Vulnerability Reportkibana:8.19.6

kibana:8.19.6
DIGESTsha256:8d6714839c46872d23be8253b84cf54d6346ed43fd45dc775789f3ca0a6bb7cb

Executive Summary

Last scanned:

Threat Score
100/100DANGEROUS
Reputation
TRUSTED

This image poses a critical security risk and must not be used in production, especially as an internet-facing service. The container includes multiple high-severity remote code execution vulnerabilities, such as CVE-2025-12735 in expr-eval and CVE-2026-33937 in Handlebars, which can be exploited without authentication. An attacker could execute arbitrary code on the Kibana server, potentially accessing or exfiltrating sensitive data. Immediate remediation is required, and deployment should be avoided until all critical vulnerabilities are patched.

Vulnerabilities

Vulnerability Log

352 total
CVE IDAdjusted SeverityPackageExploit ProbabilityRisk Context
CVE-2025-12735CRITICAL9.8
expr-eval
2.0.2
No fix yet
2.3%
Low-Moderate Risk
Directly ExposedContext importance: HIGH
CVE-2026-33937CRITICAL9.8
handlebars
4.7.8
fixed in 4.7.9
1.8%
Low-Moderate Risk
Directly ExposedContext importance: HIGH
CVE-2026-4800CRITICAL9.8
lodash
4.17.21
fixed in 4.18.0
1.7%
Low-Moderate Risk
Directly ExposedContext importance: HIGH
CVE-2026-33845HIGH7.73
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-45445HIGH7.73
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42264HIGH7.73
axios
1.12.1
fixed in 1.15.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-42044HIGH7.73
axios
1.12.1
fixed in 1.15.2
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-33896HIGH7.73
node-forge
1.3.1
fixed in 1.4.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-33846HIGH7.5
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2026-42009HIGH7.5
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2026-33416HIGH7.5
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.6
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2026-48068HIGH7.5
@grpc/grpc-js
1.13.4
fixed in 1.9.16, 1.10.12, 1.11.4, 1.12.7, 1.13.5, 1.14.4
Directly Exposed
CVE-2026-48069HIGH7.5
@grpc/grpc-js
1.13.4
fixed in 1.9.16, 1.10.12, 1.11.4, 1.12.7, 1.13.5, 1.14.4
Directly Exposed
CVE-2026-25639HIGH7.5
axios
1.12.1
fixed in 1.13.5, 0.30.3
2.6%
Low-Moderate Risk
Directly Exposed
CVE-2025-64756HIGH7.5
glob
10.4.5
fixed in 11.1.0, 10.5.0
3.1%
Low-Moderate Risk
Directly Exposed
CVE-2026-1526HIGH7.5
undici
6.21.3
fixed in 6.24.0, 7.24.0
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2026-44293HIGH7.48
protobufjs
7.4.0
fixed in 7.5.6, 8.0.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-12816HIGH7.39
node-forge
1.3.1
fixed in 1.3.2
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-42013MEDIUM6.97
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-5260MEDIUM6.97
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-0966MEDIUM6.97
libssh-4
0.10.6-2ubuntu0.1
fixed in 0.10.6-2ubuntu0.3
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44490MEDIUM6.97
axios
1.12.1
fixed in 1.16.0, 0.32.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-33941MEDIUM6.97
handlebars
4.7.8
fixed in 4.7.9
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-0861MEDIUM6.88
libc-bin
2.39-0ubuntu8.6
fixed in 2.39-0ubuntu8.7
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-0861MEDIUM6.88
libc6
2.39-0ubuntu8.6
fixed in 2.39-0ubuntu8.7
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-25646MEDIUM6.88
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.5
1.0%
Theoretical Threat
Directly Exposed
CVE-2026-28387MEDIUM6.88
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.9
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-33938MEDIUM6.88
handlebars
4.7.8
fixed in 4.7.9
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-33940MEDIUM6.88
handlebars
4.7.8
fixed in 4.7.9
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-55388MEDIUM6.88
piscina
3.2.0
fixed in 5.2.0, 4.9.3, 6.0.0-rc.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-44291MEDIUM6.88
protobufjs
7.4.0
fixed in 7.5.6, 8.0.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-25210MEDIUM6.63
libexpat1
2.6.1-2ubuntu0.3
fixed in 2.6.1-2ubuntu0.4
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-22801MEDIUM6.63
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.3
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-29111MEDIUM6.63
libsystemd0
255.4-1ubuntu8.10
fixed in 255.4-1ubuntu8.14
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-29111MEDIUM6.63
libudev1
255.4-1ubuntu8.10
fixed in 255.4-1ubuntu8.14
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-44724MEDIUM6.63
systeminformation
5.23.8
fixed in 5.31.6
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-33636MEDIUM6.46
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.6
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-41989MEDIUM6.38
libgcrypt20
1.10.3-2build1
fixed in 1.10.3-2ubuntu0.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-27135MEDIUM6.38
libnghttp2-14
1.59.0-1ubuntu0.2
fixed in 1.59.0-1ubuntu0.3
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-3731MEDIUM6.38
libssh-4
0.10.6-2ubuntu0.1
fixed in 0.10.6-2ubuntu0.4
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-69421MEDIUM6.38
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-28388MEDIUM6.38
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.9
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-28389MEDIUM6.38
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.9
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-28390MEDIUM6.38
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.9
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-35213MEDIUM6.38
@hapi/content
6.0.0
fixed in 6.0.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-44902MEDIUM6.38
@opentelemetry/exporter-prometheus
0.202.0
fixed in 0.217.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-44902MEDIUM6.38
@opentelemetry/sdk-node
0.202.0
fixed in 0.217.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-69873MEDIUM6.38
ajv
8.17.1
fixed in 8.18.0, 6.14.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-44486MEDIUM6.38
axios
1.12.1
fixed in 1.16.0, 0.32.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44487MEDIUM6.38
axios
1.12.1
fixed in 1.16.0, 0.32.0
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-44488MEDIUM6.38
axios
1.12.1
fixed in 1.16.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44496MEDIUM6.38
axios
1.12.1
fixed in 1.16.0, 0.32.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42038MEDIUM6.38
axios
1.12.1
fixed in 1.15.1, 0.31.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42039MEDIUM6.38
axios
1.12.1
fixed in 1.15.1, 0.31.1
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-33750MEDIUM6.38
brace-expansion
1.1.12
fixed in 5.0.5, 3.0.2, 2.0.3, 1.1.13
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-33750MEDIUM6.38
brace-expansion
2.0.2
fixed in 5.0.5, 3.0.2, 2.0.3, 1.1.13
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-6321MEDIUM6.38
fast-uri
3.0.3
fixed in 3.1.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-6322MEDIUM6.38
fast-uri
3.0.3
fixed in 3.1.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-26278MEDIUM6.38
fast-xml-parser
4.4.1
fixed in 4.5.4, 5.3.6
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-33036MEDIUM6.38
fast-xml-parser
4.4.1
fixed in 5.5.6, 4.5.5
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-27942MEDIUM6.38
fast-xml-parser
4.4.1
fixed in 5.3.8, 4.5.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-12143MEDIUM6.38
form-data
4.0.4
fixed in 2.5.6, 3.0.5, 4.0.6
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-33939MEDIUM6.38
handlebars
4.7.8
fixed in 4.7.9
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-46625MEDIUM6.38
js-cookie
2.2.1
fixed in 3.0.7
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-65945MEDIUM6.38
jws
3.2.2
fixed in 3.2.3, 4.0.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-65945MEDIUM6.38
jws
4.0.0
fixed in 3.2.3, 4.0.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-2327MEDIUM6.38
markdown-it
14.1.0
fixed in 14.1.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-26996MEDIUM6.38
minimatch
3.1.2
fixed in 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-26996MEDIUM6.38
minimatch
5.1.6
fixed in 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-26996MEDIUM6.38
minimatch
9.0.5
fixed in 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-66031MEDIUM6.38
node-forge
1.3.1
fixed in 1.3.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-33891MEDIUM6.38
node-forge
1.3.1
fixed in 1.4.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-33894MEDIUM6.38
node-forge
1.3.1
fixed in 1.4.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-33895MEDIUM6.38
node-forge
1.3.1
fixed in 1.4.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-14874MEDIUM6.38
nodemailer
7.0.9
fixed in 7.0.11
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-44289MEDIUM6.38
protobufjs
7.4.0
fixed in 7.5.6, 8.0.2
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44290MEDIUM6.38
protobufjs
7.4.0
fixed in 7.5.6, 8.0.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-48712MEDIUM6.38
protobufjs
7.4.0
fixed in 7.6.1, 8.4.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-44292MEDIUM6.38
protobufjs
7.4.0
fixed in 7.5.6, 8.0.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-45740MEDIUM6.38
protobufjs
7.4.0
fixed in 7.5.8, 8.2.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-12151MEDIUM6.38
undici
6.21.3
fixed in 6.27.0, 7.28.0, 8.5.0
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-1528MEDIUM6.38
undici
6.21.3
fixed in 6.24.0, 7.24.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-2229MEDIUM6.38
undici
6.21.3
fixed in 6.24.0, 7.24.0
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-22036MEDIUM6.38
undici
6.21.3
fixed in 7.18.2, 6.23.0
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-41907MEDIUM6.38
uuid
10.0.0
fixed in 11.1.1, 12.0.1, 13.0.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-41907MEDIUM6.38
uuid
8.3.2
fixed in 11.1.1, 12.0.1, 13.0.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-41907MEDIUM6.38
uuid
9.0.1
fixed in 11.1.1, 12.0.1, 13.0.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-48779MEDIUM6.38
ws
8.18.3
fixed in 5.2.5, 6.2.4, 7.5.11, 8.21.0
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-45736MEDIUM6.38
ws
8.18.3
fixed in 8.20.1
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-3833MEDIUM6.29
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42011MEDIUM6.29
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-34182MEDIUM6.29
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-69419MEDIUM6.29
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-27795MEDIUM6.29
@langchain/community
0.3.45
fixed in 1.1.18
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-42033MEDIUM6.29
axios
1.12.1
fixed in 1.15.1, 0.31.1
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-42035MEDIUM6.29
axios
1.12.1
fixed in 1.15.1, 0.31.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-13204MEDIUM6.21
expr-eval
2.0.2
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-42012MEDIUM6.03
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-64720MEDIUM6.03
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-65018MEDIUM6.03
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-66293MEDIUM6.03
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.3
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-22695MEDIUM6.03
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.3
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-25896MEDIUM6.03
fast-xml-parser
4.4.1
fixed in 5.3.5, 4.5.4
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-4878MEDIUM5.95
libcap2
1:2.66-5ubuntu2.2
fixed in 1:2.66-5ubuntu2.4
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-44495MEDIUM5.95
axios
1.12.1
fixed in 1.15.2, 0.31.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-2236MEDIUM5.9
libgcrypt20
1.10.3-2build1
No fix yet
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2025-13151MEDIUM5.9
libtasn1-6
4.19.0-3ubuntu0.24.04.1
fixed in 4.19.0-3ubuntu0.24.04.2
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2026-42014MEDIUM5.61
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-4437MEDIUM5.52
libc-bin
2.39-0ubuntu8.6
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-6238MEDIUM5.52
libc-bin
2.39-0ubuntu8.6
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-4437MEDIUM5.52
libc6
2.39-0ubuntu8.6
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-6238MEDIUM5.52
libc6
2.39-0ubuntu8.6
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-8769MEDIUM5.52
@ai-sdk/provider-utils
2.0.4
No fix yet
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42041MEDIUM5.52
axios
1.12.1
fixed in 1.15.1, 0.31.1
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-27904MEDIUM5.52
minimatch
3.1.2
fixed in 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-27904MEDIUM5.52
minimatch
5.1.6
fixed in 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-27904MEDIUM5.52
minimatch
9.0.5
fixed in 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-33671MEDIUM5.52
picomatch
2.3.1
fixed in 4.0.4, 3.0.2, 2.3.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-1527MEDIUM5.52
undici
6.21.3
fixed in 6.24.0, 7.24.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-33532MEDIUM5.52
yaml
1.10.2
fixed in 2.8.3, 1.10.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-33532MEDIUM5.52
yaml
2.3.4
fixed in 2.8.3, 1.10.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-33532MEDIUM5.52
yaml
2.5.1
fixed in 2.8.3, 1.10.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-40225MEDIUM5.44
libsystemd0
255.4-1ubuntu8.10
fixed in 255.4-1ubuntu8.14
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-40226MEDIUM5.44
libsystemd0
255.4-1ubuntu8.10
fixed in 255.4-1ubuntu8.16
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-40225MEDIUM5.44
libudev1
255.4-1ubuntu8.10
fixed in 255.4-1ubuntu8.14
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-40226MEDIUM5.44
libudev1
255.4-1ubuntu8.10
fixed in 255.4-1ubuntu8.16
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-0964MEDIUM5.35
libssh-4
0.10.6-2ubuntu0.1
fixed in 0.10.6-2ubuntu0.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-48038MEDIUM5.3
joi
17.13.3
fixed in 18.2.1, 17.13.4
Directly Exposed
CVE-2025-13465MEDIUM5.3
lodash
4.17.21
fixed in 4.17.23
1.5%
Low-Moderate Risk
Directly Exposed
CVE-2026-13757MEDIUM5.27
libp11-kit0
0.25.3-4ubuntu2.1
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2025-28162MEDIUM5.27
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.4
0.1%
Theoretical Threat
Directly Exposed
CVE-2025-64506MEDIUM5.18
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.1
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-42042MEDIUM5.18
axios
1.12.1
fixed in 1.15.1, 0.31.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-42338MEDIUM5.18
ip-address
9.0.5
fixed in 10.1.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-15281MEDIUM5.02
libc-bin
2.39-0ubuntu8.6
fixed in 2.39-0ubuntu8.7
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-5435MEDIUM5.02
libc-bin
2.39-0ubuntu8.6
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-15281MEDIUM5.02
libc6
2.39-0ubuntu8.6
fixed in 2.39-0ubuntu8.7
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-5435MEDIUM5.02
libc6
2.39-0ubuntu8.6
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-31790MEDIUM5.02
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.9
1.0%
Theoretical Threat
Directly Exposed
CVE-2025-69420MEDIUM5.02
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-22796MEDIUM5.02
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-42770MEDIUM5.02
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-9076MEDIUM5.02
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-41324MEDIUM5.02
basic-ftp
5.0.3
fixed in 5.3.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-33349MEDIUM5.02
fast-xml-parser
4.4.1
fixed in 4.5.5, 5.5.7
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-27903MEDIUM5.02
minimatch
3.1.2
fixed in 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-27903MEDIUM5.02
minimatch
5.1.6
fixed in 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-27903MEDIUM5.02
minimatch
9.0.5
fixed in 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-9679MEDIUM5.02
undici
6.21.3
fixed in 6.27.0, 7.28.0, 8.5.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-40175MEDIUM4.8
axios
1.12.1
fixed in 1.15.0, 0.31.0
1.8%
Low-Moderate Risk
Directly Exposed
CVE-2025-66382MEDIUM4.67
libexpat1
2.6.1-2ubuntu0.3
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-0967MEDIUM4.67
libssh-4
0.10.6-2ubuntu0.1
fixed in 0.10.6-2ubuntu0.3
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-22795MEDIUM4.67
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-7383MEDIUM4.67
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-27171MEDIUM4.67
zlib1g
1:1.3.dfsg-3.1ubuntu2.1
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-41650MEDIUM4.59
fast-xml-parser
4.4.1
fixed in 5.7.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2024-53382MEDIUM4.59
prismjs
1.27.0
fixed in 1.30.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-0915MEDIUM4.5
libc-bin
2.39-0ubuntu8.6
fixed in 2.39-0ubuntu8.7
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-4046MEDIUM4.5
libc-bin
2.39-0ubuntu8.6
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-0915MEDIUM4.5
libc6
2.39-0ubuntu8.6
fixed in 2.39-0ubuntu8.7
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-4046MEDIUM4.5
libc6
2.39-0ubuntu8.6
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-23865MEDIUM4.5
libfreetype6
2.13.2+dfsg-1build3
fixed in 2.13.2+dfsg-1ubuntu0.1
0.1%
Theoretical Threat
Directly Exposed
CVE-2025-14831MEDIUM4.5
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.5
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42015MEDIUM4.5
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-34743MEDIUM4.5
liblzma5
5.6.1+really5.4.5-1ubuntu0.2
fixed in 5.6.1+really5.4.5-1ubuntu0.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-42766MEDIUM4.5
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42767MEDIUM4.5
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-54285MEDIUM4.5
@opentelemetry/core
1.26.0
fixed in 2.8.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-54285MEDIUM4.5
@opentelemetry/core
2.0.1
fixed in 2.8.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-44288MEDIUM4.5
@protobufjs/utf8
1.1.0
fixed in 1.1.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-48985MEDIUM4.5
ai
4.0.18
fixed in 5.0.52, 5.1.0-beta.9
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42034MEDIUM4.5
axios
1.12.1
fixed in 1.15.1, 0.31.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42036MEDIUM4.5
axios
1.12.1
fixed in 1.15.1, 0.31.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-42037MEDIUM4.5
axios
1.12.1
fixed in 1.15.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-2739MEDIUM4.5
bn.js
4.11.9
fixed in 4.12.3, 5.2.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-64718MEDIUM4.5
js-yaml
4.1.0
fixed in 4.1.1, 3.14.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-53550MEDIUM4.5
js-yaml
4.1.0
fixed in 4.2.0, 3.15.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-2950MEDIUM4.5
lodash
4.17.21
fixed in 4.18.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-66030MEDIUM4.5
node-forge
1.3.1
fixed in 1.3.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-33672MEDIUM4.5
picomatch
2.3.1
fixed in 4.0.4, 3.0.2, 2.3.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-44288MEDIUM4.5
protobufjs
7.4.0
fixed in 7.5.6, 8.0.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-44294MEDIUM4.5
protobufjs
7.4.0
fixed in 7.5.6, 8.0.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-54269MEDIUM4.5
protobufjs
7.4.0
fixed in 7.6.3, 8.6.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-31988MEDIUM4.5
yauzl
3.2.0
fixed in 3.2.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-28164MEDIUM4.25
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.4
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-34180MEDIUM4.25
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-8286MEDIUM4.13
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.10
0.5%
Theoretical Threat
Post-Exploit
CVE-2025-15079MEDIUM4.13
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-8286MEDIUM4.13
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.10
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-28387MEDIUM4.13
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.9
0.6%
Theoretical Threat
Post-Exploit
CVE-2025-15467MEDIUM4.06
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
47.6%
High Exploitation Risk
Post-Exploit
CVE-2025-15467MEDIUM4.06
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
47.6%
High Exploitation Risk
Post-Exploit
CVE-2026-27456MEDIUM4
libblkid1
2.39.3-9ubuntu6.3
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libmount1
2.39.3-9ubuntu6.3
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libsmartcols1
2.39.3-9ubuntu6.3
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2025-8114MEDIUM4
libssh-4
0.10.6-2ubuntu0.1
fixed in 0.10.6-2ubuntu0.2
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-68160MEDIUM4
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libuuid1
2.39.3-9ubuntu6.3
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-33916MEDIUM4
handlebars
4.7.8
fixed in 4.7.9
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-69720LOW3.98
ncurses-bin
6.4+20240113-1ubuntu2
fixed in 6.4+20240113-1ubuntu2.1
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-8927LOW3.82
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.10
0.8%
Theoretical Threat
Post-Exploit
CVE-2026-5773LOW3.82
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-6276LOW3.82
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-41992LOW3.82
gzip
1.12-1ubuntu3.1
fixed in 1.12-1ubuntu3.2
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-8927LOW3.82
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.10
0.8%
Theoretical Threat
Post-Exploit
CVE-2026-5773LOW3.82
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-6276LOW3.82
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.3%
Theoretical Threat
Post-Exploit
CVE-2025-69421LOW3.82
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.8%
Theoretical Threat
Post-Exploit
CVE-2026-28388LOW3.82
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.9
0.9%
Theoretical Threat
Post-Exploit
CVE-2026-28389LOW3.82
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.9
0.8%
Theoretical Threat
Post-Exploit
CVE-2026-28390LOW3.82
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.9
0.8%
Theoretical Threat
Post-Exploit
CVE-2026-9547LOW3.77
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.10
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-9547LOW3.77
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.10
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-34182LOW3.77
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.2%
Theoretical Threat
Post-Exploit
CVE-2025-69419LOW3.77
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.4%
Theoretical Threat
Post-Exploit
CVE-2025-64505LOW3.74
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-34757LOW3.74
libpng16-16t64
1.6.43-5build1
fixed in 1.6.43-5ubuntu0.6
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-26960LOW3.62
tar
7.4.3
fixed in 7.5.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2025-68973LOW3.57
gpgv
2.4.4-2ubuntu17.3
fixed in 2.4.4-2ubuntu17.4
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-62718LOW3.56
axios
1.12.1
fixed in 1.15.0, 0.31.0
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2026-42010LOW3.53
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2026-26019LOW3.48
@langchain/community
0.3.45
fixed in 1.1.14
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-1965LOW3.47
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2025-14819LOW3.47
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.7%
Theoretical Threat
Post-Exploit
CVE-2026-1965LOW3.47
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2025-14819LOW3.47
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.7%
Theoretical Threat
Post-Exploit
CVE-2026-4438LOW3.4
libc-bin
2.39-0ubuntu8.6
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-4438LOW3.4
libc6
2.39-0ubuntu8.6
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-9820LOW3.4
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.5
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-69418LOW3.4
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-3449LOW3.4
@tootallnate/once
2.0.0
fixed in 3.0.1, 2.0.1
0.1%
Theoretical Threat
Directly Exposed
CVE-2025-68154LOW3.35
systeminformation
5.23.8
fixed in 5.27.14
12.9%
High Exploitation Risk
Post-Exploit
CVE-2026-5545LOW3.31
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-6429LOW3.31
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.5%
Theoretical Threat
Post-Exploit
CVE-2025-14524LOW3.31
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-3784LOW3.31
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-8924LOW3.31
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.10
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-5545LOW3.31
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-6429LOW3.31
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.5%
Theoretical Threat
Post-Exploit
CVE-2025-14524LOW3.31
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-3784LOW3.31
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-8924LOW3.31
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.10
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-5958LOW3.21
sed
4.9-2build1
fixed in 4.9-2ubuntu0.24.04.1
0.1%
Theoretical Threat
Post-Exploit
CVE-2026-29786LOW3.21
tar
7.4.3
fixed in 7.5.10
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-26318LOW3.17
systeminformation
5.23.8
fixed in 5.31.0
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2026-3832LOW3.15
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-5419LOW3.15
libgnutls30t64
3.8.3-1.1ubuntu3.4
fixed in 3.8.3-1.1ubuntu3.6
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-45446LOW3.15
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-42040LOW3.15
axios
1.12.1
fixed in 1.15.1, 0.31.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-11525LOW3.15
undici
6.21.3
fixed in 6.27.0, 7.28.0, 8.5.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-6733LOW3.15
undici
6.21.3
fixed in 6.27.0, 7.28.0, 8.5.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-44494LOW3.13
axios
1.12.1
fixed in 1.16.0
1.0%
Low-Moderate Risk
Post-Exploit
CVE-2026-23745LOW3.11
tar
7.4.3
fixed in 7.5.3
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-42043LOW3.06
axios
1.12.1
fixed in 1.15.1, 0.31.1
0.7%
Theoretical Threat
Post-Exploit
CVE-2026-31790LOW3.01
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.9
1.0%
Theoretical Threat
Post-Exploit
CVE-2025-69420LOW3.01
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.8%
Theoretical Threat
Post-Exploit
CVE-2026-22796LOW3.01
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-42770LOW3.01
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-9076LOW3.01
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-23950LOW3.01
tar
7.4.3
fixed in 7.5.4
0.2%
Theoretical Threat
Post-Exploit
CVE-2026-2781LOW3
libnss3
2:3.98-1build1
fixed in 2:3.98-1ubuntu0.1
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-31789LOW3
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.9
0.2%
Theoretical Threat
Post-Exploit
CVE-2026-31789LOW3
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.9
0.2%
Theoretical Threat
Post-Exploit
CVE-2026-8376LOW3
perl-base
5.38.2-3.2ubuntu0.2
fixed in 5.38.2-3.2ubuntu0.3
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-27699LOW3
basic-ftp
5.0.3
fixed in 5.2.0
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-40190LOW3
langsmith
0.3.29
fixed in 0.5.18
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-41242LOW3
protobufjs
7.4.0
fixed in 8.0.1, 7.5.5
0.7%
Theoretical Threat
Post-Exploit
CVE-2026-1525LOW3
undici
6.21.3
fixed in 6.24.0, 7.24.0
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-8925LOW2.92
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.10
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2026-8925LOW2.92
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.10
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2026-45447LOW2.92
libssl3t64
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
2.7%
Low-Moderate Risk
Post-Exploit
CVE-2026-45447LOW2.92
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
2.7%
Low-Moderate Risk
Post-Exploit
CVE-2026-3783LOW2.91
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-3783LOW2.91
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-12318LOW2.89
libnss3
2:3.98-1build1
fixed in 2:3.98-1ubuntu0.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-45582LOW2.86
tar
1.35+dfsg-3build1
fixed in 1.35+dfsg-3ubuntu0.2
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-26280LOW2.81
systeminformation
5.23.8
fixed in 5.30.8
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2026-22795LOW2.8
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.1%
Theoretical Threat
Post-Exploit
CVE-2026-7383LOW2.8
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-5704LOW2.8
tar
1.35+dfsg-3build1
fixed in 1.35+dfsg-3ubuntu0.1
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-31802LOW2.8
tar
7.4.3
fixed in 7.5.11
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-53655LOW2.8
tar
7.4.3
fixed in 7.5.16
0.1%
Theoretical Threat
Post-Exploit
CVE-2026-0965LOW2.8
libssh-4
0.10.6-2ubuntu0.1
fixed in 0.10.6-2ubuntu0.3
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-40228LOW2.8
libsystemd0
255.4-1ubuntu8.10
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-40228LOW2.8
libudev1
255.4-1ubuntu8.10
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-45445LOW2.78
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-42496LOW2.78
perl-base
5.38.2-3.2ubuntu0.2
fixed in 5.38.2-3.2ubuntu0.3
0.4%
Theoretical Threat
Post-Exploit
CVE-2025-68665LOW2.78
@langchain/core
0.3.57
fixed in 1.1.8, 0.3.80
0.7%
Theoretical Threat
Post-Exploit
CVE-2025-68665LOW2.78
langchain
0.3.15
fixed in 1.2.3, 0.3.37
0.7%
Theoretical Threat
Post-Exploit
CVE-2026-6253LOW2.7
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-7168LOW2.7
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-4873LOW2.7
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-6253LOW2.7
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-7168LOW2.7
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-4873LOW2.7
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.9
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-42766LOW2.7
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.6%
Theoretical Threat
Post-Exploit
CVE-2026-42767LOW2.7
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-0968LOW2.63
libssh-4
0.10.6-2ubuntu0.1
fixed in 0.10.6-2ubuntu0.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-8277LOW2.63
libssh-4
0.10.6-2ubuntu0.1
fixed in 0.10.6-2ubuntu0.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-34180LOW2.55
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-24842LOW2.51
tar
7.4.3
fixed in 7.5.7
0.5%
Theoretical Threat
Post-Exploit
CVE-2025-15079LOW2.48
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.5%
Theoretical Threat
Post-Exploit
CVE-2025-14017LOW2.45
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-10148LOW2.45
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.5%
Theoretical Threat
Post-Exploit
CVE-2025-14017LOW2.45
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-10148LOW2.45
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.5%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
bsdutils
1:2.39.3-9ubuntu6.3
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-15224LOW2.4
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-10536LOW2.4
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.11
0.9%
Theoretical Threat
Post-Exploit
CVE-2026-41991LOW2.4
gzip
1.12-1ubuntu3.1
fixed in 1.12-1ubuntu3.2
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-15224LOW2.4
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.7
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-10536LOW2.4
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.11
0.9%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
mount
2.39.3-9ubuntu6.3
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2025-68160LOW2.4
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.2%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
util-linux
2.39.3-9ubuntu6.3
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2026-24515LOW2.12
libexpat1
2.6.1-2ubuntu0.3
fixed in 2.6.1-2ubuntu0.4
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-69418LOW2.04
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.7
0.1%
Theoretical Threat
Post-Exploit
CVE-2026-45446LOW1.89
openssl
3.0.13-0ubuntu3.6
fixed in 3.0.13-0ubuntu3.11
0.2%
Theoretical Threat
Post-Exploit
CVE-2024-56433LOW1.84
login
1:4.13+dfsg1-4ubuntu3.2
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2024-56433LOW1.84
passwd
1:4.13+dfsg1-4ubuntu3.2
No fix yet
0.4%
Theoretical Threat
Post-Exploit
CVE-2025-69720NONE0
libncursesw6
6.4+20240113-1ubuntu2
fixed in 6.4+20240113-1ubuntu2.1
0.4%
Theoretical Threat
Not Applicable
CVE-2025-69720NONE0
libtinfo6
6.4+20240113-1ubuntu2
fixed in 6.4+20240113-1ubuntu2.1
0.4%
Theoretical Threat
Not Applicable
CVE-2025-69720NONE0
ncurses-base
6.4+20240113-1ubuntu2
fixed in 6.4+20240113-1ubuntu2.1
0.4%
Theoretical Threat
Not Applicable
CVE-2025-0167NONE0
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.7%
Theoretical Threat
Not Applicable
CVE-2026-8458NONE0
curl
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.10
0.5%
Theoretical Threat
Not Applicable
CVE-2026-2219NONE0
dpkg
1.22.6ubuntu6.5
fixed in 1.22.6ubuntu6.6
0.4%
Theoretical Threat
Not Applicable
CVE-2025-0167NONE0
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.8
0.7%
Theoretical Threat
Not Applicable
CVE-2026-8458NONE0
libcurl4t64
8.5.0-2ubuntu10.6
fixed in 8.5.0-2ubuntu10.10
0.5%
Theoretical Threat
Not Applicable
CVE-2026-58055NONE0
libnghttp2-14
1.59.0-1ubuntu0.2
fixed in 1.59.0-1ubuntu0.4
0.2%
Theoretical Threat
Not Applicable
CVE-2026-11822NONE0
libsqlite3-0
3.45.1-1ubuntu2.5
fixed in 3.45.1-1ubuntu2.6
0.2%
Theoretical Threat
Not Applicable
CVE-2026-11824NONE0
libsqlite3-0
3.45.1-1ubuntu2.5
fixed in 3.45.1-1ubuntu2.6
0.2%
Theoretical Threat
Not Applicable
CVE-2026-44974NONE0
@hapi/content
6.0.0
fixed in 6.0.2
Not Applicable
CVE-2026-48049NONE0
@hapi/inert
7.1.0
fixed in 7.1.1
Not Applicable
CVE-2026-44979NONE0
@hapi/wreck
18.1.0
fixed in 18.1.1
Not Applicable
CVE-2026-48022NONE0
@hapi/wreck
18.1.0
fixed in 18.1.2
Not Applicable
GHSA-6475-r3vj-m8vfNONE0
@smithy/config-resolver
4.3.0
fixed in 4.4.0
Not Applicable
CVE-2026-44240NONE0
basic-ftp
5.0.3
fixed in 5.3.1
0.5%
Theoretical Threat
Not Applicable
GHSA-6v7q-wjvx-w8wgNONE0
basic-ftp
5.0.3
fixed in 5.2.2
Not Applicable
GHSA-r4q5-vmmm-2653NONE0
follow-redirects
1.15.6
fixed in 1.16.0
Not Applicable
GHSA-7rx3-28cr-v5whNONE0
handlebars
4.7.8
fixed in 4.7.9
Not Applicable
GHSA-442j-39wm-28r2NONE0
handlebars
4.7.8
fixed in 4.7.9
Not Applicable
CVE-2025-9910NONE0
jsondiffpatch
0.6.0
fixed in 0.7.2
0.3%
Theoretical Threat
Not Applicable
CVE-2026-45134NONE0
langsmith
0.3.29
fixed in 0.6.0
0.2%
Theoretical Threat
Not Applicable
CVE-2026-41182NONE0
langsmith
0.3.29
fixed in 0.5.19
0.2%
Theoretical Threat
Not Applicable
CVE-2026-48801NONE0
linkify-it
5.0.0
fixed in 5.0.1
Not Applicable
CVE-2026-48988NONE0
markdown-it
14.1.0
fixed in 14.2.0
0.3%
Theoretical Threat
Not Applicable
GHSA-p6gq-j5cr-w38fNONE0
nodemailer
7.0.9
fixed in 9.0.1
Not Applicable
GHSA-268h-hp4c-crq3NONE0
nodemailer
7.0.9
fixed in 8.0.9
Not Applicable
GHSA-r7g4-qg5f-qqm2NONE0
nodemailer
7.0.9
fixed in 8.0.8
Not Applicable
GHSA-vvjj-xcjg-gr5gNONE0
nodemailer
7.0.9
fixed in 8.0.5
Not Applicable
GHSA-wqvq-jvpq-h66fNONE0
nodemailer
7.0.9
fixed in 8.0.9
Not Applicable
GHSA-c7w3-x93f-qmm8NONE0
nodemailer
7.0.9
fixed in 8.0.4
Not Applicable

Want to check another image? Run a full scan with the Docker Security Scanner.