Vulnerability Reportkubernetesui/dashboard:v2.5.0

kubernetesui/dashboard:v2.5.0
DIGESTsha256:8801ee510e916dfe1aacbae7c54aad2980b41a609a2d7990639f6810ec8e91b7

Executive Summary

Threat Score
100/100DANGEROUS
Reputation
RELIABLE

This image poses a critical security risk and must not be used in production, especially as an internet-facing service. An attacker could exploit these vulnerabilities to execute arbitrary JavaScript in dashboard pages, bypass authorization controls, or cause denial of service, fully compromising the dashboard and potentially the cluster. No compensating controls fully mitigate these flaws without upgrading the underlying Go packages.

Vulnerabilities

Vulnerability Log

165 total
CVE IDAdjusted SeverityPackageExploit ProbabilityRisk Context
CVE-2023-24538CRITICAL9.8
stdlib
v1.17
fixed in 1.19.8, 1.20.3
2.3%
Low-Moderate Risk
Directly ExposedContext importance: HIGH
CVE-2023-24540CRITICAL9.8
stdlib
v1.17
fixed in 1.19.9, 1.20.4
1.5%
Low-Moderate Risk
Directly ExposedContext importance: HIGH
CVE-2023-45288CRITICAL9.75
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.23.0
92.0%
Actively Exploited
Directly ExposedContext importance: HIGH
CVE-2023-45288CRITICAL9.75
stdlib
v1.17
fixed in 1.21.9, 1.22.2
92.0%
Actively Exploited
Directly ExposedContext importance: HIGH
CVE-2022-1996CRITICAL9.1
github.com/emicklei/go-restful/v3
v3.3.3
fixed in 3.8.0
2.7%
Low-Moderate Risk
Directly ExposedContext importance: HIGH
CVE-2024-24790HIGH7.84
stdlib
v1.17
fixed in 1.21.11, 1.22.4
2.0%
Low-Moderate Risk
Directly ExposedContext importance: MEDIUM
CVE-2022-21698HIGH7.5
github.com/prometheus/client_golang
v1.11.0
fixed in 1.11.1
6.0%
Low-Moderate Risk
Directly ExposedContext importance: HIGH
CVE-2022-27664HIGH7.5
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.0.0-20220906165146-f3363e06e74c
2.5%
Low-Moderate Risk
Directly ExposedContext importance: HIGH
CVE-2022-41723HIGH7.5
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.7.0
4.6%
Low-Moderate Risk
Directly Exposed
CVE-2023-39325HIGH7.5
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.17.0
3.8%
Low-Moderate Risk
Directly Exposed
CVE-2022-32149HIGH7.5
golang.org/x/text
v0.3.7
fixed in 0.3.8
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-28948HIGH7.5
gopkg.in/yaml.v3
v3.0.0-20210107192922-496545a6307b
fixed in 3.0.1
3.5%
Low-Moderate Risk
Directly Exposed
CVE-2021-44716HIGH7.5
stdlib
v1.17
fixed in 1.16.12, 1.17.5
4.0%
Low-Moderate Risk
Directly ExposedContext importance: HIGH
CVE-2022-27664HIGH7.5
stdlib
v1.17
fixed in 1.18.6, 1.19.1
2.5%
Low-Moderate Risk
Directly Exposed
CVE-2022-28131HIGH7.5
stdlib
v1.17
fixed in 1.17.12, 1.18.4
1.9%
Low-Moderate Risk
Directly Exposed
CVE-2022-28327HIGH7.5
stdlib
v1.17
fixed in 1.17.9, 1.18.1
3.9%
Low-Moderate Risk
Directly Exposed
CVE-2022-2879HIGH7.5
stdlib
v1.17
fixed in 1.18.7, 1.19.2
1.5%
Low-Moderate Risk
Directly Exposed
CVE-2022-2880HIGH7.5
stdlib
v1.17
fixed in 1.18.7, 1.19.2
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2022-29804HIGH7.5
stdlib
v1.17
fixed in 1.17.11, 1.18.3
1.9%
Low-Moderate Risk
Directly Exposed
CVE-2022-30630HIGH7.5
stdlib
v1.17
fixed in 1.17.12, 1.18.4
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2022-30631HIGH7.5
stdlib
v1.17
fixed in 1.17.12, 1.18.4
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2022-30632HIGH7.5
stdlib
v1.17
fixed in 1.17.12, 1.18.4
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2022-30633HIGH7.5
stdlib
v1.17
fixed in 1.17.12, 1.18.4
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2022-30634HIGH7.5
stdlib
v1.17
fixed in 1.17.11, 1.18.3
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2022-30635HIGH7.5
stdlib
v1.17
fixed in 1.17.12, 1.18.4
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2022-32189HIGH7.5
stdlib
v1.17
fixed in 1.17.13, 1.18.5
2.0%
Low-Moderate Risk
Directly Exposed
CVE-2022-41715HIGH7.5
stdlib
v1.17
fixed in 1.18.7, 1.19.2
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2022-41720HIGH7.5
stdlib
v1.17
fixed in 1.18.9, 1.19.4
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2022-41722HIGH7.5
stdlib
v1.17
fixed in 1.19.6, 1.20.1
1.7%
Low-Moderate Risk
Directly Exposed
CVE-2022-41723HIGH7.5
stdlib
v1.17
fixed in 1.19.6, 1.20.1
4.6%
Low-Moderate Risk
Directly Exposed
CVE-2022-41724HIGH7.5
stdlib
v1.17
fixed in 1.19.6, 1.20.1
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2022-41725HIGH7.5
stdlib
v1.17
fixed in 1.19.6, 1.20.1
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2023-24534HIGH7.5
stdlib
v1.17
fixed in 1.19.8, 1.20.3
1.9%
Low-Moderate Risk
Directly Exposed
CVE-2023-24536HIGH7.5
stdlib
v1.17
fixed in 1.19.8, 1.20.3
1.5%
Low-Moderate Risk
Directly Exposed
CVE-2023-24537HIGH7.5
stdlib
v1.17
fixed in 1.19.8, 1.20.3
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2023-39325HIGH7.5
stdlib
v1.17
fixed in 1.20.10, 1.21.3
3.8%
Low-Moderate Risk
Directly Exposed
CVE-2023-45283HIGH7.5
stdlib
v1.17
fixed in 1.20.11, 1.21.4, 1.20.12, 1.21.5
2.8%
Low-Moderate Risk
Directly Exposed
CVE-2023-45287HIGH7.5
stdlib
v1.17
fixed in 1.20.0
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2024-34156HIGH7.5
stdlib
v1.17
fixed in 1.22.7, 1.23.1
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2026-39828HIGH7.48
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2023-24539HIGH7.3
stdlib
v1.17
fixed in 1.19.9, 1.20.4
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2023-29400HIGH7.3
stdlib
v1.17
fixed in 1.19.9, 1.20.4
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2022-23806HIGH7.28
stdlib
v1.17
fixed in 1.16.14, 1.17.7
3.0%
Low-Moderate Risk
Directly ExposedContext importance: MEDIUM
CVE-2026-39821MEDIUM6.97
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.55.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-68121MEDIUM6.8
stdlib
v1.17
fixed in 1.24.13, 1.25.7, 1.26.0-rc.3
0.8%
Theoretical Threat
Directly ExposedContext importance: MEDIUM
CVE-2022-30580MEDIUM6.63
stdlib
v1.17
fixed in 1.17.11, 1.18.3
0.6%
Theoretical Threat
Directly Exposed
CVE-2023-29403MEDIUM6.63
stdlib
v1.17
fixed in 1.19.10, 1.20.5
0.4%
Theoretical Threat
Directly Exposed
CVE-2022-1705MEDIUM6.5
stdlib
v1.17
fixed in 1.17.12, 1.18.4
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2022-32148MEDIUM6.5
stdlib
v1.17
fixed in 1.17.12, 1.18.4
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2023-29406MEDIUM6.5
stdlib
v1.17
fixed in 1.19.11, 1.20.6
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2021-43565MEDIUM6.38
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.0.0-20211202192323-5770296d904e
0.9%
Theoretical Threat
Directly Exposed
CVE-2025-22869MEDIUM6.38
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.35.0
0.9%
Theoretical Threat
Directly Exposed
CVE-2025-47913MEDIUM6.38
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.43.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-39829MEDIUM6.38
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-39830MEDIUM6.38
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-45338MEDIUM6.38
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.33.0
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-33814MEDIUM6.38
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.53.0
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-22868MEDIUM6.38
golang.org/x/oauth2
v0.0.0-20210819190943-2bc19b11175f
fixed in 0.27.0
0.8%
Theoretical Threat
Directly Exposed
CVE-2022-41716MEDIUM6.38
stdlib
v1.17
fixed in 1.18.8, 1.19.3
0.8%
Theoretical Threat
Directly Exposed
CVE-2025-61726MEDIUM6.38
stdlib
v1.17
fixed in 1.24.12, 1.25.6
0.8%
Theoretical Threat
Directly Exposed
CVE-2025-61729MEDIUM6.38
stdlib
v1.17
fixed in 1.24.11, 1.25.5
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-25679MEDIUM6.38
stdlib
v1.17
fixed in 1.25.8, 1.26.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-32280MEDIUM6.38
stdlib
v1.17
fixed in 1.25.9, 1.26.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-32281MEDIUM6.38
stdlib
v1.17
fixed in 1.25.9, 1.26.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-32283MEDIUM6.38
stdlib
v1.17
fixed in 1.25.9, 1.26.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-33811MEDIUM6.38
stdlib
v1.17
fixed in 1.25.10, 1.26.3
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-33814MEDIUM6.38
stdlib
v1.17
fixed in 1.25.10, 1.26.3
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-39820MEDIUM6.38
stdlib
v1.17
fixed in 1.25.10, 1.26.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-39836MEDIUM6.38
stdlib
v1.17
fixed in 1.25.10, 1.26.3
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-58183MEDIUM6.38
stdlib
v1.17
fixed in 1.24.8, 1.25.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-61728MEDIUM6.38
stdlib
v1.17
fixed in 1.24.12, 1.25.6
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-42508MEDIUM6.29
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-45339MEDIUM6.03
github.com/golang/glog
v1.0.0
fixed in 1.2.4
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-46595MEDIUM6.03
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.4%
Theoretical Threat
Directly Exposed
CVE-2021-39293MEDIUM6
stdlib
v1.17
fixed in 1.16.8, 1.17.1
6.9%
Low-Moderate Risk
Directly ExposedContext importance: MEDIUM
CVE-2021-41772MEDIUM6
stdlib
v1.17
fixed in 1.16.10, 1.17.3
3.1%
Low-Moderate Risk
Directly ExposedContext importance: MEDIUM
CVE-2022-24675MEDIUM6
stdlib
v1.17
fixed in 1.17.9, 1.18.1
5.3%
Low-Moderate Risk
Directly ExposedContext importance: MEDIUM
CVE-2022-24921MEDIUM6
stdlib
v1.17
fixed in 1.16.15, 1.17.8
3.2%
Low-Moderate Risk
Directly ExposedContext importance: MEDIUM
CVE-2025-47907MEDIUM5.95
stdlib
v1.17
fixed in 1.23.12, 1.24.6
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-24786MEDIUM5.9
google.golang.org/protobuf
v1.27.1
fixed in 1.33.0
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2024-24791MEDIUM5.9
stdlib
v1.17
fixed in 1.21.12, 1.22.5
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2024-34158MEDIUM5.9
stdlib
v1.17
fixed in 1.22.7, 1.23.1
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2025-4673MEDIUM5.78
stdlib
v1.17
fixed in 1.23.10, 1.24.4
0.6%
Theoretical Threat
Directly Exposed
CVE-2023-2253MEDIUM5.52
github.com/docker/distribution
v2.7.1+incompatible
fixed in 2.8.2-beta.1
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-35469MEDIUM5.52
github.com/moby/spdystream
v0.2.0
fixed in 0.5.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-22872MEDIUM5.52
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.38.0
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-24785MEDIUM5.52
stdlib
v1.17
fixed in 1.21.8, 1.22.1
0.8%
Theoretical Threat
Directly Exposed
CVE-2025-47906MEDIUM5.52
stdlib
v1.17
fixed in 1.23.12, 1.24.6
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-61727MEDIUM5.52
stdlib
v1.17
fixed in 1.24.11, 1.25.5
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-32282MEDIUM5.44
stdlib
v1.17
fixed in 1.25.9, 1.26.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-24784MEDIUM5.4
stdlib
v1.17
fixed in 1.21.8, 1.22.1
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2022-41717MEDIUM5.3
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.4.0
5.6%
Low-Moderate Risk
Directly Exposed
CVE-2022-29526MEDIUM5.3
golang.org/x/sys
v0.0.0-20210831042530-f4d43177bf5e
fixed in 0.0.0-20220412211240-33da011f77ad
2.6%
Low-Moderate Risk
Directly Exposed
CVE-2022-29526MEDIUM5.3
stdlib
v1.17
fixed in 1.17.10, 1.18.2
2.6%
Low-Moderate Risk
Directly Exposed
CVE-2022-41717MEDIUM5.3
stdlib
v1.17
fixed in 1.18.9, 1.19.4
5.6%
Low-Moderate Risk
Directly Exposed
CVE-2023-29409MEDIUM5.3
stdlib
v1.17
fixed in 1.19.12, 1.20.7, 1.21.0-rc.4
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2023-39326MEDIUM5.3
stdlib
v1.17
fixed in 1.20.12, 1.21.5
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2023-45289MEDIUM5.3
stdlib
v1.17
fixed in 1.21.8, 1.22.1
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2023-45290MEDIUM5.3
stdlib
v1.17
fixed in 1.21.8, 1.22.1
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2023-3978MEDIUM5.18
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.13.0
0.8%
Theoretical Threat
Directly Exposed
CVE-2023-39318MEDIUM5.18
stdlib
v1.17
fixed in 1.20.8, 1.21.1
0.8%
Theoretical Threat
Directly Exposed
CVE-2023-39319MEDIUM5.18
stdlib
v1.17
fixed in 1.20.8, 1.21.1
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-32289MEDIUM5.18
stdlib
v1.17
fixed in 1.25.9, 1.26.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-24783MEDIUM5.02
stdlib
v1.17
fixed in 1.21.8, 1.22.1
0.7%
Theoretical Threat
Directly Exposed
CVE-2024-34155MEDIUM5.02
stdlib
v1.17
fixed in 1.22.7, 1.23.1
0.8%
Theoretical Threat
Directly Exposed
CVE-2024-45336MEDIUM5.02
stdlib
v1.17
fixed in 1.22.11, 1.23.5, 1.24.0-rc.2
0.6%
Theoretical Threat
Directly Exposed
CVE-2021-44717MEDIUM4.8
stdlib
v1.17
fixed in 1.16.12, 1.17.5
1.9%
Low-Moderate Risk
Directly Exposed
CVE-2022-1962MEDIUM4.67
stdlib
v1.17
fixed in 1.17.12, 1.18.4
0.9%
Theoretical Threat
Directly Exposed
CVE-2024-24789MEDIUM4.67
stdlib
v1.17
fixed in 1.21.11, 1.22.4
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-32288MEDIUM4.67
stdlib
v1.17
fixed in 1.25.9, 1.26.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-22871MEDIUM4.59
stdlib
v1.17
fixed in 1.23.8, 1.24.2
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-27142MEDIUM4.59
stdlib
v1.17
fixed in 1.25.8, 1.26.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-39826MEDIUM4.59
stdlib
v1.17
fixed in 1.25.10, 1.26.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-47914MEDIUM4.5
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.45.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-58181MEDIUM4.5
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.45.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-46598MEDIUM4.5
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-47911MEDIUM4.5
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.45.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-58190MEDIUM4.5
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.45.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2023-24532MEDIUM4.5
stdlib
v1.17
fixed in 1.19.7, 1.20.2
0.8%
Theoretical Threat
Directly Exposed
CVE-2023-45284MEDIUM4.5
stdlib
v1.17
fixed in 1.20.11, 1.21.4
0.9%
Theoretical Threat
Directly Exposed
CVE-2025-22866MEDIUM4.5
stdlib
v1.17
fixed in 1.22.12, 1.23.6, 1.24.0-rc.3
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-22873MEDIUM4.5
stdlib
v1.17
fixed in 1.23.9, 1.24.3
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-47912MEDIUM4.5
stdlib
v1.17
fixed in 1.24.8, 1.25.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-58185MEDIUM4.5
stdlib
v1.17
fixed in 1.24.8, 1.25.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-58187MEDIUM4.5
stdlib
v1.17
fixed in 1.24.9, 1.25.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-58188MEDIUM4.5
stdlib
v1.17
fixed in 1.24.8, 1.25.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-58189MEDIUM4.5
stdlib
v1.17
fixed in 1.24.8, 1.25.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-61723MEDIUM4.5
stdlib
v1.17
fixed in 1.24.8, 1.25.2
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-61724MEDIUM4.5
stdlib
v1.17
fixed in 1.24.8, 1.25.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-61725MEDIUM4.5
stdlib
v1.17
fixed in 1.24.8, 1.25.2
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-61730MEDIUM4.5
stdlib
v1.17
fixed in 1.24.12, 1.25.6
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42507MEDIUM4.5
stdlib
v1.17
fixed in 1.25.11, 1.26.4
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-58186MEDIUM4.5
stdlib
v1.17
fixed in 1.24.8, 1.25.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-28180MEDIUM4.3
gopkg.in/square/go-jose.v2
v2.4.1
No fix yet
2.0%
Low-Moderate Risk
Directly Exposed
CVE-2025-22870LOW3.74
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.36.0
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-22870LOW3.74
stdlib
v1.17
fixed in 1.23.7, 1.24.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-45341LOW3.57
stdlib
v1.17
fixed in 1.22.11, 1.23.5, 1.24.0-rc.2
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-45337LOW2.95
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.31.0
3.1%
Low-Moderate Risk
Post-Exploit
CVE-2023-48795LOW2.76
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.17.0
93.3%
Actively Exploited
Post-Exploit
CVE-2022-27191LOW2.7
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.0.0-20220314234659-1baeb1ce4c0b
3.9%
Low-Moderate Risk
Post-Exploit
CVE-2021-41771LOW2.7
stdlib
v1.17
fixed in 1.16.10, 1.17.3
4.4%
Low-Moderate Risk
Post-Exploit
CVE-2022-23772LOW2.7
stdlib
v1.17
fixed in 1.16.14, 1.17.7
2.8%
Low-Moderate Risk
Post-Exploit
CVE-2022-30629LOW2.63
stdlib
v1.17
fixed in 1.17.11, 1.18.3
0.9%
Theoretical Threat
Directly Exposed
CVE-2026-27139LOW2.12
stdlib
v1.17
fixed in 1.25.8, 1.26.1
0.2%
Theoretical Threat
Directly Exposed
GHSA-qq97-vm5h-rrhgNONE0
github.com/docker/distribution
v2.7.1+incompatible
fixed in 2.8.0
Not Applicable
CVE-2026-39827NONE0
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.2%
Theoretical Threat
Not Applicable
CVE-2026-39835NONE0
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.2%
Theoretical Threat
Not Applicable
CVE-2026-46597NONE0
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.4%
Theoretical Threat
Not Applicable
CVE-2026-39831NONE0
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.4%
Theoretical Threat
Not Applicable
CVE-2026-39832NONE0
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.4%
Theoretical Threat
Not Applicable
CVE-2026-39833NONE0
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.4%
Theoretical Threat
Not Applicable
CVE-2026-39834NONE0
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.52.0
0.5%
Theoretical Threat
Not Applicable
CVE-2022-30636NONE0
golang.org/x/crypto
v0.0.0-20210817164053-32db794688a5
fixed in 0.0.0-20220525230936-793ad666bf5e
0.6%
Theoretical Threat
Not Applicable
CVE-2026-25680NONE0
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.55.0
0.2%
Theoretical Threat
Not Applicable
CVE-2026-25681NONE0
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.55.0
0.2%
Theoretical Threat
Not Applicable
CVE-2026-27136NONE0
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.55.0
0.2%
Theoretical Threat
Not Applicable
CVE-2026-42502NONE0
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.55.0
0.2%
Theoretical Threat
Not Applicable
CVE-2026-42506NONE0
golang.org/x/net
v0.0.0-20211209124913-491a49abca63
fixed in 0.55.0
0.2%
Theoretical Threat
Not Applicable
CVE-2026-39824NONE0
golang.org/x/sys
v0.0.0-20210831042530-f4d43177bf5e
fixed in 0.44.0
0.1%
Theoretical Threat
Not Applicable
CVE-2026-27145NONE0
stdlib
v1.17
fixed in 1.25.11, 1.26.4
0.6%
Theoretical Threat
Not Applicable
CVE-2026-39823NONE0
stdlib
v1.17
fixed in 1.25.10, 1.26.3
0.3%
Theoretical Threat
Not Applicable
CVE-2026-39825NONE0
stdlib
v1.17
fixed in 1.25.10, 1.26.3
0.4%
Theoretical Threat
Not Applicable
CVE-2026-42499NONE0
stdlib
v1.17
fixed in 1.25.10, 1.26.3
0.6%
Theoretical Threat
Not Applicable
CVE-2026-42504NONE0
stdlib
v1.17
fixed in 1.25.11, 1.26.4
0.6%
Theoretical Threat
Not Applicable
CVE-2025-0913NONE0
stdlib
v1.17
fixed in 1.23.10, 1.24.4
0.2%
Theoretical Threat
Not Applicable