This image is safe for production use. While 1 exposed and 10 post-exploit vulnerabilities exist, all are low severity (max CVSS 3.15) and none pose a realistic threat in typical deployment scenarios. The official, pinned-by-digest image ensures integrity and reduces supply chain risk.
| CVE ID | Adjusted Severity | Package | Exploit Probability | Risk Context |
|---|---|---|---|---|
| CVE-2026-5419 | LOW3.15 | gnutls 3.8.3-8.amzn2023.0.3 fixed in 3.8.10-4.amzn2023.0.2 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2026-33845 | LOW2.78 | gnutls 3.8.3-8.amzn2023.0.3 fixed in 3.8.3-8.amzn2023.0.4 | 0.6% Theoretical Threat | Post-Exploit |
| CVE-2026-48863 | LOW2.7 | libsolv 0.7.22-1.amzn2023.0.3 fixed in 0.7.22-1.amzn2023.0.4 | — | Post-Exploit |
| CVE-2026-42013 | LOW2.51 | gnutls 3.8.3-8.amzn2023.0.3 fixed in 3.8.10-4.amzn2023.0.2 | 0.4% Theoretical Threat | Post-Exploit |
| CVE-2026-48864 | LOW2.39 | libsolv 0.7.22-1.amzn2023.0.3 fixed in 0.7.22-1.amzn2023.0.4 | 0.2% Theoretical Threat | Post-Exploit |
| CVE-2026-42011 | LOW2.26 | gnutls 3.8.3-8.amzn2023.0.3 fixed in 3.8.10-4.amzn2023.0.2 | 0.3% Theoretical Threat | Post-Exploit |
| CVE-2026-42012 | LOW2.17 | gnutls 3.8.3-8.amzn2023.0.3 fixed in 3.8.10-4.amzn2023.0.2 | 0.3% Theoretical Threat | Post-Exploit |
| CVE-2026-9149 | LOW1.99 | libsolv 0.7.22-1.amzn2023.0.3 fixed in 0.7.22-1.amzn2023.0.4 | 0.3% Theoretical Threat | Post-Exploit |
| CVE-2026-9150 | LOW1.99 | libsolv 0.7.22-1.amzn2023.0.3 fixed in 0.7.22-1.amzn2023.0.4 | 0.4% Theoretical Threat | Post-Exploit |
| CVE-2026-6019 | LOW1.87 | python3 3.9.25-1.amzn2023.0.5 fixed in 3.9.25-1.amzn2023.0.6 | 0.2% Theoretical Threat | Post-Exploit |
| CVE-2026-6019 | LOW1.87 | python3-libs 3.9.25-1.amzn2023.0.5 fixed in 3.9.25-1.amzn2023.0.6 | 0.2% Theoretical Threat | Post-Exploit |