Vulnerability Reportnginxinc/nginx-unprivileged:1.31.2

nginxinc/nginx-unprivileged:latestnginxinc/nginx-unprivileged:trixienginxinc/nginx-unprivileged:mainline-trixienginxinc/nginx-unprivileged:mainlinenginxinc/nginx-unprivileged:1-trixienginxinc/nginx-unprivileged:1nginxinc/nginx-unprivileged:1.31-trixienginxinc/nginx-unprivileged:1.31nginxinc/nginx-unprivileged:1.31.2-trixienginxinc/nginx-unprivileged:1.31.2

DIGESTsha256:fdf54c2136c873e3df2457d8f00ebcc070e17845233e1cf3220dfcb0a8b93eb4

Executive Summary

Threat ScoreCAUTION• 174 total known vulnerabilities (27 with severity >= 6.0, max 7.48)• One critical-severity vulnerability (CVE-2026-32740, severity 7.5) allows arbitrary code execution via crafted HEIF/AVIF files• Multiple high-severity vulnerabilities in libheif, libexpat, and libtiff (e.g., CVE-2026-41071, CVE-2025-8176) could lead to denial of service or data exposure• Image is from a trusted publisher (nginxinc) and pinned by digest, ensuring integrity• Post-exploitation layer shows no high-severity vulnerabilities (max severity 3.98)

50/100CAUTION

ReputationVERIFIED• Verified Publisher (Trusted Vendor)• Pinned by digest (Immutable)

TRUSTED

This image carries significant risk; production deployment is highly discouraged without strict compensating controls. An attacker could exploit CVE-2026-32740, a critical heap-buffer-overflow in libheif, to execute arbitrary code on the server, potentially leading to data breach or service compromise. Disabling HEIF/AVIF image processing in nginx configuration would fully eliminate exposure to this and related libheif vulnerabilities. Additionally, the image contains 174 known vulnerabilities, with 27 rated medium or higher, though the post-exploitation layer is relatively clean (113 low-severity only). While the image is from a trusted publisher (nginxinc) and pinned by digest, these vulnerabilities warrant careful consideration before production use.

Vulnerabilities

Vulnerability Log

307 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-32740	HIGH7.48	libheif1 1.19.8-1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-41071	MEDIUM6.88	libheif-plugin-dav1d 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-41071	MEDIUM6.88	libheif-plugin-libde265 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-41071	MEDIUM6.88	libheif1 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-25210	MEDIUM6.63	libexpat1 2.7.1-2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-8176	MEDIUM6.63	libtiff6 4.7.0-3+deb13u2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-8177	MEDIUM6.63	libtiff6 4.7.0-3+deb13u2 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2017-9937	MEDIUM6.5	libjbig0 2.1-6.1+b2 No fix yet	2.8% Low-Moderate Risk	Directly Exposed
CVE-2018-10126	MEDIUM6.5	libtiff6 4.7.0-3+deb13u2 No fix yet	1.9% Low-Moderate Risk	Directly Exposed
CVE-2022-1210	MEDIUM6.5	libtiff6 4.7.0-3+deb13u2 No fix yet	1.9% Low-Moderate Risk	Directly Exposed
CVE-2026-56208	MEDIUM6.46	libaom3 3.12.1-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-33164	MEDIUM6.38	libde265-0 1.0.15-1+b3 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-45186	MEDIUM6.38	libexpat1 2.7.1-2 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2009-4487	MEDIUM6.26	nginx 1.31.2-1~trixie No fix yet	27.0% High Exploitation Risk	Directly ExposedContext importance: MEDIUM
CVE-2025-61144	MEDIUM6.21	libtiff6 4.7.0-3+deb13u2 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-56209	MEDIUM6.03	libaom3 3.12.1-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-56210	MEDIUM6.03	libaom3 3.12.1-1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-56211	MEDIUM6.03	libaom3 3.12.1-1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-68431	MEDIUM6.03	libheif-plugin-dav1d 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32741	MEDIUM6.03	libheif-plugin-dav1d 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32882	MEDIUM6.03	libheif-plugin-dav1d 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-68431	MEDIUM6.03	libheif-plugin-libde265 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32741	MEDIUM6.03	libheif-plugin-libde265 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32882	MEDIUM6.03	libheif-plugin-libde265 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-68431	MEDIUM6.03	libheif1 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32741	MEDIUM6.03	libheif1 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32882	MEDIUM6.03	libheif1 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2024-2236	MEDIUM5.9	libgcrypt20 1.11.0-7+deb13u1 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-26461	MEDIUM5.9	libgssapi-krb5-2 1.21.3-5+deb13u1 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-26461	MEDIUM5.9	libk5crypto3 1.21.3-5+deb13u1 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-26461	MEDIUM5.9	libkrb5-3 1.21.3-5+deb13u1 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-26461	MEDIUM5.9	libkrb5support0 1.21.3-5+deb13u1 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2025-13151	MEDIUM5.9	libtasn1-6 4.20.0-2 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2026-56403	MEDIUM5.87	libexpat1 2.7.1-2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-56410	MEDIUM5.87	libexpat1 2.7.1-2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-56411	MEDIUM5.87	libexpat1 2.7.1-2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-22185	MEDIUM5.78	libldap2 2.6.10+dfsg-1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2011-3389	MEDIUM5.59	libgnutls30t64 3.8.9-3+deb13u4 No fix yet	73.3% Actively Exploited	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc-bin 2.41-12+deb13u3 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc6 2.41-12+deb13u3 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32738	MEDIUM5.52	libheif-plugin-dav1d 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32739	MEDIUM5.52	libheif-plugin-dav1d 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32814	MEDIUM5.52	libheif-plugin-dav1d 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32738	MEDIUM5.52	libheif-plugin-libde265 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32739	MEDIUM5.52	libheif-plugin-libde265 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32814	MEDIUM5.52	libheif-plugin-libde265 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32738	MEDIUM5.52	libheif1 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32739	MEDIUM5.52	libheif1 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-32814	MEDIUM5.52	libheif1 1.19.8-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2019-1010024	MEDIUM5.3	libc-bin 2.41-12+deb13u3 No fix yet	3.2% Low-Moderate Risk	Directly Exposed
CVE-2019-1010025	MEDIUM5.3	libc-bin 2.41-12+deb13u3 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2019-1010024	MEDIUM5.3	libc6 2.41-12+deb13u3 No fix yet	3.2% Low-Moderate Risk	Directly Exposed
CVE-2019-1010025	MEDIUM5.3	libc6 2.41-12+deb13u3 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2025-59375	MEDIUM5.3	libexpat1 2.7.1-2 No fix yet	1.3% Low-Moderate Risk	Directly Exposed
CVE-2015-9019	MEDIUM5.3	libxslt1.1 1.1.35-1.2+deb13u3 No fix yet	2.4% Low-Moderate Risk	Directly Exposed
CVE-2026-1757	MEDIUM5.27	libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libblkid1 2.41-5 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libmount1 2.41-5 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libsmartcols1 2.41-5 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libuuid1 2.41-5 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc-bin 2.41-12+deb13u3 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc6 2.41-12+deb13u3 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-50219	MEDIUM5.02	libexpat1 2.7.1-2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-56412	MEDIUM5.02	libexpat1 2.7.1-2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libgssapi-krb5-2 1.21.3-5+deb13u1 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libk5crypto3 1.21.3-5+deb13u1 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libkrb5-3 1.21.3-5+deb13u1 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libkrb5support0 1.21.3-5+deb13u1 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-0990	MEDIUM5.02	libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u2 No fix yet	0.7% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libblkid1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-66382	MEDIUM4.67	libexpat1 2.7.1-2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-32776	MEDIUM4.67	libexpat1 2.7.1-2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-32777	MEDIUM4.67	libexpat1 2.7.1-2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-32778	MEDIUM4.67	libexpat1 2.7.1-2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libmount1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2021-4214	MEDIUM4.67	libpng16-16t64 1.6.48-1+deb13u5 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libsmartcols1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-61143	MEDIUM4.67	libtiff6 4.7.0-3+deb13u2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libuuid1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-10911	MEDIUM4.67	libxslt1.1 1.1.35-1.2+deb13u3 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27171	MEDIUM4.67	zlib1g 1:1.3.dfsg+really1.3.1-1+b1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libblkid1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-34743	MEDIUM4.5	liblzma5 5.8.1-1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libmount1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-3713	MEDIUM4.5	libpng16-16t64 1.6.48-1+deb13u5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libsmartcols1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2023-31437	MEDIUM4.5	libsystemd0 257.13-1~deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-31438	MEDIUM4.5	libsystemd0 257.13-1~deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-31439	MEDIUM4.5	libsystemd0 257.13-1~deb13u1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2023-31437	MEDIUM4.5	libudev1 257.13-1~deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-31438	MEDIUM4.5	libudev1 257.13-1~deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-31439	MEDIUM4.5	libudev1 257.13-1~deb13u1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libuuid1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2021-45346	MEDIUM4.3	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	1.6% Low-Moderate Risk	Directly Exposed
CVE-2026-42250	MEDIUM4.25	libbz2-1.0 1.0.8-6 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	libc-bin 2.41-12+deb13u3 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	libc-bin 2.41-12+deb13u3 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	libc6 2.41-12+deb13u3 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	libc6 2.41-12+deb13u3 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-33165	MEDIUM4.25	libde265-0 1.0.15-1+b3 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	libgssapi-krb5-2 1.21.3-5+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	libk5crypto3 1.21.3-5+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	libkrb5-3 1.21.3-5+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	libkrb5support0 1.21.3-5+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-61145	MEDIUM4.25	libtiff6 4.7.0-3+deb13u2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2020-15719	MEDIUM4.2	libldap2 2.6.10+dfsg-1 No fix yet	2.4% Low-Moderate Risk	Directly Exposed
CVE-2026-56405	MEDIUM4.17	libexpat1 2.7.1-2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libblkid1 2.41-5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2017-14159	MEDIUM4	libldap2 2.6.10+dfsg-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libmount1 2.41-5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libsmartcols1 2.41-5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libuuid1 2.41-5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2010-4756	MEDIUM4	libc-bin 2.41-12+deb13u3 No fix yet	2.6% Low-Moderate Risk	Directly Exposed
CVE-2010-4756	MEDIUM4	libc6 2.41-12+deb13u3 No fix yet	2.6% Low-Moderate Risk	Directly Exposed
CVE-2025-69720	LOW3.98	ncurses-bin 6.5+20250216-2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-48962	LOW3.98	perl-base 5.40.1-6 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW3.82	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-9538	LOW3.82	perl-base 5.40.1-6 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW3.7	libapt-pkg7.0 3.0.3 No fix yet	1.2% Low-Moderate Risk	Directly Exposed
CVE-2005-2541	LOW3.6	tar 1.35+dfsg-3.1 No fix yet	4.0% Low-Moderate Risk	Post-Exploit
CVE-2019-1010022	LOW3.53	libc-bin 2.41-12+deb13u3 No fix yet	3.2% Low-Moderate Risk	Post-Exploit
CVE-2019-1010022	LOW3.53	libc6 2.41-12+deb13u3 No fix yet	3.2% Low-Moderate Risk	Post-Exploit
CVE-2026-1965	LOW3.47	curl 8.14.1-2+deb13u3 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-14819	LOW3.47	curl 8.14.1-2+deb13u3 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-1965	LOW3.47	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-14819	LOW3.47	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-3784	LOW3.31	curl 8.14.1-2+deb13u3 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	curl 8.14.1-2+deb13u3 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	curl 8.14.1-2+deb13u3 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	curl 8.14.1-2+deb13u3 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-3784	LOW3.31	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-15649	LOW3.31	perl-base 5.40.1-6 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-3805	LOW3.21	curl 8.14.1-2+deb13u3 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-3805	LOW3.21	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2019-1010023	LOW3.17	libc-bin 2.41-12+deb13u3 No fix yet	3.1% Low-Moderate Risk	Post-Exploit
CVE-2019-1010023	LOW3.17	libc6 2.41-12+deb13u3 No fix yet	3.1% Low-Moderate Risk	Post-Exploit
CVE-2026-41080	LOW3.15	libexpat1 2.7.1-2 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-0989	LOW3.15	libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u2 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2025-14104	LOW3.11	bsdutils 1:2.41-5 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	login 1:4.16.0-2+really2.41-5 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	mount 2.41-5 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	util-linux 2.41-5 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-10966	LOW3.01	curl 8.14.1-2+deb13u3 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-10966	LOW3.01	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-8376	LOW3	perl-base 5.40.1-6 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-3783	LOW2.91	curl 8.14.1-2+deb13u3 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-3783	LOW2.91	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	bsdutils 1:2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	login 1:4.16.0-2+really2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	mount 2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-5704	LOW2.8	tar 1.35+dfsg-3.1 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	util-linux 2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-3949	LOW2.8	libheif-plugin-dav1d 1.19.8-1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-3949	LOW2.8	libheif-plugin-libde265 1.19.8-1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-3949	LOW2.8	libheif1 1.19.8-1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2025-70873	LOW2.8	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2013-4392	LOW2.8	libsystemd0 257.13-1~deb13u1 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libsystemd0 257.13-1~deb13u1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2013-4392	LOW2.8	libudev1 257.13-1~deb13u1 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libudev1 257.13-1~deb13u1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-8732	LOW2.8	libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u2 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-7598	LOW2.78	libssh2-1t64 1.11.1-1 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-42496	LOW2.78	perl-base 5.40.1-6 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2018-20796	LOW2.7	libc-bin 2.41-12+deb13u3 No fix yet	5.8% Low-Moderate Risk	Post-Exploit
CVE-2019-9192	LOW2.7	libc-bin 2.41-12+deb13u3 No fix yet	2.4% Low-Moderate Risk	Post-Exploit
CVE-2018-20796	LOW2.7	libc6 2.41-12+deb13u3 No fix yet	5.8% Low-Moderate Risk	Post-Exploit
CVE-2019-9192	LOW2.7	libc6 2.41-12+deb13u3 No fix yet	2.4% Low-Moderate Risk	Post-Exploit
CVE-2018-6829	LOW2.7	libgcrypt20 1.11.0-7+deb13u1 No fix yet	1.8% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libgssapi-krb5-2 1.21.3-5+deb13u1 No fix yet	2.1% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libk5crypto3 1.21.3-5+deb13u1 No fix yet	2.1% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libkrb5-3 1.21.3-5+deb13u1 No fix yet	2.1% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libkrb5support0 1.21.3-5+deb13u1 No fix yet	2.1% Low-Moderate Risk	Post-Exploit
CVE-2015-3276	LOW2.7	libldap2 2.6.10+dfsg-1 No fix yet	5.3% Low-Moderate Risk	Post-Exploit
CVE-2017-17740	LOW2.7	libldap2 2.6.10+dfsg-1 No fix yet	7.0% Low-Moderate Risk	Post-Exploit
CVE-2017-16232	LOW2.7	libtiff6 4.7.0-3+deb13u2 No fix yet	4.8% Low-Moderate Risk	Post-Exploit
CVE-2013-0337	LOW2.7	nginx 1.31.2-1~trixie No fix yet	1.9% Low-Moderate Risk	Post-Exploit
CVE-2026-3184	LOW2.7	bsdutils 1:2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-4873	LOW2.7	curl 8.14.1-2+deb13u3 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	curl 8.14.1-2+deb13u3 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	curl 8.14.1-2+deb13u3 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-4873	LOW2.7	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	login 1:4.16.0-2+really2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	mount 2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-12087	LOW2.7	perl-base 5.40.1-6 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	util-linux 2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-32740	LOW2.69	libheif-plugin-dav1d 1.19.8-1 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-32740	LOW2.69	libheif-plugin-libde265 1.19.8-1 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-11731	LOW2.63	libxslt1.1 1.1.35-1.2+deb13u3 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-48959	LOW2.55	perl-base 5.40.1-6 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-48961	LOW2.55	perl-base 5.40.1-6 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2007-5686	LOW2.5	passwd 1:4.17.4-2 No fix yet	0.9% Theoretical Threat	Post-Exploit
CVE-2025-15079	LOW2.48	curl 8.14.1-2+deb13u3 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-15079	LOW2.48	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-0992	LOW2.46	libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u2 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2025-14017	LOW2.45	curl 8.14.1-2+deb13u3 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-14017	LOW2.45	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	bsdutils 1:2.41-5 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2017-18018	LOW2.4	coreutils 9.7-3 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	curl 8.14.1-2+deb13u3 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	login 1:4.16.0-2+really2.41-5 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	mount 2.41-5 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.41-5 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-5773	LOW2.29	curl 8.14.1-2+deb13u3 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW2.29	curl 8.14.1-2+deb13u3 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5773	LOW2.29	libcurl4t64 8.14.1-2+deb13u3 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-42497	LOW2.29	perl-base 5.40.1-6 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-5278	LOW2.24	coreutils 9.7-3 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW2.22	apt 3.0.3 No fix yet	1.2% Low-Moderate Risk	Post-Exploit
CVE-2026-24515	LOW2.12	libexpat1 2.7.1-2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-8534	LOW2.12	libtiff6 4.7.0-3+deb13u2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2024-56433	LOW1.84	passwd 1:4.17.4-2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-6141	LOW1.68	ncurses-bin 6.5+20250216-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW1.68	perl-base 5.40.1-6 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-69720	NONE0	libtinfo6 6.5+20250216-2 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	ncurses-base 6.5+20250216-2 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2025-14104	NONE0	liblastlog2-2 2.41-5 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2022-0563	NONE0	liblastlog2-2 2.41-5 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2026-4367	NONE0	libxpm4 1:3.5.17-1+b3 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-3184	NONE0	liblastlog2-2 2.41-5 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2007-5686	NONE0	login.defs 1:4.17.4-2 No fix yet	0.9% Theoretical Threat	Not Applicable
CVE-2026-54411	NONE0	libpam-modules 1.7.0-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-54411	NONE0	libpam-modules-bin 1.7.0-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-54411	NONE0	libpam-runtime 1.7.0-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-54411	NONE0	libpam0g 1.7.0-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	liblastlog2-2 2.41-5 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2024-56433	NONE0	login.defs 1:4.17.4-2 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	libtinfo6 6.5+20250216-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	ncurses-base 6.5+20250216-2 No fix yet	0.2% Theoretical Threat	Not Applicable
TEMP-0841856-B18BAF	NONE0	bash 5.2.37-2+b9 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	bsdutils 1:2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	bsdutils 1:2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	bsdutils 1:2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	bsdutils 1:2.41-5 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	libblkid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	libblkid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	libblkid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	libblkid1 2.41-5 No fix yet	—	Not Applicable
CVE-2024-38949	NONE0	libde265-0 1.0.15-1+b3 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2024-38950	NONE0	libde265-0 1.0.15-1+b3 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2025-61147	NONE0	libde265-0 1.0.15-1+b3 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-49295	NONE0	libde265-0 1.0.15-1+b3 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-49337	NONE0	libde265-0 1.0.15-1+b3 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-49346	NONE0	libde265-0 1.0.15-1+b3 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-56131	NONE0	libexpat1 2.7.1-2 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-56132	NONE0	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-56404	NONE0	libexpat1 2.7.1-2 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-56406	NONE0	libexpat1 2.7.1-2 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-56407	NONE0	libexpat1 2.7.1-2 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-56408	NONE0	libexpat1 2.7.1-2 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-56409	NONE0	libexpat1 2.7.1-2 No fix yet	<0.1% Theoretical Threat	Not Applicable
CVE-2026-41069	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-47178	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-49271	NONE0	libheif-plugin-dav1d 1.19.8-1 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-41069	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-47178	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-49271	NONE0	libheif-plugin-libde265 1.19.8-1 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-41069	NONE0	libheif1 1.19.8-1 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-47178	NONE0	libheif1 1.19.8-1 No fix yet	—	Not Applicable
CVE-2026-49271	NONE0	libheif1 1.19.8-1 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-53612	NONE0	liblastlog2-2 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	liblastlog2-2 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	liblastlog2-2 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	liblastlog2-2 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	libmount1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	libmount1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	libmount1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	libmount1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	libsmartcols1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	libsmartcols1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	libsmartcols1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	libsmartcols1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-11822	NONE0	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-11824	NONE0	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-15661	NONE0	libssh2-1t64 1.11.1-1 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-55199	NONE0	libssh2-1t64 1.11.1-1 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2026-55200	NONE0	libssh2-1t64 1.11.1-1 No fix yet	0.5% Theoretical Threat	Not Applicable
CVE-2026-36849	NONE0	libtiff6 4.7.0-3+deb13u2 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	libuuid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	libuuid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	libuuid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	libuuid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-6653	NONE0	libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u2 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-53612	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	—	Not Applicable
TEMP-0628843-DBAD28	NONE0	login.defs 1:4.17.4-2 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	mount 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	mount 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	mount 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	mount 2.41-5 No fix yet	—	Not Applicable
CVE-2026-42055	NONE0	nginx 1.31.2-1~trixie No fix yet	1.8% Low-Moderate Risk	Not Applicable
CVE-2026-48142	NONE0	nginx 1.31.2-1~trixie No fix yet	0.4% Theoretical Threat	Not Applicable
TEMP-0628843-DBAD28	NONE0	passwd 1:4.17.4-2 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	perl-base 5.40.1-6 No fix yet	0.2% Theoretical Threat	Not Applicable
TEMP-0517018-A83CE6	NONE0	sysvinit-utils 3.14-4 No fix yet	—	Not Applicable
TEMP-0290435-0B57B5	NONE0	tar 1.35+dfsg-3.1 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	util-linux 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	util-linux 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	util-linux 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	util-linux 2.41-5 No fix yet	—	Not Applicable