This image is safe for production use. Although vulnerability scans report a total of 4 exposed and 7 post-exploit findings, all have low severity (maximum CVSS 5.6) and no exploitable CVEs are documented in the provided inputs. The image is officially published and trusted, with a threat score of zero, indicating negligible risk for deployment.
| CVE ID | Adjusted Severity | Package | Exploit Probability | Risk Context |
|---|---|---|---|---|
| CVE-2026-42013 | MEDIUM5.58 | gnutls 3.8.3-8.amzn2023.0.3 fixed in 3.8.10-4.amzn2023.0.2 | 0.4% Theoretical Threat | Directly ExposedContext importance: MEDIUM |
| CVE-2026-42011 | MEDIUM5.03 | gnutls 3.8.3-8.amzn2023.0.3 fixed in 3.8.10-4.amzn2023.0.2 | 0.3% Theoretical Threat | Directly ExposedContext importance: MEDIUM |
| CVE-2026-42012 | MEDIUM4.82 | gnutls 3.8.3-8.amzn2023.0.3 fixed in 3.8.10-4.amzn2023.0.2 | 0.3% Theoretical Threat | Directly ExposedContext importance: MEDIUM |
| CVE-2026-5419 | LOW3.15 | gnutls 3.8.3-8.amzn2023.0.3 fixed in 3.8.10-4.amzn2023.0.2 | 0.5% Theoretical Threat | Directly Exposed |
| CVE-2026-33845 | LOW2.78 | gnutls 3.8.3-8.amzn2023.0.3 fixed in 3.8.3-8.amzn2023.0.4 | 0.6% Theoretical Threat | Post-Exploit |
| CVE-2026-48863 | LOW2.7 | libsolv 0.7.22-1.amzn2023.0.3 fixed in 0.7.22-1.amzn2023.0.4 | — | Post-Exploit |
| CVE-2026-48864 | LOW2.39 | libsolv 0.7.22-1.amzn2023.0.3 fixed in 0.7.22-1.amzn2023.0.4 | 0.2% Theoretical Threat | Post-Exploit |
| CVE-2026-9149 | LOW1.99 | libsolv 0.7.22-1.amzn2023.0.3 fixed in 0.7.22-1.amzn2023.0.4 | 0.3% Theoretical Threat | Post-Exploit |
| CVE-2026-9150 | LOW1.99 | libsolv 0.7.22-1.amzn2023.0.3 fixed in 0.7.22-1.amzn2023.0.4 | 0.4% Theoretical Threat | Post-Exploit |
| CVE-2026-6019 | LOW1.87 | python3 3.9.25-1.amzn2023.0.5 fixed in 3.9.25-1.amzn2023.0.6 | 0.2% Theoretical Threat | Post-Exploit |
| CVE-2026-6019 | LOW1.87 | python3-libs 3.9.25-1.amzn2023.0.5 fixed in 3.9.25-1.amzn2023.0.6 | 0.2% Theoretical Threat | Post-Exploit |