	MEDIUM6.38	libc6 2.41-12+deb13u3 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2018-20796	MEDIUM6	libc-bin 2.41-12+deb13u3 No fix yet	1.5% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2018-20796	MEDIUM6	libc6 2.41-12+deb13u3 No fix yet	1.5% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2015-3276	MEDIUM6	libldap2 2.6.10+dfsg-1 No fix yet	2.6% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2026-50219	MEDIUM5.9	libexpat1 2.7.1-2 No fix yet	—	Directly Exposed
CVE-2026-1965	MEDIUM5.78	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14819	MEDIUM5.78	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-1965	MEDIUM5.78	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14819	MEDIUM5.78	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-22185	MEDIUM5.78	libldap2 2.6.10+dfsg-1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2020-15778	MEDIUM5.77	openssh-client 1:10.0p1-7+deb13u4 No fix yet	64.3% Actively Exploited	Post-Exploit
CVE-2026-6238	MEDIUM5.52	libc-bin 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc6 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3784	MEDIUM5.52	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14524	MEDIUM5.52	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3784	MEDIUM5.52	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14524	MEDIUM5.52	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-42496	MEDIUM5.46	perl-base 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-42496	MEDIUM5.46	perl-modules-5.40 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-3805	MEDIUM5.35	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3805	MEDIUM5.35	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2019-6110	MEDIUM5.3	openssh-client 1:10.0p1-7+deb13u4 No fix yet	57.6% Actively Exploited	Post-Exploit
CVE-2026-4873	MEDIUM5.3	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-6253	MEDIUM5.3	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-7168	MEDIUM5.3	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-4873	MEDIUM5.3	libcurl4t64 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-6253	MEDIUM5.3	libcurl4t64 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2026-7168	MEDIUM5.3	libcurl4t64 8.14.1-2+deb13u3 No fix yet	—	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libblkid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libmount1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libsmartcols1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libuuid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc-bin 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc6 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-10966	MEDIUM5.02	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-10966	MEDIUM5.02	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libgssapi-krb5-2 1.21.3-5+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.02	libgssapi-krb5-2 1.21.3-5+deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libk5crypto3 1.21.3-5+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.02	libk5crypto3 1.21.3-5+deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libkrb5-3 1.21.3-5+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.02	libkrb5-3 1.21.3-5+deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libkrb5support0 1.21.3-5+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.02	libkrb5support0 1.21.3-5+deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-13151	MEDIUM5.02	libtasn1-6 4.20.0-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-42250	MEDIUM5	libbz2-1.0 1.0.8-6 No fix yet	—	Directly Exposed
CVE-2026-3783	MEDIUM4.84	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3783	MEDIUM4.84	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-48962	MEDIUM4.68	perl 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-48962	MEDIUM4.68	perl-base 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-48962	MEDIUM4.68	perl-modules-5.40 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2022-0563	MEDIUM4.67	libblkid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-66382	MEDIUM4.67	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-32776	MEDIUM4.67	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-32777	MEDIUM4.67	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-32778	MEDIUM4.67	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libmount1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2021-4214	MEDIUM4.67	libpng16-16t64 1.6.48-1+deb13u5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libsmartcols1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libuuid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27171	MEDIUM4.67	zlib1g 1:1.3.dfsg+really1.3.1-1+b1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5773	MEDIUM4.5	curl 8.14.1-2+deb13u3 No fix yet	—	Post-Exploit
CVE-2026-6276	MEDIUM4.5	curl 8.14.1-2+deb13u3 No fix yet	—	Post-Exploit
CVE-2026-42497	MEDIUM4.5	perl 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-9538	MEDIUM4.5	perl 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-42497	MEDIUM4.5	perl-base 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-9538	MEDIUM4.5	perl-base 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-42497	MEDIUM4.5	perl-modules-5.40 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-9538	MEDIUM4.5	perl-modules-5.40 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-3184	MEDIUM4.5	libblkid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2019-1010024	MEDIUM4.5	libc-bin 2.41-12+deb13u3 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2019-1010025	MEDIUM4.5	libc-bin 2.41-12+deb13u3 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2019-1010024	MEDIUM4.5	libc6 2.41-12+deb13u3 No fix yet	0.6% Theoretical Threat	Directly Exposed
CVE-2019-1010025	MEDIUM4.5	libc6 2.41-12+deb13u3 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2025-59375	MEDIUM4.5	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-34743	MEDIUM4.5	liblzma5 5.8.1-1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libmount1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3713	MEDIUM4.5	libpng16-16t64 1.6.48-1+deb13u5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libsmartcols1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2023-31437	MEDIUM4.5	libsystemd0 257.13-1~deb13u1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-31438	MEDIUM4.5	libsystemd0 257.13-1~deb13u1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2023-31439	MEDIUM4.5	libsystemd0 257.13-1~deb13u1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2023-31437	MEDIUM4.5	libudev1 257.13-1~deb13u1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2023-31438	MEDIUM4.5	libudev1 257.13-1~deb13u1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2023-31439	MEDIUM4.5	libudev1 257.13-1~deb13u1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libuuid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-47914	MEDIUM4.5	golang.org/x/crypto v0.36.0 fixed in 0.45.0	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-58181	MEDIUM4.5	golang.org/x/crypto v0.36.0 fixed in 0.45.0	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-52005	MEDIUM4.49	git 1:2.47.3-0+deb13u1 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2011-3389	MEDIUM4.3	libgnutls30t64 3.8.9-3+deb13u4 No fix yet	3.9% Low-Moderate Risk	Directly Exposed
CVE-2026-5450	MEDIUM4.25	libc-bin 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	libc-bin 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	libc6 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	libc6 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-15079	MEDIUM4.13	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14017	MEDIUM4.08	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14017	MEDIUM4.08	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-22751	MEDIUM4.08	org.springframework.security:spring-security-core 6.5.9 fixed in 6.5.10, 7.0.5	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libblkid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-15224	MEDIUM4	libcurl3t64-gnutls 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-15224	MEDIUM4	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2017-14159	MEDIUM4	libldap2 2.6.10+dfsg-1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libmount1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libsmartcols1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libuuid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-5545	LOW3.9	curl 8.14.1-2+deb13u3 No fix yet	—	Post-Exploit
CVE-2026-6429	LOW3.9	curl 8.14.1-2+deb13u3 No fix yet	—	Post-Exploit
CVE-2008-3234	LOW3.9	openssh-client 1:10.0p1-7+deb13u4 No fix yet	4.6% Low-Moderate Risk	Post-Exploit
CVE-2022-24975	LOW3.82	git 1:2.47.3-0+deb13u1 No fix yet	1.0% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW3.7	libapt-pkg7.0 3.0.3 No fix yet	1.5% Low-Moderate Risk	Directly Exposed
CVE-2016-20012	LOW3.66	openssh-client 1:10.0p1-7+deb13u4 No fix yet	14.6% High Exploitation Risk	Post-Exploit
CVE-2021-45346	LOW3.65	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2020-15719	LOW3.57	libldap2 2.6.10+dfsg-1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2020-14145	LOW3.54	openssh-client 1:10.0p1-7+deb13u4 No fix yet	1.6% Low-Moderate Risk	Post-Exploit
CVE-2026-8376	LOW3.53	libperl5.40 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-8376	LOW3.53	perl 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-8376	LOW3.53	perl-base 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-8376	LOW3.53	perl-modules-5.40 5.40.1-6 No fix yet	—	Post-Exploit
CVE-2026-1965	LOW3.47	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14819	LOW3.47	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2010-4756	LOW3.4	libc-bin 2.41-12+deb13u3 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2010-4756	LOW3.4	libc6 2.41-12+deb13u3 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-3784	LOW3.31	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3805	LOW3.21	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-4873	LOW3.18	curl 8.14.1-2+deb13u3 No fix yet	—	Post-Exploit
CVE-2026-6253	LOW3.18	curl 8.14.1-2+deb13u3 No fix yet	—	Post-Exploit
CVE-2026-7168	LOW3.18	curl 8.14.1-2+deb13u3 No fix yet	—	Post-Exploit
CVE-2018-15919	LOW3.18	openssh-client 1:10.0p1-7+deb13u4 No fix yet	2.1% Low-Moderate Risk	Post-Exploit
CVE-2026-41080	LOW3.15	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-22746	LOW3.15	org.springframework.security:spring-security-core 6.5.9 fixed in 6.5.10, 7.0.5	<0.1% Theoretical Threat	Directly Exposed
CVE-2025-14104	LOW3.11	bsdutils 1:2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	login 1:4.16.0-2+really2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	mount 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	util-linux 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-10966	LOW3.01	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2019-1010022	LOW3	libc-bin 2.41-12+deb13u3 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2019-1010022	LOW3	libc6 2.41-12+deb13u3 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-3783	LOW2.91	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	bsdutils 1:2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	login 1:4.16.0-2+really2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	mount 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-5704	LOW2.8	tar 1.35+dfsg-3.1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	util-linux 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW2.8	libperl5.40 5.40.1-6 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-70873	LOW2.8	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2013-4392	LOW2.8	libsystemd0 257.13-1~deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libsystemd0 257.13-1~deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2013-4392	LOW2.8	libudev1 257.13-1~deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libudev1 257.13-1~deb13u1 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2018-5709	LOW2.7	libgssapi-krb5-2 1.21.3-5+deb13u1 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libk5crypto3 1.21.3-5+deb13u1 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libkrb5-3 1.21.3-5+deb13u1 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libkrb5support0 1.21.3-5+deb13u1 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2017-17740	LOW2.7	libldap2 2.6.10+dfsg-1 No fix yet	6.1% Low-Moderate Risk	Post-Exploit
CVE-2026-3184	LOW2.7	bsdutils 1:2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	login 1:4.16.0-2+really2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	mount 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	util-linux 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2018-1000021	LOW2.55	git 1:2.47.3-0+deb13u1 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2007-2243	LOW2.55	openssh-client 1:10.0p1-7+deb13u4 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2007-5686	LOW2.5	passwd 1:4.17.4-2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-14017	LOW2.45	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	bsdutils 1:2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2017-18018	LOW2.4	coreutils 9.7-3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	login 1:4.16.0-2+really2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	mount 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-5278	LOW2.24	coreutils 9.7-3 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW2.22	apt 3.0.3 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2007-2768	LOW2.19	openssh-client 1:10.0p1-7+deb13u4 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2024-56433	LOW2.16	passwd 1:4.17.4-2 No fix yet	4.5% Low-Moderate Risk	Post-Exploit
CVE-2026-24515	LOW2.12	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Directly Exposed
CVE-2011-4116	LOW1.68	perl 5.40.1-6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW1.68	perl-base 5.40.1-6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW1.68	perl-modules-5.40 5.40.1-6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2021-4217	LOW1.68	unzip 6.0-29 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-68121	NONE0	stdlib v1.25.3 fixed in 1.24.13, 1.25.7, 1.26.0-rc.3	<0.1% Theoretical Threat	Not Applicable
CVE-2024-52005	NONE0	git-man 1:2.47.3-0+deb13u1 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	libncursesw6 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	libtinfo6 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	ncurses-base 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	ncurses-bin 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2022-24975	NONE0	git-man 1:2.47.3-0+deb13u1 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2025-61726	NONE0	stdlib v1.25.3 fixed in 1.24.12, 1.25.6	<0.1% Theoretical Threat	Not Applicable
CVE-2025-61729	NONE0	stdlib v1.25.3 fixed in 1.24.11, 1.25.5	<0.1% Theoretical Threat	Not Applicable
CVE-2026-25679	NONE0	stdlib v1.25.3 fixed in 1.25.8, 1.26.1	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32280	NONE0	stdlib v1.25.3 fixed in 1.25.9, 1.26.2	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32281	NONE0	stdlib v1.25.3 fixed in 1.25.9, 1.26.2	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32283	NONE0	stdlib v1.25.3 fixed in 1.25.9, 1.26.2	<0.1% Theoretical Threat	Not Applicable
CVE-2026-33811	NONE0	stdlib v1.25.3 fixed in 1.25.10, 1.26.3	—	Not Applicable
CVE-2026-33814	NONE0	stdlib v1.25.3 fixed in 1.25.10, 1.26.3	—	Not Applicable
CVE-2026-39820	NONE0	stdlib v1.25.3 fixed in 1.25.10, 1.26.3	—	Not Applicable
CVE-2026-39836	NONE0	stdlib v1.25.3 fixed in 1.25.10, 1.26.3	—	Not Applicable
CVE-2025-61728	NONE0	stdlib v1.25.3 fixed in 1.24.12, 1.25.6	<0.1% Theoretical Threat	Not Applicable
CVE-2025-61727	NONE0	stdlib v1.25.3 fixed in 1.24.11, 1.25.5	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32282	NONE0	stdlib v1.25.3 fixed in 1.25.9, 1.26.2	<0.1% Theoretical Threat	Not Applicable
CVE-2025-14104	NONE0	liblastlog2-2 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32289	NONE0	stdlib v1.25.3 fixed in 1.25.9, 1.26.2	<0.1% Theoretical Threat	Not Applicable
CVE-2022-0563	NONE0	liblastlog2-2 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32288	NONE0	stdlib v1.25.3 fixed in 1.25.9, 1.26.2	<0.1% Theoretical Threat	Not Applicable
CVE-2026-27142	NONE0	stdlib v1.25.3 fixed in 1.25.8, 1.26.1	<0.1% Theoretical Threat	Not Applicable
CVE-2026-39826	NONE0	stdlib v1.25.3 fixed in 1.25.10, 1.26.3	—	Not Applicable
CVE-2026-3184	NONE0	liblastlog2-2 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-61730	NONE0	stdlib v1.25.3 fixed in 1.24.12, 1.25.6	<0.1% Theoretical Threat	Not Applicable
CVE-2018-1000021	NONE0	git-man 1:2.47.3-0+deb13u1 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2007-5686	NONE0	login.defs 1:4.17.4-2 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	liblastlog2-2 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-48924	NONE0	commons-lang:commons-lang 2.6 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2024-56433	NONE0	login.defs 1:4.17.4-2 No fix yet	4.5% Low-Moderate Risk	Not Applicable
CVE-2025-6141	NONE0	libncursesw6 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	libtinfo6 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	ncurses-base 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	ncurses-bin 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-27139	NONE0	stdlib v1.25.3 fixed in 1.25.8, 1.26.1	<0.1% Theoretical Threat	Not Applicable
TEMP-0841856-B18BAF	NONE0	bash 5.2.37-2+b9 No fix yet	—	Not Applicable
CVE-2026-48959	NONE0	libperl5.40 5.40.1-6 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	libperl5.40 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	libperl5.40 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-48961	NONE0	libperl5.40 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-34180	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-34181	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-34182	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-34183	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42764	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42766	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42767	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42768	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42769	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42770	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-45445	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-45446	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-45447	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-7383	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-9076	NONE0	libssl3t64 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
TEMP-0628843-DBAD28	NONE0	login.defs 1:4.17.4-2 No fix yet	—	Not Applicable
CVE-2026-34180	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-34181	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-34182	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-34183	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42764	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42766	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42767	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42768	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42769	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42770	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-45445	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-45446	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-45447	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-7383	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-9076	NONE0	openssl 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-34180	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-34181	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-34182	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-34183	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42764	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42766	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42767	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42768	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42769	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-42770	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-45445	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-45446	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-45447	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-7383	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
CVE-2026-9076	NONE0	openssl-provider-legacy 3.5.6-1~deb13u2 No fix yet	—	Not Applicable
TEMP-0628843-DBAD28	NONE0	passwd 1:4.17.4-2 No fix yet	—	Not Applicable
CVE-2026-48959	NONE0	perl 5.40.1-6 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	perl 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	perl 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-48961	NONE0	perl 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-48959	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-48961	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-48959	NONE0	perl-modules-5.40 5.40.1-6 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	perl-modules-5.40 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	perl-modules-5.40 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-48961	NONE0	perl-modules-5.40 5.40.1-6 No fix yet	—	Not Applicable
TEMP-0517018-A83CE6	NONE0	sysvinit-utils 3.14-4 No fix yet	—	Not Applicable
TEMP-0290435-0B57B5	NONE0	tar 1.35+dfsg-3.1 No fix yet	—	Not Applicable
GHSA-72hv-8253-57qq	NONE0	com.fasterxml.jackson.core:jackson-core 2.20.1 fixed in 2.21.1, 2.18.6	—	Not Applicable
CVE-2026-39823	NONE0	stdlib v1.25.3 fixed in 1.25.10, 1.26.3	—	Not Applicable
CVE-2026-39825	NONE0	stdlib v1.25.3 fixed in 1.25.10, 1.26.3	—	Not Applicable
CVE-2026-42499	NONE0	stdlib v1.25.3 fixed in 1.25.10, 1.26.3	—	Not Applicable
CVE-2026-42504	NONE0	stdlib v1.25.3 fixed in 1.25.11, 1.26.4	—	Not Applicable
CVE-2026-27145	NONE0	stdlib v1.25.3 fixed in 1.25.11, 1.26.4	—	Not Applicable
CVE-2026-42507	NONE0	stdlib v1.25.3 fixed in 1.25.11, 1.26.4	—	Not Applicable