Vulnerability Reportkibana:8.5.0

kibana:8.5.0
DIGESTsha256:a6ebeab5aeeada5772739991b4e242f3970f8c8a622330801136a4129e3564d3

Executive Summary

Last scanned:

Threat Score
74/100CAUTION
Reputation
TRUSTED

This image carries significant risk; production deployment is highly discouraged without strict compensating controls. An attacker could achieve remote code execution via vulnerabilities in libexpat (CVE-2024-45491) and other packages, or cause denial of service using the HTTP/2 Rapid Reset attack (CVE-2023-44487). Disabling HTTP/2 would fully eliminate the DoS risk. Despite being an official image, the high number of critical exposures makes it unsafe for production without strong mitigations.

Vulnerabilities

Vulnerability Log

436 total
CVE IDAdjusted SeverityPackageExploit ProbabilityRisk Context
CVE-2024-45491CRITICAL9.8
libexpat1
2.2.9-1ubuntu0.4
fixed in 2.2.9-1ubuntu0.7
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-45492CRITICAL9.8
libexpat1
2.2.9-1ubuntu0.4
fixed in 2.2.9-1ubuntu0.7
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-44640CRITICAL9.8
libwind0-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.8%
Low-Moderate Risk
Directly Exposed
CVE-2026-33937CRITICAL9.8
handlebars
4.7.7
fixed in 4.7.9
1.8%
Low-Moderate Risk
Directly Exposed
CVE-2024-29415CRITICAL9.8
ip
1.1.5
No fix yet
8.3%
Low-Moderate Risk
Directly Exposed
CVE-2023-42282CRITICAL9.8
ip
1.1.5
fixed in 2.0.1, 1.1.9
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2026-4800CRITICAL9.8
lodash
4.17.21
fixed in 4.18.0
1.7%
Low-Moderate Risk
Directly Exposed
CVE-2023-36665CRITICAL9.8
protobufjs
6.11.3
fixed in 7.2.5, 6.11.4
1.7%
Low-Moderate Risk
Directly Exposed
CVE-2023-44487CRITICAL9.75
libnghttp2-14
1.40.0-1build1
fixed in 1.40.0-1ubuntu0.2
100.0%
Actively Exploited
Directly Exposed
CVE-2023-0286CRITICAL9.62
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.17
59.5%
Actively Exploited
Directly Exposed
CVE-2025-27363CRITICAL9.31
libfreetype6
2.10.1-2ubuntu0.2
fixed in 2.10.1-2ubuntu0.4
26.0%
High Exploitation Risk
Directly Exposed
CVE-2024-37371CRITICAL9.1
libgssapi-krb5-2
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.6
1.9%
Low-Moderate Risk
Directly Exposed
CVE-2024-37371CRITICAL9.1
libk5crypto3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.6
1.9%
Low-Moderate Risk
Directly Exposed
CVE-2024-37371CRITICAL9.1
libkrb5-3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.6
1.9%
Low-Moderate Risk
Directly Exposed
CVE-2024-37371CRITICAL9.1
libkrb5support0
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.6
1.9%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libasn1-8-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libgssapi-krb5-2
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.2
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libgssapi3-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libhcrypto4-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libheimbase1-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libheimntlm0-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libhx509-5-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libk5crypto3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.2
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libkrb5-26-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libkrb5-3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.2
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libkrb5support0
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.2
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2021-39537HIGH8.8
libncurses6
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
3.0%
Low-Moderate Risk
Directly Exposed
CVE-2021-39537HIGH8.8
libncursesw6
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
3.0%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libroken18-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2021-39537HIGH8.8
libtinfo6
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
3.0%
Low-Moderate Risk
Directly Exposed
CVE-2022-42898HIGH8.8
libwind0-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
6.4%
Low-Moderate Risk
Directly Exposed
CVE-2021-36222HIGH8.62
libgssapi-krb5-2
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.3
10.3%
High Exploitation Risk
Directly Exposed
CVE-2021-36222HIGH8.62
libk5crypto3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.3
10.3%
High Exploitation Risk
Directly Exposed
CVE-2021-36222HIGH8.62
libkrb5-3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.3
10.3%
High Exploitation Risk
Directly Exposed
CVE-2021-36222HIGH8.62
libkrb5support0
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.3
10.3%
High Exploitation Risk
Directly Exposed
CVE-2022-35737HIGH8.62
libsqlite3-0
3.31.1-4ubuntu0.4
fixed in 3.31.1-4ubuntu0.5
18.0%
High Exploitation Risk
Directly Exposed
CVE-2022-4450HIGH8.62
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.17
20.4%
High Exploitation Risk
Directly Exposed
CVE-2022-38900HIGH8.62
decode-uri-component
0.2.0
fixed in 0.2.1
24.9%
High Exploitation Risk
Directly Exposed
CVE-2026-42043HIGH8.5
axios
0.21.4
fixed in 1.15.1, 0.31.1
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-42043HIGH8.5
axios
0.27.2
fixed in 1.15.1, 0.31.1
0.7%
Theoretical Threat
Directly Exposed
CVE-2023-2650HIGH8.45
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.19
73.5%
Actively Exploited
Directly Exposed
CVE-2026-41242HIGH8.33
protobufjs
6.11.3
fixed in 8.0.1, 7.5.5
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-1525HIGH8.33
undici
5.8.2
fixed in 6.24.0, 7.24.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2022-40674HIGH8.1
libexpat1
2.2.9-1ubuntu0.4
fixed in 2.2.9-1ubuntu0.5
1.7%
Low-Moderate Risk
Directly Exposed
CVE-2025-62718HIGH7.92
axios
0.21.4
fixed in 1.15.0, 0.31.0
1.2%
Low-Moderate Risk
Directly ExposedContext importance: MEDIUM
CVE-2025-62718HIGH7.92
axios
0.27.2
fixed in 1.15.0, 0.31.0
1.2%
Low-Moderate Risk
Directly ExposedContext importance: MEDIUM
CVE-2023-46233HIGH7.73
crypto-js
4.0.0
fixed in 4.2.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-33896HIGH7.73
node-forge
1.3.1
fixed in 1.4.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2023-48795HIGH7.67
libssh-4
0.9.3-2ubuntu2.2
fixed in 0.9.3-2ubuntu2.4
93.3%
Actively Exploited
Directly Exposed
CVE-2024-33599HIGH7.6
libc-bin
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.16
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2024-33599HIGH7.6
libc6
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.16
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2021-44758HIGH7.5
libasn1-8-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2022-43680HIGH7.5
libexpat1
2.2.9-1ubuntu0.4
fixed in 2.2.9-1ubuntu0.6
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-45490HIGH7.5
libexpat1
2.2.9-1ubuntu0.4
fixed in 2.2.9-1ubuntu0.7
1.7%
Low-Moderate Risk
Directly Exposed
CVE-2024-0553HIGH7.5
libgnutls30
3.6.13-2ubuntu1.7
fixed in 3.6.13-2ubuntu1.10
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2021-44758HIGH7.5
libgssapi3-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2021-44758HIGH7.5
libhcrypto4-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2021-44758HIGH7.5
libheimbase1-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2021-44758HIGH7.5
libheimntlm0-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2021-44758HIGH7.5
libhx509-5-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2021-44758HIGH7.5
libkrb5-26-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2023-2953HIGH7.5
libldap-2.4-2
2.4.49+dfsg-2ubuntu1.9
fixed in 2.4.49+dfsg-2ubuntu1.10
1.9%
Low-Moderate Risk
Directly Exposed
CVE-2023-2953HIGH7.5
libldap-common
2.4.49+dfsg-2ubuntu1.9
fixed in 2.4.49+dfsg-2ubuntu1.10
1.9%
Low-Moderate Risk
Directly Exposed
CVE-2020-11080HIGH7.5
libnghttp2-14
1.40.0-1build1
fixed in 1.40.0-1ubuntu0.1
5.3%
Low-Moderate Risk
Directly Exposed
CVE-2021-44758HIGH7.5
libroken18-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2023-0215HIGH7.5
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.17
4.5%
Low-Moderate Risk
Directly Exposed
CVE-2023-0464HIGH7.5
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.18
3.7%
Low-Moderate Risk
Directly Exposed
CVE-2021-44758HIGH7.5
libwind0-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2026-48068HIGH7.5
@grpc/grpc-js
1.6.7
fixed in 1.9.16, 1.10.12, 1.11.4, 1.12.7, 1.13.5, 1.14.4
Directly Exposed
CVE-2026-48069HIGH7.5
@grpc/grpc-js
1.6.7
fixed in 1.9.16, 1.10.12, 1.11.4, 1.12.7, 1.13.5, 1.14.4
Directly Exposed
CVE-2026-25639HIGH7.5
axios
0.21.4
fixed in 1.13.5, 0.30.3
2.6%
Low-Moderate Risk
Directly Exposed
CVE-2026-25639HIGH7.5
axios
0.27.2
fixed in 1.13.5, 0.30.3
2.6%
Low-Moderate Risk
Directly Exposed
CVE-2024-4068HIGH7.5
braces
3.0.2
fixed in 3.0.3
1.5%
Low-Moderate Risk
Directly Exposed
CVE-2022-25881HIGH7.5
http-cache-semantics
4.1.0
fixed in 4.1.1
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2023-22467HIGH7.5
luxon
1.28.0
fixed in 1.28.1, 2.5.2, 3.2.1
1.7%
Low-Moderate Risk
Directly Exposed
CVE-2022-25883HIGH7.5
semver
5.7.1
fixed in 7.5.2, 6.3.1, 5.7.2
2.8%
Low-Moderate Risk
Directly Exposed
CVE-2022-25883HIGH7.5
semver
6.3.0
fixed in 7.5.2, 6.3.1, 5.7.2
2.8%
Low-Moderate Risk
Directly Exposed
CVE-2022-25883HIGH7.5
semver
7.3.7
fixed in 7.5.2, 6.3.1, 5.7.2
2.8%
Low-Moderate Risk
Directly Exposed
CVE-2024-12905HIGH7.5
tar-fs
2.1.1
fixed in 1.16.4, 2.1.2, 3.0.7
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2023-24807HIGH7.5
undici
5.8.2
fixed in 5.19.1
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2026-1526HIGH7.5
undici
5.8.2
fixed in 6.24.0, 7.24.0
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2023-26115HIGH7.5
word-wrap
1.2.3
fixed in 1.2.4
1.7%
Low-Moderate Risk
Directly Exposed
CVE-2023-0767HIGH7.48
libnss3
2:3.49.1-1ubuntu1.8
fixed in 2:3.49.1-1ubuntu1.9
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-44293HIGH7.48
protobufjs
6.11.3
fixed in 7.5.6, 8.0.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2023-0361HIGH7.4
libgnutls30
3.6.13-2ubuntu1.7
fixed in 3.6.13-2ubuntu1.8
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2025-12816HIGH7.39
node-forge
1.3.1
fixed in 1.3.2
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-44492HIGH7.31
axios
0.21.4
fixed in 1.16.0, 0.32.0
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-44492HIGH7.31
axios
0.27.2
fixed in 1.16.0, 0.32.0
0.9%
Theoretical Threat
Directly Exposed
CVE-2023-7104HIGH7.3
libsqlite3-0
3.31.1-4ubuntu0.4
fixed in 3.31.1-4ubuntu0.6
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2022-29458HIGH7.1
libncurses6
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2022-29458HIGH7.1
libncursesw6
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2022-29458HIGH7.1
libtinfo6
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2026-44490MEDIUM6.97
axios
0.21.4
fixed in 1.16.0, 0.32.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-44490MEDIUM6.97
axios
0.27.2
fixed in 1.16.0, 0.32.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-33941MEDIUM6.97
handlebars
4.7.7
fixed in 4.7.9
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-44705MEDIUM6.97
tmp
0.0.33
fixed in 0.2.6
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-28182MEDIUM6.89
libnghttp2-14
1.40.0-1build1
fixed in 1.40.0-1ubuntu0.3
85.0%
Actively Exploited
Directly Exposed
CVE-2026-33938MEDIUM6.88
handlebars
4.7.7
fixed in 4.7.9
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-33940MEDIUM6.88
handlebars
4.7.7
fixed in 4.7.9
0.7%
Theoretical Threat
Directly Exposed
CVE-2022-23539MEDIUM6.88
jsonwebtoken
8.5.1
fixed in 9.0.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-44291MEDIUM6.88
protobufjs
6.11.3
fixed in 7.5.6, 8.0.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2022-4304MEDIUM6.79
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.17
16.2%
High Exploitation Risk
Directly Exposed
CVE-2023-29491MEDIUM6.63
libncurses6
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
0.9%
Theoretical Threat
Directly Exposed
CVE-2023-29491MEDIUM6.63
libncursesw6
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
0.9%
Theoretical Threat
Directly Exposed
CVE-2023-29491MEDIUM6.63
libtinfo6
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
0.9%
Theoretical Threat
Directly Exposed
CVE-2022-3437MEDIUM6.5
libasn1-8-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
3.7%
Low-Moderate Risk
Directly Exposed
CVE-2021-37750MEDIUM6.5
libgssapi-krb5-2
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.3
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2023-36054MEDIUM6.5
libgssapi-krb5-2
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.4
2.1%
Low-Moderate Risk
Directly Exposed
CVE-2022-3437MEDIUM6.5
libgssapi3-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
3.7%
Low-Moderate Risk
Directly Exposed
CVE-2022-3437MEDIUM6.5
libhcrypto4-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
3.7%
Low-Moderate Risk
Directly Exposed
CVE-2022-3437MEDIUM6.5
libheimbase1-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
3.7%
Low-Moderate Risk
Directly Exposed
CVE-2022-3437MEDIUM6.5
libheimntlm0-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
3.7%
Low-Moderate Risk
Directly Exposed
CVE-2022-3437MEDIUM6.5
libhx509-5-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
3.7%
Low-Moderate Risk
Directly Exposed
CVE-2021-37750MEDIUM6.5
libk5crypto3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.3
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2023-36054MEDIUM6.5
libk5crypto3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.4
2.1%
Low-Moderate Risk
Directly Exposed
CVE-2022-3437MEDIUM6.5
libkrb5-26-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
3.7%
Low-Moderate Risk
Directly Exposed
CVE-2021-37750MEDIUM6.5
libkrb5-3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.3
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2023-36054MEDIUM6.5
libkrb5-3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.4
2.1%
Low-Moderate Risk
Directly Exposed
CVE-2021-37750MEDIUM6.5
libkrb5support0
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.3
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2023-36054MEDIUM6.5
libkrb5support0
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.4
2.1%
Low-Moderate Risk
Directly Exposed
CVE-2022-3437MEDIUM6.5
libroken18-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
3.7%
Low-Moderate Risk
Directly Exposed
CVE-2023-1667MEDIUM6.5
libssh-4
0.9.3-2ubuntu2.2
fixed in 0.9.3-2ubuntu2.3
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2023-2283MEDIUM6.5
libssh-4
0.9.3-2ubuntu2.2
fixed in 0.9.3-2ubuntu2.3
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2022-3437MEDIUM6.5
libwind0-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
3.7%
Low-Moderate Risk
Directly Exposed
CVE-2024-28849MEDIUM6.5
follow-redirects
1.15.0
fixed in 1.15.6
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2022-23540MEDIUM6.46
jsonwebtoken
8.5.1
fixed in 9.0.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2022-23491MEDIUM6.38
ca-certificates
20211016~20.04.1
fixed in 20211016ubuntu0.20.04.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2022-41916MEDIUM6.38
libasn1-8-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.2
0.9%
Theoretical Threat
Directly Exposed
CVE-2022-45142MEDIUM6.38
libasn1-8-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-37370MEDIUM6.38
libgssapi-krb5-2
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.6
0.7%
Theoretical Threat
Directly Exposed
CVE-2022-41916MEDIUM6.38
libgssapi3-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.2
0.9%
Theoretical Threat
Directly Exposed
CVE-2022-45142MEDIUM6.38
libgssapi3-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2022-41916MEDIUM6.38
libhcrypto4-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.2
0.9%
Theoretical Threat
Directly Exposed
CVE-2022-45142MEDIUM6.38
libhcrypto4-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2022-41916MEDIUM6.38
libheimbase1-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.2
0.9%
Theoretical Threat
Directly Exposed
CVE-2022-45142MEDIUM6.38
libheimbase1-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2022-41916MEDIUM6.38
libheimntlm0-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.2
0.9%
Theoretical Threat
Directly Exposed
CVE-2022-45142MEDIUM6.38
libheimntlm0-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2022-41916MEDIUM6.38
libhx509-5-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.2
0.9%
Theoretical Threat
Directly Exposed
CVE-2022-45142MEDIUM6.38
libhx509-5-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-37370MEDIUM6.38
libk5crypto3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.6
0.7%
Theoretical Threat
Directly Exposed
CVE-2022-41916MEDIUM6.38
libkrb5-26-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.2
0.9%
Theoretical Threat
Directly Exposed
CVE-2022-45142MEDIUM6.38
libkrb5-26-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-37370MEDIUM6.38
libkrb5-3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.6
0.7%
Theoretical Threat
Directly Exposed
CVE-2024-37370MEDIUM6.38
libkrb5support0
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.6
0.7%
Theoretical Threat
Directly Exposed
CVE-2022-41916MEDIUM6.38
libroken18-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.2
0.9%
Theoretical Threat
Directly Exposed
CVE-2022-45142MEDIUM6.38
libroken18-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2022-41916MEDIUM6.38
libwind0-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.2
0.9%
Theoretical Threat
Directly Exposed
CVE-2022-45142MEDIUM6.38
libwind0-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-35213MEDIUM6.38
@hapi/content
5.0.2
fixed in 6.0.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-44902MEDIUM6.38
@opentelemetry/exporter-prometheus
0.30.0
fixed in 0.217.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-69873MEDIUM6.38
ajv
6.12.6
fixed in 8.18.0, 6.14.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-44486MEDIUM6.38
axios
0.21.4
fixed in 1.16.0, 0.32.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44487MEDIUM6.38
axios
0.21.4
fixed in 1.16.0, 0.32.0
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-44496MEDIUM6.38
axios
0.21.4
fixed in 1.16.0, 0.32.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42038MEDIUM6.38
axios
0.21.4
fixed in 1.15.1, 0.31.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42039MEDIUM6.38
axios
0.21.4
fixed in 1.15.1, 0.31.1
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-44486MEDIUM6.38
axios
0.27.2
fixed in 1.16.0, 0.32.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44487MEDIUM6.38
axios
0.27.2
fixed in 1.16.0, 0.32.0
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-44496MEDIUM6.38
axios
0.27.2
fixed in 1.16.0, 0.32.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42038MEDIUM6.38
axios
0.27.2
fixed in 1.15.1, 0.31.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42039MEDIUM6.38
axios
0.27.2
fixed in 1.15.1, 0.31.1
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-33750MEDIUM6.38
brace-expansion
1.1.11
fixed in 5.0.5, 3.0.2, 2.0.3, 1.1.13
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-12143MEDIUM6.38
form-data
4.0.0
fixed in 2.5.6, 3.0.5, 4.0.6
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-33939MEDIUM6.38
handlebars
4.7.7
fixed in 4.7.9
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-46625MEDIUM6.38
js-cookie
2.2.1
fixed in 3.0.7
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-65945MEDIUM6.38
jws
3.2.2
fixed in 3.2.3, 4.0.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-26996MEDIUM6.38
minimatch
3.1.2
fixed in 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-66031MEDIUM6.38
node-forge
1.3.1
fixed in 1.3.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-33891MEDIUM6.38
node-forge
1.3.1
fixed in 1.4.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-33894MEDIUM6.38
node-forge
1.3.1
fixed in 1.4.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-33895MEDIUM6.38
node-forge
1.3.1
fixed in 1.4.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2023-25653MEDIUM6.38
node-jose
2.1.0
fixed in 2.2.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-14874MEDIUM6.38
nodemailer
6.6.2
fixed in 7.0.11
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-13033MEDIUM6.38
nodemailer
6.6.2
fixed in 7.0.7
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-44289MEDIUM6.38
protobufjs
6.11.3
fixed in 7.5.6, 8.0.2
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44290MEDIUM6.38
protobufjs
6.11.3
fixed in 7.5.6, 8.0.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-48712MEDIUM6.38
protobufjs
6.11.3
fixed in 7.6.1, 8.4.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-44292MEDIUM6.38
protobufjs
6.11.3
fixed in 7.5.6, 8.0.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-45740MEDIUM6.38
protobufjs
6.11.3
fixed in 7.5.8, 8.2.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-59343MEDIUM6.38
tar-fs
2.1.1
fixed in 3.1.1, 2.1.4, 1.16.6
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-12151MEDIUM6.38
undici
5.8.2
fixed in 6.27.0, 7.28.0, 8.5.0
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-2229MEDIUM6.38
undici
5.8.2
fixed in 6.24.0, 7.24.0
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-22036MEDIUM6.38
undici
5.8.2
fixed in 7.18.2, 6.23.0
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-41907MEDIUM6.38
uuid
3.3.2
fixed in 11.1.1, 12.0.1, 13.0.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-41907MEDIUM6.38
uuid
8.3.2
fixed in 11.1.1, 12.0.1, 13.0.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-48779MEDIUM6.38
ws
8.9.0
fixed in 5.2.5, 6.2.4, 7.5.11, 8.21.0
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-45736MEDIUM6.38
ws
8.9.0
fixed in 8.20.1
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-42033MEDIUM6.29
axios
0.21.4
fixed in 1.15.1, 0.31.1
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-42035MEDIUM6.29
axios
0.21.4
fixed in 1.15.1, 0.31.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-42033MEDIUM6.29
axios
0.27.2
fixed in 1.15.1, 0.31.1
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-42035MEDIUM6.29
axios
0.27.2
fixed in 1.15.1, 0.31.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-48387MEDIUM6.21
tar-fs
2.1.1
fixed in 1.16.5, 2.1.3, 3.0.9
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-4802MEDIUM5.95
libc-bin
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.18
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-4802MEDIUM5.95
libc6
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.18
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-44495MEDIUM5.95
axios
0.21.4
fixed in 1.15.2, 0.31.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-44495MEDIUM5.95
axios
0.27.2
fixed in 1.15.2, 0.31.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2023-4806MEDIUM5.9
libc-bin
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.14
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2023-4813MEDIUM5.9
libc-bin
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.14
1.7%
Low-Moderate Risk
Directly Exposed
CVE-2023-4806MEDIUM5.9
libc6
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.14
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2023-4813MEDIUM5.9
libc6
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.14
1.7%
Low-Moderate Risk
Directly Exposed
CVE-2024-50602MEDIUM5.9
libexpat1
2.2.9-1ubuntu0.4
fixed in 2.2.9-1ubuntu0.8
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2023-5981MEDIUM5.9
libgnutls30
3.6.13-2ubuntu1.7
fixed in 3.6.13-2ubuntu1.9
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2024-26461MEDIUM5.9
libgssapi-krb5-2
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.9
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-26461MEDIUM5.9
libk5crypto3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.9
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-26461MEDIUM5.9
libkrb5-3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.9
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-26461MEDIUM5.9
libkrb5support0
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.9
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-5535MEDIUM5.9
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.23
5.6%
Low-Moderate Risk
Directly Exposed
CVE-2024-37890MEDIUM5.9
ws
8.9.0
fixed in 5.2.4, 6.2.3, 7.5.10, 8.17.1
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2025-22150MEDIUM5.78
undici
5.8.2
fixed in 5.28.5, 6.21.1, 7.2.3
0.7%
Theoretical Threat
Directly Exposed
CVE-2024-4741MEDIUM5.6
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.23
2.9%
Low-Moderate Risk
Directly Exposed
CVE-2025-24528MEDIUM5.52
libgssapi-krb5-2
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.9
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-24528MEDIUM5.52
libk5crypto3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.9
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-24528MEDIUM5.52
libkrb5-3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.9
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-24528MEDIUM5.52
libkrb5support0
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.9
0.6%
Theoretical Threat
Directly Exposed
CVE-2023-4421MEDIUM5.52
libnss3
2:3.49.1-1ubuntu1.8
fixed in 2:3.98-0ubuntu0.20.04.1
0.6%
Theoretical Threat
Directly Exposed
CVE-2023-5388MEDIUM5.52
libnss3
2:3.49.1-1ubuntu1.8
fixed in 2:3.98-0ubuntu0.20.04.1
0.8%
Theoretical Threat
Directly Exposed
CVE-2023-25166MEDIUM5.52
@sideway/formula
3.0.0
fixed in 3.0.1
0.6%
Theoretical Threat
Directly Exposed
CVE-2023-45857MEDIUM5.52
axios
0.21.4
fixed in 1.6.0, 0.28.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42041MEDIUM5.52
axios
0.21.4
fixed in 1.15.1, 0.31.1
0.6%
Theoretical Threat
Directly Exposed
CVE-2023-45857MEDIUM5.52
axios
0.27.2
fixed in 1.6.0, 0.28.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42041MEDIUM5.52
axios
0.27.2
fixed in 1.15.1, 0.31.1
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-27904MEDIUM5.52
minimatch
3.1.2
fixed in 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-33671MEDIUM5.52
picomatch
2.3.1
fixed in 4.0.4, 3.0.2, 2.3.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-1527MEDIUM5.52
undici
5.8.2
fixed in 6.24.0, 7.24.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-33532MEDIUM5.52
yaml
1.10.2
fixed in 2.8.3, 1.10.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-0727MEDIUM5.5
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.21
3.2%
Low-Moderate Risk
Directly Exposed
CVE-2025-7783MEDIUM5.4
form-data
4.0.0
fixed in 2.5.4, 3.0.4, 4.0.4
1.7%
Low-Moderate Risk
Directly Exposed
CVE-2023-23936MEDIUM5.4
undici
5.8.2
fixed in 5.19.1
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2022-23541MEDIUM5.35
jsonwebtoken
8.5.1
fixed in 9.0.0
0.8%
Theoretical Threat
Directly Exposed
CVE-2024-33600MEDIUM5.3
libc-bin
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.16
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-33600MEDIUM5.3
libc6
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.16
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-12243MEDIUM5.3
libgnutls30
3.6.13-2ubuntu1.7
fixed in 3.6.13-2ubuntu1.12
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2023-6918MEDIUM5.3
libssh-4
0.9.3-2ubuntu2.2
fixed in 0.9.3-2ubuntu2.5
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2023-0465MEDIUM5.3
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.18
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2023-0466MEDIUM5.3
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.18
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2023-3446MEDIUM5.3
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.20
5.5%
Low-Moderate Risk
Directly Exposed
CVE-2023-3817MEDIUM5.3
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.20
2.6%
Low-Moderate Risk
Directly Exposed
CVE-2023-5678MEDIUM5.3
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.21
4.5%
Low-Moderate Risk
Directly Exposed
CVE-2024-12133MEDIUM5.3
libtasn1-6
4.16.0-2
fixed in 4.16.0-2ubuntu0.1
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2026-48038MEDIUM5.3
joi
17.4.0
fixed in 18.2.1, 17.13.4
Directly Exposed
CVE-2025-13465MEDIUM5.3
lodash
4.17.21
fixed in 4.17.23
1.5%
Low-Moderate Risk
Directly Exposed
CVE-2024-4067MEDIUM5.3
micromatch
4.0.5
fixed in 4.0.8
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2026-42042MEDIUM5.18
axios
0.21.4
fixed in 1.15.1, 0.31.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-42042MEDIUM5.18
axios
0.27.2
fixed in 1.15.1, 0.31.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2023-26159MEDIUM5.18
follow-redirects
1.15.0
fixed in 1.15.4
0.8%
Theoretical Threat
Directly Exposed
CVE-2024-2398MEDIUM5.17
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.22
36.1%
High Exploitation Risk
Post-Exploit
CVE-2023-2650MEDIUM5.07
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.19
73.5%
Actively Exploited
Post-Exploit
CVE-2025-3576MEDIUM5.02
libgssapi-krb5-2
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.11
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-26458MEDIUM5.02
libgssapi-krb5-2
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.9
0.8%
Theoretical Threat
Directly Exposed
CVE-2025-3576MEDIUM5.02
libk5crypto3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.11
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-26458MEDIUM5.02
libk5crypto3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.9
0.8%
Theoretical Threat
Directly Exposed
CVE-2025-3576MEDIUM5.02
libkrb5-3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.11
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-26458MEDIUM5.02
libkrb5-3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.9
0.8%
Theoretical Threat
Directly Exposed
CVE-2025-3576MEDIUM5.02
libkrb5support0
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.11
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-26458MEDIUM5.02
libkrb5support0
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.9
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-27903MEDIUM5.02
minimatch
3.1.2
fixed in 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-9679MEDIUM5.02
undici
5.8.2
fixed in 6.27.0, 7.28.0, 8.5.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2023-31484MEDIUM4.86
perl-base
5.30.0-9ubuntu0.3
fixed in 5.30.0-9ubuntu0.4
1.5%
Low-Moderate Risk
Post-Exploit
CVE-2024-2511MEDIUM4.81
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.23
54.0%
Actively Exploited
Directly Exposed
CVE-2026-40175MEDIUM4.8
axios
0.21.4
fixed in 1.15.0, 0.31.0
1.8%
Low-Moderate Risk
Directly Exposed
CVE-2026-40175MEDIUM4.8
axios
0.27.2
fixed in 1.15.0, 0.31.0
1.8%
Low-Moderate Risk
Directly Exposed
CVE-2025-0395MEDIUM4.67
libc-bin
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.17
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-0395MEDIUM4.67
libc6
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.17
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-22365MEDIUM4.67
libpam-modules
1.3.1-5ubuntu4.3
fixed in 1.3.1-5ubuntu4.7
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-22365MEDIUM4.67
libpam-modules-bin
1.3.1-5ubuntu4.3
fixed in 1.3.1-5ubuntu4.7
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-22365MEDIUM4.67
libpam-runtime
1.3.1-5ubuntu4.3
fixed in 1.3.1-5ubuntu4.7
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-22365MEDIUM4.67
libpam0g
1.3.1-5ubuntu4.3
fixed in 1.3.1-5ubuntu4.7
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-29088MEDIUM4.67
libsqlite3-0
3.31.1-4ubuntu0.4
fixed in 3.31.1-4ubuntu0.7
0.2%
Theoretical Threat
Directly Exposed
CVE-2022-3821MEDIUM4.67
libsystemd0
245.4-4ubuntu3.18
fixed in 245.4-4ubuntu3.20
0.4%
Theoretical Threat
Directly Exposed
CVE-2022-4415MEDIUM4.67
libsystemd0
245.4-4ubuntu3.18
fixed in 245.4-4ubuntu3.20
0.9%
Theoretical Threat
Directly Exposed
CVE-2022-3821MEDIUM4.67
libudev1
245.4-4ubuntu3.18
fixed in 245.4-4ubuntu3.20
0.4%
Theoretical Threat
Directly Exposed
CVE-2022-4415MEDIUM4.67
libudev1
245.4-4ubuntu3.18
fixed in 245.4-4ubuntu3.20
0.9%
Theoretical Threat
Directly Exposed
CVE-2024-27088MEDIUM4.67
es5-ext
0.10.46
fixed in 0.10.63
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-53382MEDIUM4.59
prismjs
1.27.0
fixed in 1.30.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2023-0215MEDIUM4.5
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.17
4.5%
Low-Moderate Risk
Post-Exploit
CVE-2023-0464MEDIUM4.5
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.18
3.7%
Low-Moderate Risk
Post-Exploit
CVE-2024-28834MEDIUM4.5
libgnutls30
3.6.13-2ubuntu1.7
fixed in 3.6.13-2ubuntu1.11
0.7%
Theoretical Threat
Directly Exposed
CVE-2024-37168MEDIUM4.5
@grpc/grpc-js
1.6.7
fixed in 1.10.9, 1.9.15, 1.8.22
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-54285MEDIUM4.5
@opentelemetry/core
1.4.0
fixed in 2.8.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-44288MEDIUM4.5
@protobufjs/utf8
1.1.0
fixed in 1.1.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-27152MEDIUM4.5
axios
0.21.4
fixed in 1.8.2, 0.30.0
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-42034MEDIUM4.5
axios
0.21.4
fixed in 1.15.1, 0.31.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42036MEDIUM4.5
axios
0.21.4
fixed in 1.15.1, 0.31.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-27152MEDIUM4.5
axios
0.27.2
fixed in 1.8.2, 0.30.0
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-42034MEDIUM4.5
axios
0.27.2
fixed in 1.15.1, 0.31.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42036MEDIUM4.5
axios
0.27.2
fixed in 1.15.1, 0.31.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-2739MEDIUM4.5
bn.js
4.11.9
fixed in 4.12.3, 5.2.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-64718MEDIUM4.5
js-yaml
3.14.1
fixed in 4.1.1, 3.14.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-53550MEDIUM4.5
js-yaml
3.14.1
fixed in 4.2.0, 3.15.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-2950MEDIUM4.5
lodash
4.17.21
fixed in 4.18.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-66030MEDIUM4.5
node-forge
1.3.1
fixed in 1.3.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-33672MEDIUM4.5
picomatch
2.3.1
fixed in 4.0.4, 3.0.2, 2.3.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-44288MEDIUM4.5
protobufjs
6.11.3
fixed in 7.5.6, 8.0.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-44294MEDIUM4.5
protobufjs
6.11.3
fixed in 7.5.6, 8.0.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-54269MEDIUM4.5
protobufjs
6.11.3
fixed in 7.6.3, 8.6.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-54798MEDIUM4.5
tmp
0.0.33
fixed in 0.2.4
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-7264MEDIUM4.48
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.23
17.3%
High Exploitation Risk
Post-Exploit
CVE-2024-7264MEDIUM4.48
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.23
17.3%
High Exploitation Risk
Post-Exploit
CVE-2024-28085MEDIUM4.4
libblkid1
2.34-0.1ubuntu9.3
fixed in 2.34-0.1ubuntu9.6
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-28085MEDIUM4.4
libfdisk1
2.34-0.1ubuntu9.3
fixed in 2.34-0.1ubuntu9.6
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-28085MEDIUM4.4
libmount1
2.34-0.1ubuntu9.3
fixed in 2.34-0.1ubuntu9.6
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-28085MEDIUM4.4
libsmartcols1
2.34-0.1ubuntu9.3
fixed in 2.34-0.1ubuntu9.6
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-28085MEDIUM4.4
libuuid1
2.34-0.1ubuntu9.3
fixed in 2.34-0.1ubuntu9.6
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2022-29458MEDIUM4.26
ncurses-bin
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
1.3%
Low-Moderate Risk
Post-Exploit
CVE-2026-24842MEDIUM4.18
tar
6.1.11
fixed in 7.5.7
0.5%
Theoretical Threat
Post-Exploit
CVE-2024-2961MEDIUM4.12
libc-bin
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.15
88.3%
Actively Exploited
Post-Exploit
CVE-2024-2961MEDIUM4.12
libc6
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.15
88.3%
Actively Exploited
Post-Exploit
CVE-2024-4367MEDIUM4.12
pdfjs-dist
2.13.216
fixed in 4.2.67
72.6%
Actively Exploited
Post-Exploit
CVE-2023-6004MEDIUM4.08
libssh-4
0.9.3-2ubuntu2.2
fixed in 0.9.3-2ubuntu2.5
0.4%
Theoretical Threat
Directly Exposed
CVE-2022-4304MEDIUM4.07
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.17
16.2%
High Exploitation Risk
Post-Exploit
CVE-2024-13176MEDIUM4
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.24
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-33916MEDIUM4
handlebars
4.7.7
fixed in 4.7.9
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-33601MEDIUM4
libc-bin
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.16
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-33601MEDIUM4
libc6
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.16
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2023-29491LOW3.98
ncurses-bin
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
0.9%
Theoretical Threat
Post-Exploit
CVE-2023-47038LOW3.98
perl-base
5.30.0-9ubuntu0.3
fixed in 5.30.0-9ubuntu0.5
0.8%
Theoretical Threat
Post-Exploit
CVE-2023-23916LOW3.9
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.16
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2023-46218LOW3.9
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.21
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2023-23916LOW3.9
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.16
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2023-46218LOW3.9
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.21
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2024-24758LOW3.82
undici
5.8.2
fixed in 5.28.3, 6.6.1
0.8%
Theoretical Threat
Directly Exposed
CVE-2024-21538LOW3.74
cross-spawn
7.0.3
fixed in 7.0.5, 6.0.6
0.9%
Theoretical Threat
Directly Exposed
CVE-2024-3596LOW3.73
libgssapi-krb5-2
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.8
14.9%
High Exploitation Risk
Post-Exploit
CVE-2024-3596LOW3.73
libk5crypto3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.8
14.9%
High Exploitation Risk
Post-Exploit
CVE-2024-3596LOW3.73
libkrb5-3
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.8
14.9%
High Exploitation Risk
Post-Exploit
CVE-2024-3596LOW3.73
libkrb5support0
1.17-6ubuntu4.1
fixed in 1.17-6ubuntu4.8
14.9%
High Exploitation Risk
Post-Exploit
CVE-2024-9143LOW3.7
libssl1.1
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.24
6.0%
Low-Moderate Risk
Directly Exposed
CVE-2023-6135LOW3.65
libnss3
2:3.49.1-1ubuntu1.8
fixed in 2:3.98-0ubuntu0.20.04.1
0.7%
Theoretical Threat
Directly Exposed
CVE-2023-41037LOW3.65
openpgp
5.3.0
fixed in 4.10.11, 5.10.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-30260LOW3.65
undici
5.8.2
fixed in 5.28.4, 6.11.1
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-26960LOW3.62
tar
6.1.11
fixed in 7.5.8
0.3%
Theoretical Threat
Post-Exploit
CVE-2022-43552LOW3.54
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.15
2.5%
Low-Moderate Risk
Post-Exploit
CVE-2023-27535LOW3.54
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.18
1.6%
Low-Moderate Risk
Post-Exploit
CVE-2023-27536LOW3.54
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.18
1.6%
Low-Moderate Risk
Post-Exploit
CVE-2023-28321LOW3.54
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.19
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2024-11053LOW3.54
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.25
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2022-43552LOW3.54
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.15
2.5%
Low-Moderate Risk
Post-Exploit
CVE-2023-27535LOW3.54
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.18
1.6%
Low-Moderate Risk
Post-Exploit
CVE-2023-27536LOW3.54
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.18
1.6%
Low-Moderate Risk
Post-Exploit
CVE-2023-28321LOW3.54
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.19
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2024-11053LOW3.54
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.25
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2024-5535LOW3.54
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.23
5.6%
Low-Moderate Risk
Post-Exploit
CVE-2022-32221LOW3.53
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.14
4.3%
Low-Moderate Risk
Post-Exploit
CVE-2022-44640LOW3.53
libasn1-8-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2022-32221LOW3.53
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.14
4.3%
Low-Moderate Risk
Post-Exploit
CVE-2022-44640LOW3.53
libgssapi3-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2022-44640LOW3.53
libhcrypto4-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2022-44640LOW3.53
libheimbase1-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2022-44640LOW3.53
libheimntlm0-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2022-44640LOW3.53
libhx509-5-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2022-44640LOW3.53
libkrb5-26-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2022-28321LOW3.53
libpam-modules
1.3.1-5ubuntu4.3
fixed in 1.3.1-5ubuntu4.4
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2022-28321LOW3.53
libpam-modules-bin
1.3.1-5ubuntu4.3
fixed in 1.3.1-5ubuntu4.4
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2022-28321LOW3.53
libpam-runtime
1.3.1-5ubuntu4.3
fixed in 1.3.1-5ubuntu4.4
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2022-28321LOW3.53
libpam0g
1.3.1-5ubuntu4.3
fixed in 1.3.1-5ubuntu4.4
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2022-44640LOW3.53
libroken18-heimdal
7.7.0+dfsg-1ubuntu1.1
fixed in 7.7.0+dfsg-1ubuntu1.3
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2023-45143LOW3.5
undici
5.8.2
fixed in 5.26.2
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2023-0286LOW3.46
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.17
59.5%
Actively Exploited
Post-Exploit
CVE-2024-33602LOW3.4
libc-bin
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.16
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-33602LOW3.4
libc6
2.31-0ubuntu9.9
fixed in 2.31-0ubuntu9.16
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-3449LOW3.4
@tootallnate/once
1.1.2
fixed in 3.0.1, 2.0.1
0.1%
Theoretical Threat
Directly Exposed
CVE-2024-4741LOW3.36
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.23
2.9%
Low-Moderate Risk
Post-Exploit
CVE-2024-8096LOW3.31
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.24
0.7%
Theoretical Threat
Post-Exploit
CVE-2024-8096LOW3.31
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.24
0.7%
Theoretical Threat
Post-Exploit
CVE-2024-28863LOW3.31
tar
6.1.11
fixed in 6.2.1
0.9%
Theoretical Threat
Post-Exploit
CVE-2023-27538LOW3.3
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.18
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2023-27538LOW3.3
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.18
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2024-0727LOW3.3
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.21
3.2%
Low-Moderate Risk
Post-Exploit
CVE-2022-48303LOW3.3
tar
1.30+dfsg-7ubuntu0.20.04.2
fixed in 1.30+dfsg-7ubuntu0.20.04.3
4.5%
Low-Moderate Risk
Post-Exploit
CVE-2026-29786LOW3.21
tar
6.1.11
fixed in 7.5.10
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-0465LOW3.18
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.18
1.6%
Low-Moderate Risk
Post-Exploit
CVE-2023-0466LOW3.18
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.18
1.6%
Low-Moderate Risk
Post-Exploit
CVE-2023-3446LOW3.18
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.20
5.5%
Low-Moderate Risk
Post-Exploit
CVE-2023-3817LOW3.18
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.20
2.6%
Low-Moderate Risk
Post-Exploit
CVE-2023-5678LOW3.18
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.21
4.5%
Low-Moderate Risk
Post-Exploit
CVE-2023-27533LOW3.17
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.18
2.0%
Low-Moderate Risk
Post-Exploit
CVE-2023-27534LOW3.17
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.18
2.2%
Low-Moderate Risk
Post-Exploit
CVE-2023-27533LOW3.17
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.18
2.0%
Low-Moderate Risk
Post-Exploit
CVE-2023-27534LOW3.17
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.18
2.2%
Low-Moderate Risk
Post-Exploit
CVE-2021-39537LOW3.17
ncurses-bin
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
3.0%
Low-Moderate Risk
Post-Exploit
CVE-2026-42040LOW3.15
axios
0.21.4
fixed in 1.15.1, 0.31.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-42040LOW3.15
axios
0.27.2
fixed in 1.15.1, 0.31.1
0.2%
Theoretical Threat
Directly Exposed
CVE-2024-47764LOW3.15
cookie
0.5.0
fixed in 0.7.0
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-11525LOW3.15
undici
5.8.2
fixed in 6.27.0, 7.28.0, 8.5.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-6733LOW3.15
undici
5.8.2
fixed in 6.27.0, 7.28.0, 8.5.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-23745LOW3.11
tar
6.1.11
fixed in 7.5.3
0.3%
Theoretical Threat
Post-Exploit
CVE-2024-2398LOW3.1
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.22
36.1%
High Exploitation Risk
Post-Exploit
CVE-2022-4450LOW3.1
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.17
20.4%
High Exploitation Risk
Post-Exploit
CVE-2026-23950LOW3.01
tar
6.1.11
fixed in 7.5.4
0.2%
Theoretical Threat
Post-Exploit
CVE-2024-30261LOW2.98
undici
5.8.2
fixed in 5.28.4, 6.11.1
0.8%
Theoretical Threat
Directly Exposed
CVE-2024-2511LOW2.89
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.23
54.0%
Actively Exploited
Post-Exploit
CVE-2023-4641LOW2.8
login
1:4.8.1-1ubuntu5.20.04.2
fixed in 1:4.8.1-1ubuntu5.20.04.5
0.3%
Theoretical Threat
Post-Exploit
CVE-2023-4641LOW2.8
passwd
1:4.8.1-1ubuntu5.20.04.2
fixed in 1:4.8.1-1ubuntu5.20.04.5
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-31802LOW2.8
tar
6.1.11
fixed in 7.5.11
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-53655LOW2.8
tar
6.1.11
fixed in 7.5.16
0.1%
Theoretical Threat
Post-Exploit
CVE-2023-4016LOW2.8
libprocps8
2:3.3.16-1ubuntu2.3
fixed in 2:3.3.16-1ubuntu2.4
0.2%
Theoretical Threat
Directly Exposed
CVE-2024-28085LOW2.64
bsdutils
1:2.34-0.1ubuntu9.3
fixed in 2.34-0.1ubuntu9.6
2.2%
Low-Moderate Risk
Post-Exploit
CVE-2024-28085LOW2.64
fdisk
2.34-0.1ubuntu9.3
fixed in 2.34-0.1ubuntu9.6
2.2%
Low-Moderate Risk
Post-Exploit
CVE-2024-28085LOW2.64
mount
2.34-0.1ubuntu9.3
fixed in 2.34-0.1ubuntu9.6
2.2%
Low-Moderate Risk
Post-Exploit
CVE-2024-28085LOW2.64
util-linux
2.34-0.1ubuntu9.3
fixed in 2.34-0.1ubuntu9.6
2.2%
Low-Moderate Risk
Post-Exploit
CVE-2025-5889LOW2.63
brace-expansion
1.1.11
fixed in 2.0.2, 1.1.12, 3.0.1, 4.0.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-47279LOW2.63
undici
5.8.2
fixed in 5.29.0, 6.21.2, 7.5.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-30258LOW2.4
gpgv
2.2.19-3ubuntu2.2
fixed in 2.2.19-3ubuntu2.4
0.2%
Theoretical Threat
Post-Exploit
CVE-2024-13176LOW2.4
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.24
0.6%
Theoretical Threat
Post-Exploit
CVE-2023-28322LOW2.22
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.19
2.2%
Low-Moderate Risk
Post-Exploit
CVE-2023-38546LOW2.22
curl
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.20
6.2%
Low-Moderate Risk
Post-Exploit
CVE-2023-28322LOW2.22
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.19
2.2%
Low-Moderate Risk
Post-Exploit
CVE-2023-38546LOW2.22
libcurl4
7.68.0-1ubuntu2.13
fixed in 7.68.0-1ubuntu2.20
6.2%
Low-Moderate Risk
Post-Exploit
CVE-2024-9143LOW2.22
openssl
1.1.1f-1ubuntu2.16
fixed in 1.1.1f-1ubuntu2.24
6.0%
Low-Moderate Risk
Post-Exploit
CVE-2023-4016LOW1.68
procps
2:3.3.16-1ubuntu2.3
fixed in 2:3.3.16-1ubuntu2.4
0.2%
Theoretical Threat
Post-Exploit
CVE-2023-39804LOW1.68
tar
1.30+dfsg-7ubuntu0.20.04.2
fixed in 1.30+dfsg-7ubuntu0.20.04.4
0.3%
Theoretical Threat
Post-Exploit
CVE-2021-39537NONE0
ncurses-base
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
3.0%
Low-Moderate Risk
Not Applicable
CVE-2023-29491NONE0
ncurses-base
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
0.9%
Theoretical Threat
Not Applicable
CVE-2022-29458NONE0
ncurses-base
6.2-0ubuntu2
fixed in 6.2-0ubuntu2.1
1.3%
Low-Moderate Risk
Not Applicable
CVE-2025-27789NONE0
@babel/runtime
7.19.0
fixed in 7.26.10, 8.0.0-alpha.17
0.5%
Theoretical Threat
Not Applicable
CVE-2026-44974NONE0
@hapi/content
5.0.2
fixed in 6.0.2
Not Applicable
CVE-2026-48049NONE0
@hapi/inert
6.0.4
fixed in 7.1.1
Not Applicable
CVE-2026-44979NONE0
@hapi/wreck
17.1.0
fixed in 18.1.1
Not Applicable
CVE-2026-48022NONE0
@hapi/wreck
17.1.0
fixed in 18.1.2
Not Applicable
GHSA-36jr-mh4h-2g58NONE0
d3-color
2.0.0
fixed in 3.1.0
Not Applicable
GHSA-r4q5-vmmm-2653NONE0
follow-redirects
1.15.0
fixed in 1.16.0
Not Applicable
GHSA-7rx3-28cr-v5whNONE0
handlebars
4.7.7
fixed in 4.7.9
Not Applicable
GHSA-442j-39wm-28r2NONE0
handlebars
4.7.7
fixed in 4.7.9
Not Applicable
CVE-2026-48801NONE0
linkify-it
3.0.2
fixed in 5.0.1
Not Applicable
CVE-2026-48988NONE0
markdown-it
12.3.2
fixed in 14.2.0
0.3%
Theoretical Threat
Not Applicable
GHSA-v78c-4p63-2j6cNONE0
moment-timezone
0.5.34
fixed in 0.5.35
Not Applicable
GHSA-56x4-j7p9-fcf9NONE0
moment-timezone
0.5.34
fixed in 0.5.35
Not Applicable
GHSA-p6gq-j5cr-w38fNONE0
nodemailer
6.6.2
fixed in 9.0.1
Not Applicable
GHSA-268h-hp4c-crq3NONE0
nodemailer
6.6.2
fixed in 8.0.9
Not Applicable
GHSA-9h6g-pr28-7cqpNONE0
nodemailer
6.6.2
fixed in 6.9.9
Not Applicable
GHSA-r7g4-qg5f-qqm2NONE0
nodemailer
6.6.2
fixed in 8.0.8
Not Applicable
GHSA-vvjj-xcjg-gr5gNONE0
nodemailer
6.6.2
fixed in 8.0.5
Not Applicable
GHSA-wqvq-jvpq-h66fNONE0
nodemailer
6.6.2
fixed in 8.0.9
Not Applicable
GHSA-c7w3-x93f-qmm8NONE0
nodemailer
6.6.2
fixed in 8.0.4
Not Applicable
CVE-2025-47934NONE0
openpgp
5.3.0
fixed in 5.11.3, 6.1.1
0.6%
Theoretical Threat
Not Applicable

Want to check another image? Run a full scan with the Docker Security Scanner.