Vulnerability Reportmilvusdb/milvus:master-20260618-f8b97b35-amd64

milvusdb/milvus:master-20260618-f8b97b35-amd64

DIGESTsha256:fd69dde486f4f84045fcfdac6dc32de53c9fe5cc62a8dcacc4b01b8c4d5f9464

Executive Summary

Threat ScoreCAUTION• High severity OpenSSL vulnerability (CVE-2024-6119, CVSS 7.8) enables denial of service via crafted TLS certificates.• 28 exposed vulnerabilities with severity ≥6.0, including multiple GnuTLS and glibc flaws (e.g., CVE-2025-32990, CVE-2026-42013).• Image is from a highly trusted community publisher (milvusdb, 76M+ pulls) but runs on an unknown Linux distro.• Total of 116 exposed vulnerabilities, with 1 at CVSS 7.8 and 27 others between 6.0 and 6.9.

53/100CAUTION

ReputationPOPULAR COMMUNITY• High Reputation Community Image (76M+ pulls)• Pinned by digest (Immutable)

RELIABLE

This image carries significant risk; production deployment is highly discouraged without strict compensating controls. An attacker could exploit CVE-2024-6119 to cause denial of service via crafted TLS certificates, or leverage CVE-2026-42013 to bypass certificate validation, enabling man-in-the-middle attacks. The image contains 116 exposed vulnerabilities (28 of severity ≥6.0), primarily in OpenSSL, GnuTLS, and glibc, but originates from a highly trusted community publisher (milvusdb). Compensating controls such as restricting network access and using TLS with known trusted endpoints can reduce risk.

Vulnerabilities

Vulnerability Log

155 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2024-6119	HIGH7.8	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.18	66.6% Actively Exploited	Directly ExposedContext importance: MEDIUM
CVE-2025-32990	MEDIUM6.97	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.7	0.7% Theoretical Threat	Directly Exposed
CVE-2026-42013	MEDIUM6.97	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.9	0.4% Theoretical Threat	Directly Exposed
CVE-2026-5260	MEDIUM6.97	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.9	0.7% Theoretical Threat	Directly Exposed
CVE-2026-0861	MEDIUM6.88	libc-bin 2.35-0ubuntu3.8 fixed in 2.35-0ubuntu3.13	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0861	MEDIUM6.88	libc6 2.35-0ubuntu3.8 fixed in 2.35-0ubuntu3.13	0.4% Theoretical Threat	Directly Exposed
CVE-2026-28387	MEDIUM6.88	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.23	0.6% Theoretical Threat	Directly Exposed
CVE-2026-29111	MEDIUM6.63	libsystemd0 249.11-0ubuntu3.12 fixed in 249.11-0ubuntu3.19	0.1% Theoretical Threat	Directly Exposed
CVE-2026-29111	MEDIUM6.63	libudev1 249.11-0ubuntu3.12 fixed in 249.11-0ubuntu3.19	0.1% Theoretical Threat	Directly Exposed
CVE-2026-41989	MEDIUM6.38	libgcrypt20 1.9.4-3ubuntu3 fixed in 1.9.4-3ubuntu3.2	0.2% Theoretical Threat	Directly Exposed
CVE-2026-33846	MEDIUM6.38	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.9	0.9% Theoretical Threat	Directly Exposed
CVE-2026-42009	MEDIUM6.38	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.9	0.8% Theoretical Threat	Directly Exposed
CVE-2024-37370	MEDIUM6.38	libgssapi-krb5-2 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.4	0.7% Theoretical Threat	Directly Exposed
CVE-2024-37370	MEDIUM6.38	libk5crypto3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.4	0.7% Theoretical Threat	Directly Exposed
CVE-2024-37370	MEDIUM6.38	libkrb5-3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.4	0.7% Theoretical Threat	Directly Exposed
CVE-2024-37370	MEDIUM6.38	libkrb5support0 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.4	0.7% Theoretical Threat	Directly Exposed
CVE-2022-41409	MEDIUM6.38	libpcre2-8-0 10.39-3ubuntu0.1 No fix yet	1.0% Theoretical Threat	Directly Exposed
CVE-2025-69421	MEDIUM6.38	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.21	0.8% Theoretical Threat	Directly Exposed
CVE-2026-28388	MEDIUM6.38	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.23	0.9% Theoretical Threat	Directly Exposed
CVE-2026-28389	MEDIUM6.38	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.23	0.8% Theoretical Threat	Directly Exposed
CVE-2026-28390	MEDIUM6.38	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.23	0.8% Theoretical Threat	Directly Exposed
CVE-2026-40898	MEDIUM6.38	github.com/quic-go/quic-go v0.54.1 fixed in 0.59.1	0.5% Theoretical Threat	Directly Exposed
CVE-2026-3833	MEDIUM6.29	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.9	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42011	MEDIUM6.29	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.9	0.3% Theoretical Threat	Directly Exposed
CVE-2026-34182	MEDIUM6.29	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.25	0.2% Theoretical Threat	Directly Exposed
CVE-2025-69419	MEDIUM6.29	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.21	0.4% Theoretical Threat	Directly Exposed
CVE-2026-42012	MEDIUM6.03	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.9	0.3% Theoretical Threat	Directly Exposed
CVE-2022-40735	MEDIUM6	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.16	2.3% Low-Moderate Risk	Directly ExposedContext importance: MEDIUM
CVE-2025-4802	MEDIUM5.95	libc-bin 2.35-0ubuntu3.8 fixed in 2.35-0ubuntu3.10	0.4% Theoretical Threat	Directly Exposed
CVE-2025-4802	MEDIUM5.95	libc6 2.35-0ubuntu3.8 fixed in 2.35-0ubuntu3.10	0.4% Theoretical Threat	Directly Exposed
CVE-2026-4878	MEDIUM5.95	libcap2 1:2.44-1ubuntu0.22.04.1 fixed in 1:2.44-1ubuntu0.22.04.3	0.2% Theoretical Threat	Directly Exposed
CVE-2024-2236	MEDIUM5.9	libgcrypt20 1.9.4-3ubuntu3 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-26461	MEDIUM5.9	libgssapi-krb5-2 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.6	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-26461	MEDIUM5.9	libk5crypto3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.6	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-26461	MEDIUM5.9	libkrb5-3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.6	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-26461	MEDIUM5.9	libkrb5support0 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.6	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-5535	MEDIUM5.9	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.17	5.6% Low-Moderate Risk	Directly Exposed
CVE-2025-13151	MEDIUM5.9	libtasn1-6 4.18.0-4build1 fixed in 4.18.0-4ubuntu0.2	1.1% Low-Moderate Risk	Directly Exposed
CVE-2026-42014	MEDIUM5.61	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.9	0.2% Theoretical Threat	Directly Exposed
CVE-2025-9230	MEDIUM5.6	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.20	1.8% Low-Moderate Risk	Directly Exposed
CVE-2024-4741	MEDIUM5.6	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.17	2.9% Low-Moderate Risk	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc-bin 2.35-0ubuntu3.8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc6 2.35-0ubuntu3.8 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-6395	MEDIUM5.52	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.7	0.6% Theoretical Threat	Directly Exposed
CVE-2025-24528	MEDIUM5.52	libgssapi-krb5-2 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.6	0.6% Theoretical Threat	Directly Exposed
CVE-2025-24528	MEDIUM5.52	libk5crypto3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.6	0.6% Theoretical Threat	Directly Exposed
CVE-2025-24528	MEDIUM5.52	libkrb5-3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.6	0.6% Theoretical Threat	Directly Exposed
CVE-2025-24528	MEDIUM5.52	libkrb5support0 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.6	0.6% Theoretical Threat	Directly Exposed
CVE-2026-40225	MEDIUM5.44	libsystemd0 249.11-0ubuntu3.12 fixed in 249.11-0ubuntu3.19	0.1% Theoretical Threat	Directly Exposed
CVE-2026-40226	MEDIUM5.44	libsystemd0 249.11-0ubuntu3.12 fixed in 249.11-0ubuntu3.21	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40225	MEDIUM5.44	libudev1 249.11-0ubuntu3.12 fixed in 249.11-0ubuntu3.19	0.1% Theoretical Threat	Directly Exposed
CVE-2026-40226	MEDIUM5.44	libudev1 249.11-0ubuntu3.12 fixed in 249.11-0ubuntu3.21	<0.1% Theoretical Threat	Directly Exposed
CVE-2024-12243	MEDIUM5.3	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.6	1.2% Low-Moderate Risk	Directly Exposed
CVE-2025-32989	MEDIUM5.3	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.7	1.2% Low-Moderate Risk	Directly Exposed
CVE-2024-4603	MEDIUM5.3	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.17	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-12133	MEDIUM5.3	libtasn1-6 4.18.0-4build1 fixed in 4.18.0-4ubuntu0.1	1.0% Low-Moderate Risk	Directly Exposed
CVE-2025-1390	MEDIUM5.18	libcap2 1:2.44-1ubuntu0.22.04.1 fixed in 1:2.44-1ubuntu0.22.04.2	0.1% Theoretical Threat	Directly Exposed
CVE-2025-15281	MEDIUM5.02	libc-bin 2.35-0ubuntu3.8 fixed in 2.35-0ubuntu3.13	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc-bin 2.35-0ubuntu3.8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-15281	MEDIUM5.02	libc6 2.35-0ubuntu3.8 fixed in 2.35-0ubuntu3.13	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc6 2.35-0ubuntu3.8 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-3576	MEDIUM5.02	libgssapi-krb5-2 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.7	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libgssapi-krb5-2 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.6	0.8% Theoretical Threat	Directly Exposed
CVE-2025-3576	MEDIUM5.02	libk5crypto3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.7	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libk5crypto3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.6	0.8% Theoretical Threat	Directly Exposed
CVE-2025-3576	MEDIUM5.02	libkrb5-3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.7	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libkrb5-3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.6	0.8% Theoretical Threat	Directly Exposed
CVE-2025-3576	MEDIUM5.02	libkrb5support0 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.7	0.3% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libkrb5support0 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.6	0.8% Theoretical Threat	Directly Exposed
CVE-2026-31790	MEDIUM5.02	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.23	1.0% Theoretical Threat	Directly Exposed
CVE-2025-69420	MEDIUM5.02	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.21	0.8% Theoretical Threat	Directly Exposed
CVE-2026-22796	MEDIUM5.02	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.21	0.5% Theoretical Threat	Directly Exposed
CVE-2026-42770	MEDIUM5.02	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.25	0.2% Theoretical Threat	Directly Exposed
CVE-2026-9076	MEDIUM5.02	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.25	0.3% Theoretical Threat	Directly Exposed
CVE-2023-7008	MEDIUM5.02	libsystemd0 249.11-0ubuntu3.12 fixed in 249.11-0ubuntu3.21	0.8% Theoretical Threat	Directly Exposed
CVE-2023-7008	MEDIUM5.02	libudev1 249.11-0ubuntu3.12 fixed in 249.11-0ubuntu3.21	0.8% Theoretical Threat	Directly Exposed
CVE-2024-2511	MEDIUM4.81	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.17	54.0% Actively Exploited	Directly Exposed
CVE-2022-27943	MEDIUM4.67	gcc-12-base 12.3.0-1ubuntu1~22.04.3 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2025-0395	MEDIUM4.67	libc-bin 2.35-0ubuntu3.8 fixed in 2.35-0ubuntu3.9	0.3% Theoretical Threat	Directly Exposed
CVE-2025-0395	MEDIUM4.67	libc6 2.35-0ubuntu3.8 fixed in 2.35-0ubuntu3.9	0.3% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libgcc-s1 12.3.0-1ubuntu1~22.04.3 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libgomp1 12.3.0-1ubuntu1~22.04.3 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2026-22795	MEDIUM4.67	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.21	0.1% Theoretical Threat	Directly Exposed
CVE-2026-7383	MEDIUM4.67	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.25	0.3% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libstdc++6 12.3.0-1ubuntu1~22.04.3 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2026-0915	MEDIUM4.5	libc-bin 2.35-0ubuntu3.8 fixed in 2.35-0ubuntu3.13	0.6% Theoretical Threat	Directly Exposed
CVE-2026-4046	MEDIUM4.5	libc-bin 2.35-0ubuntu3.8 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0915	MEDIUM4.5	libc6 2.35-0ubuntu3.8 fixed in 2.35-0ubuntu3.13	0.6% Theoretical Threat	Directly Exposed
CVE-2026-4046	MEDIUM4.5	libc6 2.35-0ubuntu3.8 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-14831	MEDIUM4.5	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.8	0.6% Theoretical Threat	Directly Exposed
CVE-2026-42015	MEDIUM4.5	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.9	0.7% Theoretical Threat	Directly Exposed
CVE-2026-34743	MEDIUM4.5	liblzma5 5.2.5-2ubuntu1 fixed in 5.2.5-2ubuntu1.1	0.4% Theoretical Threat	Directly Exposed
CVE-2026-42766	MEDIUM4.5	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.25	0.6% Theoretical Threat	Directly Exposed
CVE-2026-42767	MEDIUM4.5	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.25	0.3% Theoretical Threat	Directly Exposed
CVE-2025-64702	MEDIUM4.5	github.com/quic-go/quic-go v0.54.1 fixed in 0.57.0	0.3% Theoretical Threat	Directly Exposed
CVE-2026-34180	MEDIUM4.25	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.25	0.5% Theoretical Threat	Directly Exposed
CVE-2025-15467	MEDIUM4.06	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.21	48.7% High Exploitation Risk	Post-Exploit
CVE-2026-27456	MEDIUM4	libblkid1 2.37.2-4ubuntu3.4 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libmount1 2.37.2-4ubuntu3.4 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libsmartcols1 2.37.2-4ubuntu3.4 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2024-13176	MEDIUM4	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.19	0.6% Theoretical Threat	Directly Exposed
CVE-2025-68160	MEDIUM4	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.21	0.2% Theoretical Threat	Directly Exposed
CVE-2025-4598	MEDIUM4	libsystemd0 249.11-0ubuntu3.12 fixed in 249.11-0ubuntu3.16	0.6% Theoretical Threat	Directly Exposed
CVE-2025-4598	MEDIUM4	libudev1 249.11-0ubuntu3.12 fixed in 249.11-0ubuntu3.16	0.6% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libuuid1 2.37.2-4ubuntu3.4 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2024-3596	LOW3.73	libgssapi-krb5-2 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.5	14.9% High Exploitation Risk	Post-Exploit
CVE-2024-3596	LOW3.73	libk5crypto3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.5	14.9% High Exploitation Risk	Post-Exploit
CVE-2024-3596	LOW3.73	libkrb5-3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.5	14.9% High Exploitation Risk	Post-Exploit
CVE-2024-3596	LOW3.73	libkrb5support0 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.5	14.9% High Exploitation Risk	Post-Exploit
CVE-2024-56406	LOW3.72	perl-base 5.34.0-3ubuntu1.3 fixed in 5.34.0-3ubuntu1.4	0.5% Theoretical Threat	Post-Exploit
CVE-2024-9143	LOW3.7	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.19	6.0% Low-Moderate Risk	Directly Exposed
CVE-2025-8058	LOW3.57	libc-bin 2.35-0ubuntu3.8 fixed in 2.35-0ubuntu3.11	0.2% Theoretical Threat	Directly Exposed
CVE-2025-8058	LOW3.57	libc6 2.35-0ubuntu3.8 fixed in 2.35-0ubuntu3.11	0.2% Theoretical Threat	Directly Exposed
CVE-2025-9820	LOW3.4	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.8	0.2% Theoretical Threat	Directly Exposed
CVE-2025-69418	LOW3.4	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.21	0.1% Theoretical Threat	Directly Exposed
CVE-2024-37371	LOW3.28	libgssapi-krb5-2 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.4	1.9% Low-Moderate Risk	Post-Exploit
CVE-2024-37371	LOW3.28	libk5crypto3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.4	1.9% Low-Moderate Risk	Post-Exploit
CVE-2024-37371	LOW3.28	libkrb5-3 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.4	1.9% Low-Moderate Risk	Post-Exploit
CVE-2024-37371	LOW3.28	libkrb5support0 1.19.2-2ubuntu0.3 fixed in 1.19.2-2ubuntu0.4	1.9% Low-Moderate Risk	Post-Exploit
CVE-2021-46848	LOW3.28	libtasn1-6 4.18.0-4build1 fixed in 4.18.0-4ubuntu0.2	2.1% Low-Moderate Risk	Post-Exploit
CVE-2026-5958	LOW3.21	sed 4.8-1ubuntu2 fixed in 4.8-1ubuntu2.1	0.1% Theoretical Threat	Post-Exploit
CVE-2026-3832	LOW3.15	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.9	0.3% Theoretical Threat	Directly Exposed
CVE-2026-45446	LOW3.15	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.25	0.2% Theoretical Threat	Directly Exposed
CVE-2025-40909	LOW3.01	perl-base 5.34.0-3ubuntu1.3 fixed in 5.34.0-3ubuntu1.5	0.4% Theoretical Threat	Post-Exploit
CVE-2026-42010	LOW3	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.9	0.8% Theoretical Threat	Post-Exploit
CVE-2026-31789	LOW3	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.23	0.2% Theoretical Threat	Post-Exploit
CVE-2025-32988	LOW2.95	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.7	1.2% Low-Moderate Risk	Post-Exploit
CVE-2026-45447	LOW2.92	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.25	1.4% Low-Moderate Risk	Post-Exploit
CVE-2025-45582	LOW2.86	tar 1.34+dfsg-1ubuntu0.1.22.04.2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-40228	LOW2.8	libsystemd0 249.11-0ubuntu3.12 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libudev1 249.11-0ubuntu3.12 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-33845	LOW2.78	libgnutls30 3.7.3-4ubuntu1.5 fixed in 3.7.3-4ubuntu1.9	0.6% Theoretical Threat	Post-Exploit
CVE-2026-45445	LOW2.78	libssl3 3.0.2-0ubuntu1.15 fixed in 3.0.2-0ubuntu1.25	0.3% Theoretical Threat	Post-Exploit
CVE-2017-11164	LOW2.7	libpcre3 2:8.39-13ubuntu0.22.04.1 No fix yet	3.1% Low-Moderate Risk	Post-Exploit
CVE-2022-4899	LOW2.7	libzstd1 1.4.8+dfsg-3build1 No fix yet	1.6% Low-Moderate Risk	Post-Exploit
CVE-2026-27456	LOW2.4	bsdutils 1:2.37.2-4ubuntu3.4 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	mount 2.37.2-4ubuntu3.4 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.37.2-4ubuntu3.4 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2024-56433	LOW1.84	login 1:4.8.1-2ubuntu2.2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2024-56433	LOW1.84	passwd 1:4.8.1-2ubuntu2.2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2023-29383	LOW1.68	login 1:4.8.1-2ubuntu2.2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2023-29383	LOW1.68	passwd 1:4.8.1-2ubuntu2.2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-6020	NONE0	libpam-modules 1.4.0-11ubuntu2.4 fixed in 1.4.0-11ubuntu2.6	0.4% Theoretical Threat	Not Applicable
CVE-2025-6020	NONE0	libpam-modules-bin 1.4.0-11ubuntu2.4 fixed in 1.4.0-11ubuntu2.6	0.4% Theoretical Threat	Not Applicable
CVE-2025-6020	NONE0	libpam-runtime 1.4.0-11ubuntu2.4 fixed in 1.4.0-11ubuntu2.6	0.4% Theoretical Threat	Not Applicable
CVE-2025-6020	NONE0	libpam0g 1.4.0-11ubuntu2.4 fixed in 1.4.0-11ubuntu2.6	0.4% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	libncurses6 6.3-2ubuntu0.1 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	libncursesw6 6.3-2ubuntu0.1 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	libtinfo6 6.3-2ubuntu0.1 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	ncurses-base 6.3-2ubuntu0.1 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	ncurses-bin 6.3-2ubuntu0.1 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2025-6297	NONE0	dpkg 1.21.1ubuntu2.3 fixed in 1.21.1ubuntu2.6	0.3% Theoretical Threat	Not Applicable
GHSA-xmrv-pmrh-hhx2	NONE0	github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.6.7 fixed in 1.7.8	—	Not Applicable
GHSA-xmrv-pmrh-hhx2	NONE0	github.com/aws/aws-sdk-go-v2/service/bedrockruntime v1.23.0 fixed in 1.50.4	—	Not Applicable
CVE-2026-26190	NONE0	github.com/milvus-io/milvus v0.10.3-0.20260618051223-f8b97b357749 fixed in 2.5.27, 2.6.10	27.7% High Exploitation Risk	Not Applicable