Vulnerability Reportnvidia/cuda:13.3.0-cudnn-runtime-ubuntu22.04

nvidia/cuda:13.3.0-cudnn-runtime-ubuntu22.04

DIGESTsha256:75b084070cca3705cf5f64f4339692eebaa24b528eee518844fe8debc370c66c

Executive Summary

Threat ScoreSAFE• Trusted publisher NVIDIA with 112M+ pulls and high reputation score of 90.• Image pinned by digest for immutability, ensuring integrity.• No high-severity vulnerabilities: exposed max severity 5.44, post-exploit max 2.92.• No exposed surface findings were reported, minimizing attack surface.

0/100SAFE

ReputationPOPULAR COMMUNITY• High Reputation Community Image (112M+ pulls)• Pinned by digest (Immutable)

RELIABLE

This image is safe for production use. While the image contains 16 exposed and 36 post-exploit vulnerabilities, their maximum severity is low (exposed 5.44, post-exploit 2.92) and no critical or high-severity issues are present. The image is from a reliable publisher, widely used, and pinned to a specific digest, ensuring consistency and trustworthiness.

Vulnerabilities

Vulnerability Log

57 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-40226	MEDIUM5.44	libsystemd0 249.11-0ubuntu3.20 fixed in 249.11-0ubuntu3.21	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40226	MEDIUM5.44	libudev1 249.11-0ubuntu3.20 fixed in 249.11-0ubuntu3.21	<0.1% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	gcc-12-base 12.3.0-1ubuntu1~22.04.3 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libgcc-s1 12.3.0-1ubuntu1~22.04.3 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2026-7383	MEDIUM4.67	libssl3 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.3% Theoretical Threat	Directly Exposed
CVE-2022-27943	MEDIUM4.67	libstdc++6 12.3.0-1ubuntu1~22.04.3 No fix yet	0.9% Theoretical Threat	Directly Exposed
CVE-2026-34180	MEDIUM4.25	libssl3 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.5% Theoretical Threat	Directly Exposed
CVE-2023-7008	MEDIUM4.02	libsystemd0 249.11-0ubuntu3.20 fixed in 249.11-0ubuntu3.21	0.8% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2023-7008	MEDIUM4.02	libudev1 249.11-0ubuntu3.20 fixed in 249.11-0ubuntu3.21	0.8% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-27456	MEDIUM4	libblkid1 2.37.2-4ubuntu3.5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libmount1 2.37.2-4ubuntu3.5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libsmartcols1 2.37.2-4ubuntu3.5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libuuid1 2.37.2-4ubuntu3.5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-45446	LOW3.15	libssl3 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.2% Theoretical Threat	Directly Exposed
CVE-2026-45447	LOW2.92	libssl3 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	1.4% Low-Moderate Risk	Post-Exploit
CVE-2026-45447	LOW2.92	openssl 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	1.4% Low-Moderate Risk	Post-Exploit
CVE-2025-45582	LOW2.86	tar 1.34+dfsg-1ubuntu0.1.22.04.2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-7383	LOW2.8	openssl 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.3% Theoretical Threat	Post-Exploit
CVE-2026-40228	LOW2.8	libsystemd0 249.11-0ubuntu3.20 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libudev1 249.11-0ubuntu3.20 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-45445	LOW2.78	libssl3 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.3% Theoretical Threat	Post-Exploit
CVE-2026-45445	LOW2.78	openssl 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.3% Theoretical Threat	Post-Exploit
CVE-2017-11164	LOW2.7	libpcre3 2:8.39-13ubuntu0.22.04.1 No fix yet	3.1% Low-Moderate Risk	Post-Exploit
CVE-2022-4899	LOW2.7	libzstd1 1.4.8+dfsg-3build1 No fix yet	1.6% Low-Moderate Risk	Post-Exploit
CVE-2026-42766	LOW2.7	openssl 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.6% Theoretical Threat	Post-Exploit
CVE-2026-42767	LOW2.7	openssl 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.3% Theoretical Threat	Post-Exploit
CVE-2026-34180	LOW2.55	openssl 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.5% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	bsdutils 1:2.37.2-4ubuntu3.5 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	mount 2.37.2-4ubuntu3.5 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.37.2-4ubuntu3.5 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2022-41409	LOW2.29	libpcre2-8-0 10.39-3ubuntu0.1 No fix yet	1.0% Theoretical Threat	Post-Exploit
CVE-2026-34182	LOW2.26	libssl3 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.2% Theoretical Threat	Post-Exploit
CVE-2026-34182	LOW2.26	openssl 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.2% Theoretical Threat	Post-Exploit
CVE-2024-2236	LOW2.12	libgcrypt20 1.9.4-3ubuntu3.2 No fix yet	1.1% Low-Moderate Risk	Post-Exploit
CVE-2026-6238	LOW1.99	libc-bin 2.35-0ubuntu3.13 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6238	LOW1.99	libc6 2.35-0ubuntu3.13 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-45446	LOW1.89	openssl 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.2% Theoretical Threat	Post-Exploit
CVE-2024-56433	LOW1.84	login 1:4.8.1-2ubuntu2.2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2024-56433	LOW1.84	passwd 1:4.8.1-2ubuntu2.2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-5435	LOW1.81	libc-bin 2.35-0ubuntu3.13 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-5435	LOW1.81	libc6 2.35-0ubuntu3.13 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42770	LOW1.81	libssl3 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.2% Theoretical Threat	Post-Exploit
CVE-2026-9076	LOW1.81	libssl3 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42770	LOW1.81	openssl 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.2% Theoretical Threat	Post-Exploit
CVE-2026-9076	LOW1.81	openssl 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.3% Theoretical Threat	Post-Exploit
CVE-2023-29383	LOW1.68	login 1:4.8.1-2ubuntu2.2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2023-29383	LOW1.68	passwd 1:4.8.1-2ubuntu2.2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-4046	LOW1.62	libc-bin 2.35-0ubuntu3.13 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-4046	LOW1.62	libc6 2.35-0ubuntu3.13 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-34743	LOW1.62	liblzma5 5.2.5-2ubuntu1 fixed in 5.2.5-2ubuntu1.1	0.4% Theoretical Threat	Post-Exploit
CVE-2026-42766	LOW1.62	libssl3 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.6% Theoretical Threat	Post-Exploit
CVE-2026-42767	LOW1.62	libssl3 3.0.2-0ubuntu1.23 fixed in 3.0.2-0ubuntu1.25	0.3% Theoretical Threat	Post-Exploit
CVE-2023-50495	NONE0	libncurses6 6.3-2ubuntu0.1 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	libncursesw6 6.3-2ubuntu0.1 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	libtinfo6 6.3-2ubuntu0.1 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	ncurses-base 6.3-2ubuntu0.1 No fix yet	1.0% Theoretical Threat	Not Applicable
CVE-2023-50495	NONE0	ncurses-bin 6.3-2ubuntu0.1 No fix yet	1.0% Theoretical Threat	Not Applicable