Vulnerability Reportmemcached:1.6.15-alpine

memcached:1.6.15-alpine
DIGESTsha256:4abf64854c3c280f6586e17e2a7f208ee8d783c88c925568a746a0b885df1ae4

Executive Summary

Last scanned:

Threat Score
0/100SAFE
Reputation
TRUSTED

This image is safe for production use. It contains 24 post-exploit vulnerabilities, but none exceed low severity (max 4.06). The only notable finding, CVE-2022-37434 in zlib, has low contextual importance because memcached does not use the vulnerable inflateGetHeader function in standard operation. No exposed surface vulnerabilities exist, and the image is officially published and pinned by digest, ensuring supply chain security.

Vulnerabilities

Vulnerability Log

25 total
CVE IDAdjusted SeverityPackageExploit ProbabilityRisk Context
CVE-2025-26519MEDIUM5.95
musl
1.2.3-r0
fixed in 1.2.3-r4
0.3%
Theoretical Threat
Directly Exposed
CVE-2022-37434MEDIUM4.06
zlib
1.2.12-r1
fixed in 1.2.12-r2
15.9%
High Exploitation Risk
Post-Exploit
CVE-2025-26519LOW3.57
musl-utils
1.2.3-r0
fixed in 1.2.3-r4
0.3%
Theoretical Threat
Post-Exploit
CVE-2023-0286LOW3.46
libcrypto1.1
1.1.1q-r0
fixed in 1.1.1t-r0
59.5%
Actively Exploited
Post-Exploit
CVE-2023-0286LOW3.46
libssl1.1
1.1.1q-r0
fixed in 1.1.1t-r0
59.5%
Actively Exploited
Post-Exploit
CVE-2022-4450LOW3.1
libcrypto1.1
1.1.1q-r0
fixed in 1.1.1t-r0
20.4%
High Exploitation Risk
Post-Exploit
CVE-2022-4450LOW3.1
libssl1.1
1.1.1q-r0
fixed in 1.1.1t-r0
20.4%
High Exploitation Risk
Post-Exploit
CVE-2023-2650LOW3.04
libcrypto1.1
1.1.1q-r0
fixed in 1.1.1u-r0
73.5%
Actively Exploited
Post-Exploit
CVE-2023-2650LOW3.04
libssl1.1
1.1.1q-r0
fixed in 1.1.1u-r0
73.5%
Actively Exploited
Post-Exploit
CVE-2023-42366LOW2.8
busybox
1.35.0-r15
fixed in 1.35.0-r18
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42366LOW2.8
ssl_client
1.35.0-r15
fixed in 1.35.0-r18
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-0215LOW2.7
libcrypto1.1
1.1.1q-r0
fixed in 1.1.1t-r0
4.5%
Low-Moderate Risk
Post-Exploit
CVE-2023-0464LOW2.7
libcrypto1.1
1.1.1q-r0
fixed in 1.1.1t-r1
3.7%
Low-Moderate Risk
Post-Exploit
CVE-2023-0215LOW2.7
libssl1.1
1.1.1q-r0
fixed in 1.1.1t-r0
4.5%
Low-Moderate Risk
Post-Exploit
CVE-2023-0464LOW2.7
libssl1.1
1.1.1q-r0
fixed in 1.1.1t-r1
3.7%
Low-Moderate Risk
Post-Exploit
CVE-2022-4304LOW2.44
libcrypto1.1
1.1.1q-r0
fixed in 1.1.1t-r0
16.2%
High Exploitation Risk
Post-Exploit
CVE-2022-4304LOW2.44
libssl1.1
1.1.1q-r0
fixed in 1.1.1t-r0
16.2%
High Exploitation Risk
Post-Exploit
CVE-2023-0465LOW1.91
libcrypto1.1
1.1.1q-r0
fixed in 1.1.1t-r2
1.6%
Low-Moderate Risk
Post-Exploit
CVE-2023-3446LOW1.91
libcrypto1.1
1.1.1q-r0
fixed in 1.1.1u-r2
5.5%
Low-Moderate Risk
Post-Exploit
CVE-2023-3817LOW1.91
libcrypto1.1
1.1.1q-r0
fixed in 1.1.1v-r0
2.6%
Low-Moderate Risk
Post-Exploit
CVE-2023-5678LOW1.91
libcrypto1.1
1.1.1q-r0
fixed in 1.1.1w-r1
4.5%
Low-Moderate Risk
Post-Exploit
CVE-2023-0465LOW1.91
libssl1.1
1.1.1q-r0
fixed in 1.1.1t-r2
1.6%
Low-Moderate Risk
Post-Exploit
CVE-2023-3446LOW1.91
libssl1.1
1.1.1q-r0
fixed in 1.1.1u-r2
5.5%
Low-Moderate Risk
Post-Exploit
CVE-2023-3817LOW1.91
libssl1.1
1.1.1q-r0
fixed in 1.1.1v-r0
2.6%
Low-Moderate Risk
Post-Exploit
CVE-2023-5678LOW1.91
libssl1.1
1.1.1q-r0
fixed in 1.1.1w-r1
4.5%
Low-Moderate Risk
Post-Exploit

Want to check another image? Run a full scan with the Docker Security Scanner.