Vulnerability Reportoliver006/redis_exporter:v1.84.0

oliver006/redis_exporter:v1.84.0

DIGESTsha256:7ef8e9c26638158fa4e7ad60df8c7e53d1919986753d6c1d2d1876b6ec38d87b

Executive Summary

Threat ScoreSAFE• All identified vulnerabilities are low severity (max CVSS 3.6).• No exposed or post-exploit findings exceed critical thresholds.• Image is from a popular community publisher with high trust score (90) and 157M+ pulls.• Image is pinned by digest, ensuring immutability.

0/100SAFE

ReputationPOPULAR COMMUNITY• High Reputation Community Image (157M+ pulls)• Pinned by digest (Immutable)

RELIABLE

This image is safe for production use. Although 10 exposed and 6 post-exploit vulnerabilities were found, all are low severity (max CVSS 3.6) and pose negligible risk in typical deployments. The image has a strong reputation and is immutable due to digest pinning.

Vulnerabilities

Vulnerability Log

16 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-42507	LOW3.6	stdlib v1.26.3 fixed in 1.25.11, 1.26.4	0.4% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-39828	LOW2.69	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.2% Theoretical Threat	Post-Exploit
CVE-2026-39829	LOW2.29	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.3% Theoretical Threat	Post-Exploit
CVE-2026-39830	LOW2.29	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.4% Theoretical Threat	Post-Exploit
CVE-2026-42508	LOW2.26	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.4% Theoretical Threat	Post-Exploit
CVE-2026-46595	LOW2.17	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.4% Theoretical Threat	Post-Exploit
CVE-2026-46598	LOW1.62	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.3% Theoretical Threat	Post-Exploit
CVE-2026-39827	NONE0	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.2% Theoretical Threat	Not Applicable
CVE-2026-39835	NONE0	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.2% Theoretical Threat	Not Applicable
CVE-2026-46597	NONE0	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.4% Theoretical Threat	Not Applicable
CVE-2026-39831	NONE0	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.4% Theoretical Threat	Not Applicable
CVE-2026-39832	NONE0	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.4% Theoretical Threat	Not Applicable
CVE-2026-39833	NONE0	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.4% Theoretical Threat	Not Applicable
CVE-2026-39834	NONE0	golang.org/x/crypto v0.51.0 fixed in 0.52.0	0.5% Theoretical Threat	Not Applicable
CVE-2026-27145	NONE0	stdlib v1.26.3 fixed in 1.25.11, 1.26.4	0.6% Theoretical Threat	Not Applicable
CVE-2026-42504	NONE0	stdlib v1.26.3 fixed in 1.25.11, 1.26.4	0.6% Theoretical Threat	Not Applicable