Vulnerability Reportpython:3.11-slim

python:3.11.15-slim-trixiepython:3.11.15-slimpython:3.11-slim-trixiepython:3.11-slim
DIGESTsha256:a3ab0b966bc4e91546a033e22093cb840908979487a9fc0e6e38295747e49ac0

Executive Summary

SAFE

This image is safe for production use. While 37 post-exploit vulnerabilities were identified, none are exposed on the attack surface of the running container. The highest severity post-exploit finding is CVE-2005-2541, rated at 3.6, concerning the `tar` utility. Exploitation of CVE-2005-2541 requires an attacker to first place and then induce the extraction of a malicious archive within the container, which is considered a low contextual risk given the container's primary role of running python3.

Threat Score
0/100
SAFE
Reputation
TRUSTED
Docker Official
BaseImage/
python:3.11-slim
Hardened
Grade
A+
Vulns
0
Verified & secured for production

Vulnerabilities

Vulnerability Log

157 total
CVE IDAdjusted SeverityPackageExploit ProbabilityRisk Context
CVE-2005-2541LOW3.6
tar
1.35+dfsg-3.1
No fix yet
3.8%
Low-Moderate Risk
Post-Exploit
CVE-2025-14104LOW3.11
bsdutils
1:2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2025-14104LOW3.11
mount
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2025-14104LOW3.11
util-linux
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2022-0563LOW2.8
bsdutils
1:2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2022-0563LOW2.8
mount
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-5704LOW2.8
tar
1.35+dfsg-3.1
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2022-0563LOW2.8
util-linux
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-3184LOW2.7
bsdutils
1:2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-3184LOW2.7
mount
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-3184LOW2.7
util-linux
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2007-5686LOW2.5
passwd
1:4.17.4-2
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
bsdutils
1:2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2017-18018LOW2.4
coreutils
9.7-3
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
mount
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
util-linux
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2025-5278LOW2.24
coreutils
9.7-3
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2011-3374LOW2.22
apt
3.0.3
No fix yet
1.5%
Low-Moderate Risk
Post-Exploit
CVE-2024-56433LOW2.16
passwd
1:4.17.4-2
No fix yet
4.5%
Low-Moderate Risk
Post-Exploit
CVE-2019-1010022NONE0
libc-bin
2.41-12+deb13u3
No fix yet
0.1%
Theoretical Threat
Not Applicable
CVE-2019-1010022NONE0
libc6
2.41-12+deb13u3
No fix yet
0.1%
Theoretical Threat
Not Applicable
CVE-2026-8376NONE0
perl-base
5.40.1-6
No fix yet
Not Applicable
CVE-2026-42496NONE0
perl-base
5.40.1-6
No fix yet
Not Applicable
CVE-2019-1010023NONE0
libc-bin
2.41-12+deb13u3
No fix yet
0.3%
Theoretical Threat
Not Applicable
CVE-2019-1010023NONE0
libc6
2.41-12+deb13u3
No fix yet
0.3%
Theoretical Threat
Not Applicable
CVE-2026-23949NONE0
jaraco.context
5.3.0
fixed in 6.1.0
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-69720NONE0
libncursesw6
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-69720NONE0
libtinfo6
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-69720NONE0
ncurses-base
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-69720NONE0
ncurses-bin
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-48962NONE0
perl-base
5.40.1-6
No fix yet
Not Applicable
CVE-2018-20796NONE0
libc-bin
2.41-12+deb13u3
No fix yet
1.5%
Low-Moderate Risk
Not Applicable
CVE-2019-9192NONE0
libc-bin
2.41-12+deb13u3
No fix yet
0.8%
Theoretical Threat
Not Applicable
CVE-2018-20796NONE0
libc6
2.41-12+deb13u3
No fix yet
1.5%
Low-Moderate Risk
Not Applicable
CVE-2019-9192NONE0
libc6
2.41-12+deb13u3
No fix yet
0.8%
Theoretical Threat
Not Applicable
CVE-2026-42497NONE0
perl-base
5.40.1-6
No fix yet
Not Applicable
CVE-2026-9538NONE0
perl-base
5.40.1-6
No fix yet
Not Applicable
CVE-2026-6238NONE0
libc-bin
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-6238NONE0
libc6
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-14104NONE0
libblkid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-14104NONE0
liblastlog2-2
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-14104NONE0
libmount1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-14104NONE0
libsmartcols1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-14104NONE0
libuuid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-14104NONE0
login
1:4.16.0-2+really2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-5435NONE0
libc-bin
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-5435NONE0
libc6
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-6357NONE0
pip
24.0
fixed in 26.1
<0.1%
Theoretical Threat
Not Applicable
CVE-2022-0563NONE0
libblkid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2022-0563NONE0
liblastlog2-2
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2022-0563NONE0
libmount1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2022-0563NONE0
libsmartcols1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2022-0563NONE0
libuuid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2022-0563NONE0
login
1:4.16.0-2+really2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-27171NONE0
zlib1g
1:1.3.dfsg+really1.3.1-1+b1
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-24049NONE0
wheel
0.45.1
fixed in 0.46.2
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-3184NONE0
libblkid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2019-1010024NONE0
libc-bin
2.41-12+deb13u3
No fix yet
0.6%
Theoretical Threat
Not Applicable
CVE-2019-1010025NONE0
libc-bin
2.41-12+deb13u3
No fix yet
0.8%
Theoretical Threat
Not Applicable
CVE-2019-1010024NONE0
libc6
2.41-12+deb13u3
No fix yet
0.6%
Theoretical Threat
Not Applicable
CVE-2019-1010025NONE0
libc6
2.41-12+deb13u3
No fix yet
0.8%
Theoretical Threat
Not Applicable
CVE-2026-3184NONE0
liblastlog2-2
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-34743NONE0
liblzma5
5.8.1-1
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-3184NONE0
libmount1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-3184NONE0
libsmartcols1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2023-31437NONE0
libsystemd0
257.13-1~deb13u1
No fix yet
0.2%
Theoretical Threat
Not Applicable
CVE-2023-31438NONE0
libsystemd0
257.13-1~deb13u1
No fix yet
0.1%
Theoretical Threat
Not Applicable
CVE-2023-31439NONE0
libsystemd0
257.13-1~deb13u1
No fix yet
0.1%
Theoretical Threat
Not Applicable
CVE-2023-31437NONE0
libudev1
257.13-1~deb13u1
No fix yet
0.2%
Theoretical Threat
Not Applicable
CVE-2023-31438NONE0
libudev1
257.13-1~deb13u1
No fix yet
0.1%
Theoretical Threat
Not Applicable
CVE-2023-31439NONE0
libudev1
257.13-1~deb13u1
No fix yet
0.1%
Theoretical Threat
Not Applicable
CVE-2026-3184NONE0
libuuid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-3184NONE0
login
1:4.16.0-2+really2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-8869NONE0
pip
24.0
fixed in 25.3
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-42250NONE0
libbz2-1.0
1.0.8-6
No fix yet
Not Applicable
CVE-2026-5450NONE0
libc-bin
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-5928NONE0
libc-bin
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-5450NONE0
libc6
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-5928NONE0
libc6
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-3219NONE0
pip
24.0
fixed in 26.1
<0.1%
Theoretical Threat
Not Applicable
CVE-2007-5686NONE0
login.defs
1:4.17.4-2
No fix yet
0.3%
Theoretical Threat
Not Applicable
CVE-2026-27456NONE0
libblkid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-27456NONE0
liblastlog2-2
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-27456NONE0
libmount1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-27456NONE0
libsmartcols1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-27456NONE0
libuuid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-27456NONE0
login
1:4.16.0-2+really2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2021-45346NONE0
libsqlite3-0
3.46.1-7+deb13u1
No fix yet
0.3%
Theoretical Threat
Not Applicable
CVE-2010-4756NONE0
libc-bin
2.41-12+deb13u3
No fix yet
0.4%
Theoretical Threat
Not Applicable
CVE-2010-4756NONE0
libc6
2.41-12+deb13u3
No fix yet
0.4%
Theoretical Threat
Not Applicable
CVE-2026-1703NONE0
pip
24.0
fixed in 26.0
<0.1%
Theoretical Threat
Not Applicable
CVE-2011-3374NONE0
libapt-pkg7.0
3.0.3
No fix yet
1.5%
Low-Moderate Risk
Not Applicable
CVE-2024-56433NONE0
login.defs
1:4.17.4-2
No fix yet
4.5%
Low-Moderate Risk
Not Applicable
CVE-2025-6141NONE0
libncursesw6
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-70873NONE0
libsqlite3-0
3.46.1-7+deb13u1
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2013-4392NONE0
libsystemd0
257.13-1~deb13u1
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-40228NONE0
libsystemd0
257.13-1~deb13u1
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-6141NONE0
libtinfo6
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2013-4392NONE0
libudev1
257.13-1~deb13u1
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-40228NONE0
libudev1
257.13-1~deb13u1
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-6141NONE0
ncurses-base
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-6141NONE0
ncurses-bin
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2011-4116NONE0
perl-base
5.40.1-6
No fix yet
0.2%
Theoretical Threat
Not Applicable
TEMP-0841856-B18BAFNONE0
bash
5.2.37-2+b9
No fix yet
Not Applicable
CVE-2026-34180NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-34181NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-34182NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-34183NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42764NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42766NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42767NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42768NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42769NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42770NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-45445NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-45446NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-45447NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-7383NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-9076NONE0
libssl3t64
3.5.6-1~deb13u1
No fix yet
Not Applicable
TEMP-0628843-DBAD28NONE0
login.defs
1:4.17.4-2
No fix yet
Not Applicable
CVE-2026-34180NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-34181NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-34182NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-34183NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42764NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42766NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42767NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42768NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42769NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42770NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-45445NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-45446NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-45447NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-7383NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-9076NONE0
openssl
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-34180NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-34181NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-34182NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-34183NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42764NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42766NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42767NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42768NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42769NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-42770NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-45445NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-45446NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-45447NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-7383NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
CVE-2026-9076NONE0
openssl-provider-legacy
3.5.6-1~deb13u1
No fix yet
Not Applicable
TEMP-0628843-DBAD28NONE0
passwd
1:4.17.4-2
No fix yet
Not Applicable
CVE-2026-48959NONE0
perl-base
5.40.1-6
No fix yet
Not Applicable
CVE-2025-15649NONE0
perl-base
5.40.1-6
No fix yet
Not Applicable
CVE-2026-7010NONE0
perl-base
5.40.1-6
No fix yet
Not Applicable
CVE-2026-48961NONE0
perl-base
5.40.1-6
No fix yet
Not Applicable
TEMP-0517018-A83CE6NONE0
sysvinit-utils
3.14-4
No fix yet
Not Applicable
TEMP-0290435-0B57B5NONE0
tar
1.35+dfsg-3.1
No fix yet
Not Applicable