Vulnerability Reportpython:3.12-slim

python:3.12.13-slim-trixiepython:3.12.13-slimpython:3.12-slim-trixiepython:3.12-slim
DIGESTsha256:d764629ce0ddd8c71fd371e9901efb324a95789d2315a47db7e4d27e78f1b0e9

Executive Summary

NEEDS_ATTENTION

This image is acceptable for production, but remediating the identified vulnerabilities is recommended to reduce the attack surface. The most significant concern is CVE-2018-20796, a glibc vulnerability with a severity of 6.0, which could allow a denial of service if the Python application processes specially crafted untrusted regular expressions. This vulnerability is highly relevant given the common use of regular expressions in Python applications handling external input. While 47 exposed and 52 post-exploit vulnerabilities exist, most are of lower severity or have low practical impact in this container's context. The image's status as an Official Docker Hub image with immutable pinning also provides a strong foundation of trust.

Threat Score
25/100
NEEDS_ATTENTION
Reputation
TRUSTED
Docker Official
BaseImage/
python:3.12-slim
Hardened
Grade
A+
Vulns
0
Verified & secured for production

Vulnerabilities

Vulnerability Log

112 total
CVE IDAdjusted SeverityPackageExploit ProbabilityRisk Context
CVE-2018-20796MEDIUM6
libc-bin
2.41-12+deb13u3
No fix yet
1.5%
Low-Moderate Risk
Directly ExposedContext importance: MEDIUM
CVE-2018-20796MEDIUM6
libc6
2.41-12+deb13u3
No fix yet
1.5%
Low-Moderate Risk
Directly ExposedContext importance: MEDIUM
CVE-2025-14104MEDIUM5.18
libblkid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2025-14104MEDIUM5.18
libmount1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2025-14104MEDIUM5.18
libsmartcols1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2025-14104MEDIUM5.18
libuuid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2019-9192MEDIUM5.1
libc-bin
2.41-12+deb13u3
No fix yet
0.8%
Theoretical Threat
Directly ExposedContext importance: MEDIUM
CVE-2019-9192MEDIUM5.1
libc6
2.41-12+deb13u3
No fix yet
0.8%
Theoretical Threat
Directly ExposedContext importance: MEDIUM
CVE-2019-1010022MEDIUM5
libc-bin
2.41-12+deb13u3
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2019-1010022MEDIUM5
libc6
2.41-12+deb13u3
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-42250MEDIUM5
libbz2-1.0
1.0.8-6
No fix yet
Directly Exposed
CVE-2026-48962MEDIUM4.68
perl-base
5.40.1-6
No fix yet
Post-Exploit
CVE-2022-0563MEDIUM4.67
libblkid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2022-0563MEDIUM4.67
libmount1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2022-0563MEDIUM4.67
libsmartcols1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2022-0563MEDIUM4.67
libuuid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-27171MEDIUM4.67
zlib1g
1:1.3.dfsg+really1.3.1-1+b1
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-3184MEDIUM4.5
libblkid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2019-1010025MEDIUM4.5
libc6
2.41-12+deb13u3
No fix yet
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-34743MEDIUM4.5
liblzma5
5.8.1-1
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-3184MEDIUM4.5
libmount1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-3184MEDIUM4.5
libsmartcols1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2023-31437MEDIUM4.5
libsystemd0
257.13-1~deb13u1
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2023-31438MEDIUM4.5
libsystemd0
257.13-1~deb13u1
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2023-31439MEDIUM4.5
libsystemd0
257.13-1~deb13u1
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2023-31437MEDIUM4.5
libudev1
257.13-1~deb13u1
No fix yet
0.2%
Theoretical Threat
Directly Exposed
CVE-2023-31438MEDIUM4.5
libudev1
257.13-1~deb13u1
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2023-31439MEDIUM4.5
libudev1
257.13-1~deb13u1
No fix yet
0.1%
Theoretical Threat
Directly Exposed
CVE-2026-3184MEDIUM4.5
libuuid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-5450MEDIUM4.25
libc-bin
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-5928MEDIUM4.25
libc-bin
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-5450MEDIUM4.25
libc6
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-5928MEDIUM4.25
libc6
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libblkid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libmount1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libsmartcols1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-27456MEDIUM4
libuuid1
2.41-5
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2025-69720LOW3.98
ncurses-bin
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2011-3374LOW3.7
libapt-pkg7.0
3.0.3
No fix yet
1.5%
Low-Moderate Risk
Directly Exposed
CVE-2021-45346LOW3.65
libsqlite3-0
3.46.1-7+deb13u1
No fix yet
0.3%
Theoretical Threat
Directly Exposed
CVE-2005-2541LOW3.6
tar
1.35+dfsg-3.1
No fix yet
3.8%
Low-Moderate Risk
Post-Exploit
CVE-2026-8376LOW3.53
perl-base
5.40.1-6
No fix yet
Post-Exploit
CVE-2010-4756LOW3.4
libc-bin
2.41-12+deb13u3
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2010-4756LOW3.4
libc6
2.41-12+deb13u3
No fix yet
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-42496LOW3.28
perl-base
5.40.1-6
No fix yet
Post-Exploit
CVE-2025-14104LOW3.11
bsdutils
1:2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2025-14104LOW3.11
login
1:4.16.0-2+really2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2025-14104LOW3.11
mount
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2025-14104LOW3.11
util-linux
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-6357LOW2.96
pip
25.0.1
fixed in 26.1
<0.1%
Theoretical Threat
Post-Exploit
CVE-2022-0563LOW2.8
bsdutils
1:2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2022-0563LOW2.8
login
1:4.16.0-2+really2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2022-0563LOW2.8
mount
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-5704LOW2.8
tar
1.35+dfsg-3.1
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2022-0563LOW2.8
util-linux
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2025-70873LOW2.8
libsqlite3-0
3.46.1-7+deb13u1
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2013-4392LOW2.8
libsystemd0
257.13-1~deb13u1
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-40228LOW2.8
libsystemd0
257.13-1~deb13u1
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2013-4392LOW2.8
libudev1
257.13-1~deb13u1
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-40228LOW2.8
libudev1
257.13-1~deb13u1
No fix yet
<0.1%
Theoretical Threat
Directly Exposed
CVE-2026-42497LOW2.7
perl-base
5.40.1-6
No fix yet
Post-Exploit
CVE-2026-9538LOW2.7
perl-base
5.40.1-6
No fix yet
Post-Exploit
CVE-2026-3184LOW2.7
bsdutils
1:2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-3184LOW2.7
login
1:4.16.0-2+really2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-3184LOW2.7
mount
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-3184LOW2.7
util-linux
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2025-8869LOW2.7
pip
25.0.1
fixed in 25.3
<0.1%
Theoretical Threat
Post-Exploit
CVE-2019-1010023LOW2.69
libc-bin
2.41-12+deb13u3
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2019-1010023LOW2.69
libc6
2.41-12+deb13u3
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-3219LOW2.55
pip
25.0.1
fixed in 26.1
<0.1%
Theoretical Threat
Post-Exploit
CVE-2007-5686LOW2.5
passwd
1:4.17.4-2
No fix yet
0.3%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
bsdutils
1:2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2017-18018LOW2.4
coreutils
9.7-3
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
login
1:4.16.0-2+really2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
mount
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-27456LOW2.4
util-linux
2.41-5
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2025-5278LOW2.24
coreutils
9.7-3
No fix yet
0.1%
Theoretical Threat
Post-Exploit
CVE-2011-3374LOW2.22
apt
3.0.3
No fix yet
1.5%
Low-Moderate Risk
Post-Exploit
CVE-2024-56433LOW2.16
passwd
1:4.17.4-2
No fix yet
4.5%
Low-Moderate Risk
Post-Exploit
CVE-2026-6238LOW1.99
libc-bin
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-6238LOW1.99
libc6
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-1703LOW1.99
pip
25.0.1
fixed in 26.0
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-5435LOW1.81
libc-bin
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2026-5435LOW1.81
libc6
2.41-12+deb13u3
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2025-6141LOW1.68
ncurses-bin
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Post-Exploit
CVE-2011-4116LOW1.68
perl-base
5.40.1-6
No fix yet
0.2%
Theoretical Threat
Post-Exploit
CVE-2019-1010024LOW1.62
libc-bin
2.41-12+deb13u3
No fix yet
0.6%
Theoretical Threat
Post-Exploit
CVE-2019-1010025LOW1.62
libc-bin
2.41-12+deb13u3
No fix yet
0.8%
Theoretical Threat
Post-Exploit
CVE-2019-1010024LOW1.62
libc6
2.41-12+deb13u3
No fix yet
0.6%
Theoretical Threat
Post-Exploit
CVE-2025-69720NONE0
libncursesw6
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-69720NONE0
libtinfo6
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-69720NONE0
ncurses-base
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-14104NONE0
liblastlog2-2
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2022-0563NONE0
liblastlog2-2
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-3184NONE0
liblastlog2-2
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2007-5686NONE0
login.defs
1:4.17.4-2
No fix yet
0.3%
Theoretical Threat
Not Applicable
CVE-2026-27456NONE0
liblastlog2-2
2.41-5
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2024-56433NONE0
login.defs
1:4.17.4-2
No fix yet
4.5%
Low-Moderate Risk
Not Applicable
CVE-2025-6141NONE0
libncursesw6
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-6141NONE0
libtinfo6
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2025-6141NONE0
ncurses-base
6.5+20250216-2
No fix yet
<0.1%
Theoretical Threat
Not Applicable
TEMP-0841856-B18BAFNONE0
bash
5.2.37-2+b9
No fix yet
Not Applicable
CVE-2026-11822NONE0
libsqlite3-0
3.46.1-7+deb13u1
No fix yet
Not Applicable
CVE-2026-11824NONE0
libsqlite3-0
3.46.1-7+deb13u1
No fix yet
Not Applicable
TEMP-0628843-DBAD28NONE0
login.defs
1:4.17.4-2
No fix yet
Not Applicable
TEMP-0628843-DBAD28NONE0
passwd
1:4.17.4-2
No fix yet
Not Applicable
CVE-2026-48959NONE0
perl-base
5.40.1-6
No fix yet
Not Applicable
CVE-2025-15649NONE0
perl-base
5.40.1-6
No fix yet
Not Applicable
CVE-2026-7010NONE0
perl-base
5.40.1-6
No fix yet
<0.1%
Theoretical Threat
Not Applicable
CVE-2026-48961NONE0
perl-base
5.40.1-6
No fix yet
Not Applicable
TEMP-0517018-A83CE6NONE0
sysvinit-utils
3.14-4
No fix yet
Not Applicable
TEMP-0290435-0B57B5NONE0
tar
1.35+dfsg-3.1
No fix yet
Not Applicable