Vulnerability Reportnginxdemos/hello:0.3-plain-text

nginxdemos/hello:0.3-plain-text
DIGESTsha256:d1b47a6288ccae97c1dd89ba2a41dc86f416ae6871b41ba352ffc8562f0d7e0d

Executive Summary

Threat Score
0/100SAFE
Reputation
RELIABLE

This image is safe for production use. While there are some low-severity vulnerabilities (13 exposed, 61 post-exploit), their maximum severity is below 6.0, meaning they do not pose a significant risk. These vulnerabilities are not exploitable over the network and require local access, which is limited in typical deployments. The image comes from a trusted, popular publisher and is pinned by digest, ensuring consistent and reliable usage.

Vulnerabilities

Vulnerability Log

74 total
CVE IDAdjusted SeverityPackageExploit ProbabilityRisk Context
CVE-2025-26519MEDIUM5.95
musl
1.2.4-r2
fixed in 1.2.4-r3
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-4741MEDIUM5.6
libcrypto3
3.1.4-r5
fixed in 3.1.6-r0
2.9%
Low-Moderate Risk
Directly Exposed
CVE-2024-4741MEDIUM5.6
libssl3
3.1.4-r5
fixed in 3.1.6-r0
2.9%
Low-Moderate Risk
Directly Exposed
CVE-2024-34459MEDIUM5.5
libxml2
2.11.6-r0
fixed in 2.11.8-r0
2.3%
Low-Moderate Risk
Directly Exposed
CVE-2024-4603MEDIUM5.3
libcrypto3
3.1.4-r5
fixed in 3.1.5-r0
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-4603MEDIUM5.3
libssl3
3.1.4-r5
fixed in 3.1.5-r0
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-2511MEDIUM4.81
libcrypto3
3.1.4-r5
fixed in 3.1.4-r6
54.0%
Actively Exploited
Directly Exposed
CVE-2024-2511MEDIUM4.81
libssl3
3.1.4-r5
fixed in 3.1.4-r6
54.0%
Actively Exploited
Directly Exposed
CVE-2023-52426MEDIUM4.67
libexpat
2.5.0-r1
fixed in 2.6.0-r0
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-13176MEDIUM4
libcrypto3
3.1.4-r5
fixed in 3.1.8-r0
0.6%
Theoretical Threat
Directly Exposed
CVE-2024-13176MEDIUM4
libssl3
3.1.4-r5
fixed in 3.1.8-r0
0.6%
Theoretical Threat
Directly Exposed
CVE-2024-9143LOW3.7
libcrypto3
3.1.4-r5
fixed in 3.1.7-r1
6.0%
Low-Moderate Risk
Directly Exposed
CVE-2024-9143LOW3.7
libssl3
3.1.4-r5
fixed in 3.1.7-r1
6.0%
Low-Moderate Risk
Directly Exposed
CVE-2025-26519LOW3.57
musl-utils
1.2.4-r2
fixed in 1.2.4-r3
0.3%
Theoretical Threat
Post-Exploit
CVE-2024-45491LOW3.53
libexpat
2.5.0-r1
fixed in 2.6.3-r0
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2024-45492LOW3.53
libexpat
2.5.0-r1
fixed in 2.6.3-r0
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2024-56171LOW3.53
libxml2
2.11.6-r0
fixed in 2.11.8-r1
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2024-6119LOW3.51
libcrypto3
3.1.4-r5
fixed in 3.1.7-r0
66.6%
Actively Exploited
Post-Exploit
CVE-2024-6119LOW3.51
libssl3
3.1.4-r5
fixed in 3.1.7-r0
66.6%
Actively Exploited
Post-Exploit
CVE-2024-8096LOW3.31
curl
8.5.0-r0
fixed in 8.10.0-r0
0.7%
Theoretical Threat
Post-Exploit
CVE-2024-8096LOW3.31
libcurl
8.5.0-r0
fixed in 8.10.0-r0
0.7%
Theoretical Threat
Post-Exploit
CVE-2024-2379LOW3.24
curl
8.5.0-r0
fixed in 8.7.1-r0
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2024-2379LOW3.24
libcurl
8.5.0-r0
fixed in 8.7.1-r0
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2024-0853LOW3.18
curl
8.5.0-r0
fixed in 8.6.0-r0
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2024-2466LOW3.18
curl
8.5.0-r0
fixed in 8.7.1-r0
1.3%
Low-Moderate Risk
Post-Exploit
CVE-2024-2004LOW3.18
curl
8.5.0-r0
fixed in 8.7.1-r0
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2024-0853LOW3.18
libcurl
8.5.0-r0
fixed in 8.6.0-r0
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2024-2466LOW3.18
libcurl
8.5.0-r0
fixed in 8.7.1-r0
1.3%
Low-Moderate Risk
Post-Exploit
CVE-2024-2004LOW3.18
libcurl
8.5.0-r0
fixed in 8.7.1-r0
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2024-2398LOW3.1
curl
8.5.0-r0
fixed in 8.7.1-r0
36.1%
High Exploitation Risk
Post-Exploit
CVE-2024-2398LOW3.1
libcurl
8.5.0-r0
fixed in 8.7.1-r0
36.1%
High Exploitation Risk
Post-Exploit
CVE-2023-42363LOW2.8
busybox
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42364LOW2.8
busybox
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42365LOW2.8
busybox
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42366LOW2.8
busybox
1.36.1-r5
fixed in 1.36.1-r6
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42363LOW2.8
busybox-binsh
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42364LOW2.8
busybox-binsh
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42365LOW2.8
busybox-binsh
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42366LOW2.8
busybox-binsh
1.36.1-r5
fixed in 1.36.1-r6
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42363LOW2.8
ssl_client
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42364LOW2.8
ssl_client
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42365LOW2.8
ssl_client
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42366LOW2.8
ssl_client
1.36.1-r5
fixed in 1.36.1-r6
0.4%
Theoretical Threat
Post-Exploit
CVE-2024-6197LOW2.7
curl
8.5.0-r0
fixed in 8.9.0-r0
4.3%
Low-Moderate Risk
Post-Exploit
CVE-2024-6197LOW2.7
libcurl
8.5.0-r0
fixed in 8.9.0-r0
4.3%
Low-Moderate Risk
Post-Exploit
CVE-2023-52425LOW2.7
libexpat
2.5.0-r1
fixed in 2.6.0-r0
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2024-28757LOW2.7
libexpat
2.5.0-r1
fixed in 2.6.2-r0
2.0%
Low-Moderate Risk
Post-Exploit
CVE-2024-45490LOW2.7
libexpat
2.5.0-r1
fixed in 2.6.3-r0
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2024-8176LOW2.7
libexpat
2.5.0-r1
fixed in 2.7.0-r0
1.6%
Low-Moderate Risk
Post-Exploit
CVE-2024-25062LOW2.7
libxml2
2.11.6-r0
fixed in 2.11.7-r0
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2025-27113LOW2.7
libxml2
2.11.6-r0
fixed in 2.11.8-r2
1.0%
Low-Moderate Risk
Post-Exploit
CVE-2024-7264LOW2.69
curl
8.5.0-r0
fixed in 8.9.1-r0
16.2%
High Exploitation Risk
Post-Exploit
CVE-2024-7264LOW2.69
libcurl
8.5.0-r0
fixed in 8.9.1-r0
16.2%
High Exploitation Risk
Post-Exploit
CVE-2025-0665LOW2.4
curl
8.5.0-r0
fixed in 8.12.0-r0
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2025-0725LOW2.4
curl
8.5.0-r0
fixed in 8.12.0-r0
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2025-0665LOW2.4
libcurl
8.5.0-r0
fixed in 8.12.0-r0
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2025-0725LOW2.4
libcurl
8.5.0-r0
fixed in 8.12.0-r0
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2024-55549LOW2.39
libxslt
1.1.38-r0
fixed in 1.1.38-r1
0.3%
Theoretical Threat
Post-Exploit
CVE-2025-24855LOW2.39
libxslt
1.1.38-r0
fixed in 1.1.38-r1
0.3%
Theoretical Threat
Post-Exploit
CVE-2025-24928LOW2.36
libxml2
2.11.6-r0
fixed in 2.11.8-r1
0.4%
Theoretical Threat
Post-Exploit
CVE-2024-9681LOW2.34
curl
8.5.0-r0
fixed in 8.11.0-r0
2.0%
Low-Moderate Risk
Post-Exploit
CVE-2024-9681LOW2.34
libcurl
8.5.0-r0
fixed in 8.11.0-r0
2.0%
Low-Moderate Risk
Post-Exploit
CVE-2025-32414LOW2.29
libxml2
2.11.6-r0
fixed in 2.11.8-r3
0.3%
Theoretical Threat
Post-Exploit
CVE-2025-32415LOW2.29
libxml2
2.11.6-r0
fixed in 2.11.8-r3
0.5%
Theoretical Threat
Post-Exploit
CVE-2025-31115LOW2.29
xz-libs
5.4.3-r0
fixed in 5.4.3-r1
0.6%
Theoretical Threat
Post-Exploit
CVE-2024-6874LOW2.19
curl
8.5.0-r0
fixed in 8.9.0-r0
0.8%
Theoretical Threat
Post-Exploit
CVE-2024-6874LOW2.19
libcurl
8.5.0-r0
fixed in 8.9.0-r0
0.8%
Theoretical Threat
Post-Exploit
CVE-2024-11053LOW2.12
curl
8.5.0-r0
fixed in 8.11.1-r0
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2024-5535LOW2.12
libcrypto3
3.1.4-r5
fixed in 3.1.6-r0
5.6%
Low-Moderate Risk
Post-Exploit
CVE-2024-11053LOW2.12
libcurl
8.5.0-r0
fixed in 8.11.1-r0
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2024-50602LOW2.12
libexpat
2.5.0-r1
fixed in 2.6.4-r0
1.0%
Low-Moderate Risk
Post-Exploit
CVE-2024-5535LOW2.12
libssl3
3.1.4-r5
fixed in 3.1.6-r0
5.6%
Low-Moderate Risk
Post-Exploit
CVE-2025-0167NONE0
curl
8.5.0-r0
fixed in 8.12.0-r0
0.6%
Theoretical Threat
Not Applicable
CVE-2025-0167NONE0
libcurl
8.5.0-r0
fixed in 8.12.0-r0
0.6%
Theoretical Threat
Not Applicable