Vulnerability Reportnginx:latest

Name: nginx:1.31.1-trixie Security Vulnerability Report
Creator: BaseImage
Keywords: nginx:1.31.1-trixie, Docker security, vulnerability scan, CVE, container security, SBOM

nginx:latestnginx:trixienginx:mainline-trixienginx:mainlinenginx:1.31.1-trixienginx:1.31.1nginx:1.31-trixienginx:1.31nginx:1-trixienginx:1

DIGESTsha256:5aca99593157f4ae539a5dec1092a0ad8762f8e2eb1789085a13a0f5622369f6

Executive Summary

SAFE

This image is safe for production use. While the image contains a total of 54 identified vulnerabilities (2 exposed, 52 post-exploit), none are of high or critical severity. The maximum exposed vulnerability severity is 5.1, meaning there are no directly exploitable vulnerabilities above a moderate risk level. The highest post-exploit vulnerability, CVE-2005-2541, related to `tar`, requires an attacker to already have local access or trick a compromised process into invoking `tar`, thereby limiting its practical impact within Nginx's core runtime operations. Its official status, immutability via digest pinning, and a pre-calculated threat score of 0 further support its readiness for production.

Threat Score

0/100

SAFE

Image is an official Docker Hub image, published by Docker Official, and pinned by digest, ensuring immutability and high trust.
The container has a pre-calculated threat score of 0, indicating minimal overall risk.
No high-severity vulnerabilities are exposed on the attack surface (max severity 5.1; 0 vulnerabilities with severity >= 6.0).
All 52 identified post-exploit vulnerabilities are low severity (maximum 3.6).
The highest post-exploit vulnerability, CVE-2005-2541 (tar), requires prior local access, limiting its practical exploitability within the Nginx context.

Reputation

TRUSTED

Docker Official

OFFICIAL

Official Docker Hub Image
Pinned by digest (Immutable)

BaseImage/

nginx:latest

Hardened

Grade

A+

Vulns

Verified & secured for production

Vulnerabilities

Vulnerability Log

282 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-6276	MEDIUM5.1	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2025-14819	MEDIUM4.62	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2005-2541	LOW3.6	tar 1.35+dfsg-3.1 No fix yet	3.8% Low-Moderate Risk	Post-Exploit
CVE-2026-1965	LOW3.47	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3784	LOW3.31	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3805	LOW3.21	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	bsdutils 1:2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	mount 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	util-linux 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-10966	LOW3.01	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3783	LOW2.91	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	bsdutils 1:2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	mount 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-5704	LOW2.8	tar 1.35+dfsg-3.1 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	util-linux 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	bsdutils 1:2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-4873	LOW2.7	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	mount 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	util-linux 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2007-5686	LOW2.5	passwd 1:4.17.4-2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-15079	LOW2.48	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-14017	LOW2.45	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	bsdutils 1:2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2017-18018	LOW2.4	coreutils 9.7-3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	mount 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.41-5 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-5773	LOW2.29	curl 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Post-Exploit
CVE-2025-5278	LOW2.24	coreutils 9.7-3 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW2.22	apt 3.0.3 No fix yet	1.5% Low-Moderate Risk	Post-Exploit
CVE-2024-56433	LOW2.16	passwd 1:4.17.4-2 No fix yet	4.5% Low-Moderate Risk	Post-Exploit
CVE-2019-1010022	NONE0	libc-bin 2.41-12+deb13u3 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2019-1010022	NONE0	libc6 2.41-12+deb13u3 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-8376	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-7598	NONE0	libssh2-1t64 1.11.1-1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-42496	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2019-1010023	NONE0	libc-bin 2.41-12+deb13u3 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2019-1010023	NONE0	libc6 2.41-12+deb13u3 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-32740	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32740	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32740	NONE0	libheif1 1.19.8-1 No fix yet	—	Not Applicable
CVE-2025-15079	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-41071	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-41071	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-41071	NONE0	libheif1 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-25210	NONE0	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-8176	NONE0	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-8177	NONE0	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	libtinfo6 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	ncurses-base 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	ncurses-bin 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-48962	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2018-20796	NONE0	libc-bin 2.41-12+deb13u3 No fix yet	1.5% Low-Moderate Risk	Not Applicable
CVE-2019-9192	NONE0	libc-bin 2.41-12+deb13u3 No fix yet	0.8% Theoretical Threat	Not Applicable
CVE-2018-20796	NONE0	libc6 2.41-12+deb13u3 No fix yet	1.5% Low-Moderate Risk	Not Applicable
CVE-2019-9192	NONE0	libc6 2.41-12+deb13u3 No fix yet	0.8% Theoretical Threat	Not Applicable
CVE-2026-5773	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-6276	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-33164	NONE0	libde265-0 1.0.15-1+b3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-45186	NONE0	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-41989	NONE0	libgcrypt20 1.11.0-7 fixed in 1.11.0-7+deb13u1	<0.1% Theoretical Threat	Not Applicable
CVE-2018-6829	NONE0	libgcrypt20 1.11.0-7 No fix yet	0.5% Theoretical Threat	Not Applicable
CVE-2018-5709	NONE0	libgssapi-krb5-2 1.21.3-5 No fix yet	1.5% Low-Moderate Risk	Not Applicable
CVE-2018-5709	NONE0	libk5crypto3 1.21.3-5 No fix yet	1.5% Low-Moderate Risk	Not Applicable
CVE-2018-5709	NONE0	libkrb5-3 1.21.3-5 No fix yet	1.5% Low-Moderate Risk	Not Applicable
CVE-2018-5709	NONE0	libkrb5support0 1.21.3-5 No fix yet	1.5% Low-Moderate Risk	Not Applicable
CVE-2015-3276	NONE0	libldap2 2.6.10+dfsg-1 No fix yet	2.6% Low-Moderate Risk	Not Applicable
CVE-2017-17740	NONE0	libldap2 2.6.10+dfsg-1 No fix yet	6.1% Low-Moderate Risk	Not Applicable
CVE-2017-16232	NONE0	libtiff6 4.7.0-3+deb13u2 No fix yet	1.1% Low-Moderate Risk	Not Applicable
CVE-2013-0337	NONE0	nginx 1.31.1-1~trixie No fix yet	0.6% Theoretical Threat	Not Applicable
CVE-2026-42497	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-9538	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2025-61144	NONE0	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-68431	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32741	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32882	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	—	Not Applicable
CVE-2025-68431	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32741	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32882	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	—	Not Applicable
CVE-2025-68431	NONE0	libheif1 1.19.8-1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32741	NONE0	libheif1 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32882	NONE0	libheif1 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-1965	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-14819	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-22185	NONE0	libldap2 2.6.10+dfsg-1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2009-4487	NONE0	nginx 1.31.1-1~trixie No fix yet	1.6% Low-Moderate Risk	Not Applicable
CVE-2026-6238	NONE0	libc-bin 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-6238	NONE0	libc6 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-3784	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-5545	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-6429	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-14524	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32738	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32739	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32814	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32738	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32739	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32814	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32738	NONE0	libheif1 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32739	NONE0	libheif1 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-32814	NONE0	libheif1 1.19.8-1 No fix yet	—	Not Applicable
CVE-2017-9937	NONE0	libjbig0 2.1-6.1+b2 No fix yet	0.9% Theoretical Threat	Not Applicable
CVE-2018-10126	NONE0	libtiff6 4.7.0-3+deb13u2 No fix yet	0.6% Theoretical Threat	Not Applicable
CVE-2022-1210	NONE0	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-3805	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-1757	NONE0	libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-14104	NONE0	libblkid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-14104	NONE0	liblastlog2-2 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-14104	NONE0	libmount1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-14104	NONE0	libsmartcols1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-14104	NONE0	libuuid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-14104	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-5435	NONE0	libc-bin 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-5435	NONE0	libc6 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-10966	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-50219	NONE0	libexpat1 2.7.1-2 No fix yet	—	Not Applicable
CVE-2024-2236	NONE0	libgcrypt20 1.11.0-7 No fix yet	0.7% Theoretical Threat	Not Applicable
CVE-2026-40355	NONE0	libgssapi-krb5-2 1.21.3-5 fixed in 1.21.3-5+deb13u1	<0.1% Theoretical Threat	Not Applicable
CVE-2026-40356	NONE0	libgssapi-krb5-2 1.21.3-5 fixed in 1.21.3-5+deb13u1	<0.1% Theoretical Threat	Not Applicable
CVE-2024-26458	NONE0	libgssapi-krb5-2 1.21.3-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2024-26461	NONE0	libgssapi-krb5-2 1.21.3-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-40355	NONE0	libk5crypto3 1.21.3-5 fixed in 1.21.3-5+deb13u1	<0.1% Theoretical Threat	Not Applicable
CVE-2026-40356	NONE0	libk5crypto3 1.21.3-5 fixed in 1.21.3-5+deb13u1	<0.1% Theoretical Threat	Not Applicable
CVE-2024-26458	NONE0	libk5crypto3 1.21.3-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2024-26461	NONE0	libk5crypto3 1.21.3-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-40355	NONE0	libkrb5-3 1.21.3-5 fixed in 1.21.3-5+deb13u1	<0.1% Theoretical Threat	Not Applicable
CVE-2026-40356	NONE0	libkrb5-3 1.21.3-5 fixed in 1.21.3-5+deb13u1	<0.1% Theoretical Threat	Not Applicable
CVE-2024-26458	NONE0	libkrb5-3 1.21.3-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2024-26461	NONE0	libkrb5-3 1.21.3-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-40355	NONE0	libkrb5support0 1.21.3-5 fixed in 1.21.3-5+deb13u1	<0.1% Theoretical Threat	Not Applicable
CVE-2026-40356	NONE0	libkrb5support0 1.21.3-5 fixed in 1.21.3-5+deb13u1	<0.1% Theoretical Threat	Not Applicable
CVE-2024-26458	NONE0	libkrb5support0 1.21.3-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2024-26461	NONE0	libkrb5support0 1.21.3-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-13151	NONE0	libtasn1-6 4.20.0-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-0990	NONE0	libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-3783	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2022-0563	NONE0	libblkid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-66382	NONE0	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32776	NONE0	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32777	NONE0	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-32778	NONE0	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2022-0563	NONE0	liblastlog2-2 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2022-0563	NONE0	libmount1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2021-4214	NONE0	libpng16-16t64 1.6.48-1+deb13u5 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2022-0563	NONE0	libsmartcols1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-61143	NONE0	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2022-0563	NONE0	libuuid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-10911	NONE0	libxslt1.1 1.1.35-1.2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2022-0563	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-27171	NONE0	zlib1g 1:1.3.dfsg+really1.3.1-1+b1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-3184	NONE0	libblkid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2019-1010024	NONE0	libc-bin 2.41-12+deb13u3 No fix yet	0.6% Theoretical Threat	Not Applicable
CVE-2019-1010025	NONE0	libc-bin 2.41-12+deb13u3 No fix yet	0.8% Theoretical Threat	Not Applicable
CVE-2019-1010024	NONE0	libc6 2.41-12+deb13u3 No fix yet	0.6% Theoretical Threat	Not Applicable
CVE-2019-1010025	NONE0	libc6 2.41-12+deb13u3 No fix yet	0.8% Theoretical Threat	Not Applicable
CVE-2026-4873	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-6253	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-7168	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-59375	NONE0	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-3184	NONE0	liblastlog2-2 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-34743	NONE0	liblzma5 5.8.1-1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-3184	NONE0	libmount1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-3713	NONE0	libpng16-16t64 1.6.48-1+deb13u5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-3184	NONE0	libsmartcols1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2023-31437	NONE0	libsystemd0 257.13-1~deb13u1 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2023-31438	NONE0	libsystemd0 257.13-1~deb13u1 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2023-31439	NONE0	libsystemd0 257.13-1~deb13u1 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2023-31437	NONE0	libudev1 257.13-1~deb13u1 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2023-31438	NONE0	libudev1 257.13-1~deb13u1 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2023-31439	NONE0	libudev1 257.13-1~deb13u1 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-3184	NONE0	libuuid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2015-9019	NONE0	libxslt1.1 1.1.35-1.2+deb13u3 No fix yet	0.6% Theoretical Threat	Not Applicable
CVE-2026-3184	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-42250	NONE0	libbz2-1.0 1.0.8-6 No fix yet	—	Not Applicable
CVE-2026-5450	NONE0	libc-bin 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-5928	NONE0	libc-bin 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-5450	NONE0	libc6 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-5928	NONE0	libc6 2.41-12+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-33165	NONE0	libde265-0 1.0.15-1+b3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-61145	NONE0	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2007-5686	NONE0	login.defs 1:4.17.4-2 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2025-14017	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	libblkid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-15224	NONE0	libcurl4t64 8.14.1-2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	liblastlog2-2 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2017-14159	NONE0	libldap2 2.6.10+dfsg-1 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	libmount1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	libsmartcols1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	libuuid1 2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2011-3389	NONE0	libgnutls30t64 3.8.9-3+deb13u4 No fix yet	3.8% Low-Moderate Risk	Not Applicable
CVE-2021-45346	NONE0	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2020-15719	NONE0	libldap2 2.6.10+dfsg-1 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2010-4756	NONE0	libc-bin 2.41-12+deb13u3 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2010-4756	NONE0	libc6 2.41-12+deb13u3 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2011-3374	NONE0	libapt-pkg7.0 3.0.3 No fix yet	1.5% Low-Moderate Risk	Not Applicable
CVE-2026-41080	NONE0	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-0989	NONE0	libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2024-56433	NONE0	login.defs 1:4.17.4-2 No fix yet	4.5% Low-Moderate Risk	Not Applicable
CVE-2026-3949	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-3949	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-3949	NONE0	libheif1 1.19.8-1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-70873	NONE0	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2013-4392	NONE0	libsystemd0 257.13-1~deb13u1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-40228	NONE0	libsystemd0 257.13-1~deb13u1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	libtinfo6 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2013-4392	NONE0	libudev1 257.13-1~deb13u1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-40228	NONE0	libudev1 257.13-1~deb13u1 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-8732	NONE0	libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	ncurses-base 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	ncurses-bin 6.5+20250216-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2011-4116	NONE0	perl-base 5.40.1-6 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-11731	NONE0	libxslt1.1 1.1.35-1.2+deb13u3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-0992	NONE0	libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-24515	NONE0	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2025-8534	NONE0	libtiff6 4.7.0-3+deb13u2 No fix yet	<0.1% Theoretical Threat	Not Applicable
TEMP-0841856-B18BAF	NONE0	bash 5.2.37-2+b9 No fix yet	—	Not Applicable
CVE-2024-38949	NONE0	libde265-0 1.0.15-1+b3 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2024-38950	NONE0	libde265-0 1.0.15-1+b3 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-61147	NONE0	libde265-0 1.0.15-1+b3 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-41069	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-41069	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-41069	NONE0	libheif1 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-34180	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-34181	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-34182	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-34183	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42764	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42766	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42767	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42768	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42769	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42770	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-45445	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-45446	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-45447	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-7383	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-9076	NONE0	libssl3t64 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-4367	NONE0	libxpm4 1:3.5.17-1+b3 No fix yet	—	Not Applicable
TEMP-0628843-DBAD28	NONE0	login.defs 1:4.17.4-2 No fix yet	—	Not Applicable
CVE-2026-34180	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-34181	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-34182	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-34183	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42764	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42766	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42767	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42768	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42769	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42770	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-45445	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-45446	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-45447	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-7383	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-9076	NONE0	openssl 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-34180	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-34181	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-34182	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-34183	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42764	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42766	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42767	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42768	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42769	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-42770	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-45445	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-45446	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-45447	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-7383	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
CVE-2026-9076	NONE0	openssl-provider-legacy 3.5.6-1~deb13u1 No fix yet	—	Not Applicable
TEMP-0628843-DBAD28	NONE0	passwd 1:4.17.4-2 No fix yet	—	Not Applicable
CVE-2026-48959	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2025-15649	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	perl-base 5.40.1-6 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-48961	NONE0	perl-base 5.40.1-6 No fix yet	—	Not Applicable
TEMP-0517018-A83CE6	NONE0	sysvinit-utils 3.14-4 No fix yet	—	Not Applicable
TEMP-0290435-0B57B5	NONE0	tar 1.35+dfsg-3.1 No fix yet	—	Not Applicable