Vulnerability Reportredpandadata/redpanda:v26.1.5

redpandadata/redpanda:v26.1.5

DIGESTsha256:f9d86102b8030b5a990a09e30ee3f7f3b8c8c677ee3eca921555d882becdeae7

Executive Summary

Threat ScoreCAUTION• High vulnerability density: 148 exposed-surface vulnerabilities, with 17 of medium-high severity (≥6.0) and 2 at critical level (≥7.0).• CVE-2019-9192 (CVSS 7.5) in glibc allows uncontrolled recursion leading to denial of service, remotely exploitable.• CVE-2026-42010 (CVSS 6.66) enables authentication bypass in GnuTLS if RSA-PSK mode is enabled; requires non-default config.• Multiple GnuTLS flaws (CVE-2026-5260, CVE-2026-42013) could cause information disclosure or certificate validation bypass.• Post-exploit vulnerabilities are all low severity (max 4.18, e.g., vim, curl) and do not add significant risk.• Image is from a reliable community publisher (23M+ pulls) but high-severity findings necessitate caution.

74/100CAUTION

ReputationPOPULAR COMMUNITY• High Reputation Community Image (23M+ pulls)• Pinned by digest (Immutable)

RELIABLE

This image carries significant risk; production deployment is highly discouraged without strict compensating controls. An attacker could exploit remote denial-of-service vulnerabilities (e.g., CVE-2019-9192) or, if RSA-PSK is enabled, bypass authentication (CVE-2026-42010) to gain unauthorized access. Disabling RSA-PSK cipher suites fully mitigates CVE-2026-42010. Note that CVE-2019-9192 requires a crafted pattern but is still remotely exploitable, and many other GnuTLS issues (e.g., CVE-2026-5260) may lead to information disclosure. Although the image is popular and trusted, the volume of exposed vulnerabilities demands remediation before safe production use.

Vulnerabilities

Vulnerability Log

393 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2019-9192	HIGH7.5	libc-bin 2.41-12+deb13u2 No fix yet	2.4% Low-Moderate Risk	Directly Exposed
CVE-2019-9192	HIGH7.5	libc6 2.41-12+deb13u2 No fix yet	2.4% Low-Moderate Risk	Directly Exposed
CVE-2026-42013	MEDIUM6.97	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.4% Theoretical Threat	Directly Exposed
CVE-2026-5260	MEDIUM6.97	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.7% Theoretical Threat	Directly Exposed
CVE-2026-42010	MEDIUM6.66	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.8% Theoretical Threat	Directly ExposedContext importance: MEDIUM
CVE-2026-29111	MEDIUM6.63	libsystemd0 257.9-1~deb13u1 fixed in 257.13-1~deb13u1	0.1% Theoretical Threat	Directly Exposed
CVE-2026-29111	MEDIUM6.63	libudev1 257.9-1~deb13u1 fixed in 257.13-1~deb13u1	0.1% Theoretical Threat	Directly Exposed
CVE-2026-33846	MEDIUM6.38	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.9% Theoretical Threat	Directly Exposed
CVE-2026-42009	MEDIUM6.38	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.8% Theoretical Threat	Directly Exposed
CVE-2026-27135	MEDIUM6.38	libnghttp2-14 1.64.0-1.1 fixed in 1.64.0-1.1+deb13u1	0.6% Theoretical Threat	Directly Exposed
CVE-2026-34183	MEDIUM6.38	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.5% Theoretical Threat	Directly Exposed
CVE-2026-34183	MEDIUM6.38	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.5% Theoretical Threat	Directly Exposed
CVE-2026-3833	MEDIUM6.29	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42011	MEDIUM6.29	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.3% Theoretical Threat	Directly Exposed
CVE-2026-34182	MEDIUM6.29	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.2% Theoretical Threat	Directly Exposed
CVE-2026-34182	MEDIUM6.29	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.2% Theoretical Threat	Directly Exposed
CVE-2026-42012	MEDIUM6.03	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4878	MEDIUM5.95	libcap2 1:2.75-10+b8 fixed in 1:2.75-10+deb13u1	0.2% Theoretical Threat	Directly Exposed
CVE-2024-26461	MEDIUM5.9	libgssapi-krb5-2 1.21.3-5 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-26461	MEDIUM5.9	libk5crypto3 1.21.3-5 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-26461	MEDIUM5.9	libkrb5-3 1.21.3-5 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2024-26461	MEDIUM5.9	libkrb5support0 1.21.3-5 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2025-13151	MEDIUM5.9	libtasn1-6 4.20.0-2 No fix yet	1.1% Low-Moderate Risk	Directly Exposed
CVE-2026-22185	MEDIUM5.78	libldap-common 2.6.10+dfsg-1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-22185	MEDIUM5.78	libldap2 2.6.10+dfsg-1 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-4105	MEDIUM5.7	libsystemd0 257.9-1~deb13u1 fixed in 257.13-1~deb13u1	0.1% Theoretical Threat	Directly Exposed
CVE-2026-4105	MEDIUM5.7	libudev1 257.9-1~deb13u1 fixed in 257.13-1~deb13u1	0.1% Theoretical Threat	Directly Exposed
CVE-2026-42014	MEDIUM5.61	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.2% Theoretical Threat	Directly Exposed
CVE-2011-3389	MEDIUM5.59	libgnutls30t64 3.8.9-3+deb13u2 No fix yet	73.3% Actively Exploited	Directly Exposed
CVE-2026-4437	MEDIUM5.52	libc-bin 2.41-12+deb13u2 fixed in 2.41-12+deb13u3	0.3% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc-bin 2.41-12+deb13u2 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-4437	MEDIUM5.52	libc6 2.41-12+deb13u2 fixed in 2.41-12+deb13u3	0.3% Theoretical Threat	Directly Exposed
CVE-2026-6238	MEDIUM5.52	libc6 2.41-12+deb13u2 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-40225	MEDIUM5.44	libsystemd0 257.9-1~deb13u1 fixed in 257.13-1~deb13u1	0.1% Theoretical Threat	Directly Exposed
CVE-2026-40226	MEDIUM5.44	libsystemd0 257.9-1~deb13u1 fixed in 257.13-1~deb13u1	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-40225	MEDIUM5.44	libudev1 257.9-1~deb13u1 fixed in 257.13-1~deb13u1	0.1% Theoretical Threat	Directly Exposed
CVE-2026-40226	MEDIUM5.44	libudev1 257.9-1~deb13u1 fixed in 257.13-1~deb13u1	<0.1% Theoretical Threat	Directly Exposed
CVE-2026-34181	MEDIUM5.35	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.2% Theoretical Threat	Directly Exposed
CVE-2026-42768	MEDIUM5.35	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.4% Theoretical Threat	Directly Exposed
CVE-2026-34181	MEDIUM5.35	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.2% Theoretical Threat	Directly Exposed
CVE-2026-42768	MEDIUM5.35	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.4% Theoretical Threat	Directly Exposed
CVE-2019-1010024	MEDIUM5.3	libc-bin 2.41-12+deb13u2 No fix yet	3.2% Low-Moderate Risk	Directly Exposed
CVE-2019-1010025	MEDIUM5.3	libc-bin 2.41-12+deb13u2 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2019-1010024	MEDIUM5.3	libc6 2.41-12+deb13u2 No fix yet	3.2% Low-Moderate Risk	Directly Exposed
CVE-2019-1010025	MEDIUM5.3	libc6 2.41-12+deb13u2 No fix yet	2.3% Low-Moderate Risk	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libblkid1 2.41-5 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libmount1 2.41-5 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libsmartcols1 2.41-5 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2025-14104	MEDIUM5.18	libuuid1 2.41-5 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc-bin 2.41-12+deb13u2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-5435	MEDIUM5.02	libc6 2.41-12+deb13u2 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-40355	MEDIUM5.02	libgssapi-krb5-2 1.21.3-5 fixed in 1.21.3-5+deb13u1	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40356	MEDIUM5.02	libgssapi-krb5-2 1.21.3-5 fixed in 1.21.3-5+deb13u1	0.5% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libgssapi-krb5-2 1.21.3-5 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-40355	MEDIUM5.02	libk5crypto3 1.21.3-5 fixed in 1.21.3-5+deb13u1	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40356	MEDIUM5.02	libk5crypto3 1.21.3-5 fixed in 1.21.3-5+deb13u1	0.5% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libk5crypto3 1.21.3-5 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-40355	MEDIUM5.02	libkrb5-3 1.21.3-5 fixed in 1.21.3-5+deb13u1	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40356	MEDIUM5.02	libkrb5-3 1.21.3-5 fixed in 1.21.3-5+deb13u1	0.5% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libkrb5-3 1.21.3-5 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-40355	MEDIUM5.02	libkrb5support0 1.21.3-5 fixed in 1.21.3-5+deb13u1	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40356	MEDIUM5.02	libkrb5support0 1.21.3-5 fixed in 1.21.3-5+deb13u1	0.5% Theoretical Threat	Directly Exposed
CVE-2024-26458	MEDIUM5.02	libkrb5support0 1.21.3-5 No fix yet	0.8% Theoretical Threat	Directly Exposed
CVE-2026-42764	MEDIUM5.02	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.7% Theoretical Threat	Directly Exposed
CVE-2026-42769	MEDIUM5.02	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42770	MEDIUM5.02	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.2% Theoretical Threat	Directly Exposed
CVE-2026-9076	MEDIUM5.02	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42764	MEDIUM5.02	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.7% Theoretical Threat	Directly Exposed
CVE-2026-42769	MEDIUM5.02	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Directly Exposed
CVE-2026-42770	MEDIUM5.02	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.2% Theoretical Threat	Directly Exposed
CVE-2026-9076	MEDIUM5.02	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libblkid1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libmount1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libsmartcols1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-7383	MEDIUM4.67	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Directly Exposed
CVE-2022-0563	MEDIUM4.67	libuuid1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-7383	MEDIUM4.67	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Directly Exposed
CVE-2026-27171	MEDIUM4.67	zlib1g 1:1.3.dfsg+really1.3.1-1+b1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libblkid1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-4046	MEDIUM4.5	libc-bin 2.41-12+deb13u2 fixed in 2.41-12+deb13u3	0.4% Theoretical Threat	Directly Exposed
CVE-2026-4046	MEDIUM4.5	libc6 2.41-12+deb13u2 fixed in 2.41-12+deb13u3	0.4% Theoretical Threat	Directly Exposed
CVE-2026-42015	MEDIUM4.5	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.7% Theoretical Threat	Directly Exposed
CVE-2026-34743	MEDIUM4.5	liblzma5 5.8.1-1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libmount1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libsmartcols1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-42766	MEDIUM4.5	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.6% Theoretical Threat	Directly Exposed
CVE-2026-42767	MEDIUM4.5	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Directly Exposed
CVE-2023-31437	MEDIUM4.5	libsystemd0 257.9-1~deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-31438	MEDIUM4.5	libsystemd0 257.9-1~deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-31439	MEDIUM4.5	libsystemd0 257.9-1~deb13u1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2023-31437	MEDIUM4.5	libudev1 257.9-1~deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-31438	MEDIUM4.5	libudev1 257.9-1~deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2023-31439	MEDIUM4.5	libudev1 257.9-1~deb13u1 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-3184	MEDIUM4.5	libuuid1 2.41-5 No fix yet	0.4% Theoretical Threat	Directly Exposed
CVE-2026-42766	MEDIUM4.5	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.6% Theoretical Threat	Directly Exposed
CVE-2026-42767	MEDIUM4.5	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Directly Exposed
CVE-2021-45346	MEDIUM4.3	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	1.6% Low-Moderate Risk	Directly Exposed
CVE-2026-42250	MEDIUM4.25	libbz2-1.0 1.0.8-6 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	libc-bin 2.41-12+deb13u2 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	libc-bin 2.41-12+deb13u2 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5450	MEDIUM4.25	libc6 2.41-12+deb13u2 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-5928	MEDIUM4.25	libc6 2.41-12+deb13u2 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	libgssapi-krb5-2 1.21.3-5 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	libk5crypto3 1.21.3-5 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	libkrb5-3 1.21.3-5 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-11850	MEDIUM4.25	libkrb5support0 1.21.3-5 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-34180	MEDIUM4.25	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.5% Theoretical Threat	Directly Exposed
CVE-2026-34180	MEDIUM4.25	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.5% Theoretical Threat	Directly Exposed
CVE-2020-15719	MEDIUM4.2	libldap-common 2.6.10+dfsg-1 No fix yet	2.4% Low-Moderate Risk	Directly Exposed
CVE-2020-15719	MEDIUM4.2	libldap2 2.6.10+dfsg-1 No fix yet	2.4% Low-Moderate Risk	Directly Exposed
CVE-2026-34982	MEDIUM4.18	vim-tiny 2:9.1.1230-2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-52859	MEDIUM4.18	vim-tiny 2:9.1.1230-2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-34982	MEDIUM4.18	xxd 2:9.1.1230-2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-52859	MEDIUM4.18	xxd 2:9.1.1230-2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-15079	MEDIUM4.13	curl 8.14.1-2+deb13u2 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2025-15079	MEDIUM4.13	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-27456	MEDIUM4	libblkid1 2.41-5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2017-14159	MEDIUM4	libldap-common 2.6.10+dfsg-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2017-14159	MEDIUM4	libldap2 2.6.10+dfsg-1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libmount1 2.41-5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libsmartcols1 2.41-5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2026-27456	MEDIUM4	libuuid1 2.41-5 No fix yet	0.1% Theoretical Threat	Directly Exposed
CVE-2010-4756	MEDIUM4	libc-bin 2.41-12+deb13u2 No fix yet	2.6% Low-Moderate Risk	Directly Exposed
CVE-2010-4756	MEDIUM4	libc6 2.41-12+deb13u2 No fix yet	2.6% Low-Moderate Risk	Directly Exposed
CVE-2026-48962	LOW3.98	perl-base 5.40.1-6 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-28421	LOW3.98	vim-tiny 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-39881	LOW3.98	vim-tiny 2:9.1.1230-2 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-52858	LOW3.98	vim-tiny 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-52860	LOW3.98	vim-tiny 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-28421	LOW3.98	xxd 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-39881	LOW3.98	xxd 2:9.1.1230-2 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-52858	LOW3.98	xxd 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-52860	LOW3.98	xxd 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-5773	LOW3.82	curl 8.14.1-2+deb13u2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW3.82	curl 8.14.1-2+deb13u2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5773	LOW3.82	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6276	LOW3.82	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-34183	LOW3.82	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.5% Theoretical Threat	Post-Exploit
CVE-2026-42497	LOW3.82	perl-base 5.40.1-6 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-9538	LOW3.82	perl-base 5.40.1-6 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-26269	LOW3.82	vim-tiny 2:9.1.1230-2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-26269	LOW3.82	xxd 2:9.1.1230-2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-34182	LOW3.77	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.2% Theoretical Threat	Post-Exploit
CVE-2026-33412	LOW3.72	vim-tiny 2:9.1.1230-2 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-25749	LOW3.72	vim-tiny 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-41411	LOW3.72	vim-tiny 2:9.1.1230-2 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-33412	LOW3.72	xxd 2:9.1.1230-2 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-25749	LOW3.72	xxd 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-41411	LOW3.72	xxd 2:9.1.1230-2 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW3.7	libapt-pkg7.0 3.0.3 No fix yet	1.2% Low-Moderate Risk	Directly Exposed
CVE-2026-35177	LOW3.62	vim-tiny 2:9.1.1230-2 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-35177	LOW3.62	xxd 2:9.1.1230-2 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2005-2541	LOW3.6	tar 1.35+dfsg-3.1 No fix yet	4.0% Low-Moderate Risk	Post-Exploit
CVE-2026-46483	LOW3.57	vim-tiny 2:9.1.1230-2 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-46483	LOW3.57	xxd 2:9.1.1230-2 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2019-1010022	LOW3.53	libc-bin 2.41-12+deb13u2 No fix yet	3.2% Low-Moderate Risk	Post-Exploit
CVE-2019-1010022	LOW3.53	libc6 2.41-12+deb13u2 No fix yet	3.2% Low-Moderate Risk	Post-Exploit
CVE-2025-13034	LOW3.47	curl 8.14.1-2+deb13u2 fixed in 8.14.1-2+deb13u3	0.2% Theoretical Threat	Post-Exploit
CVE-2026-1965	LOW3.47	curl 8.14.1-2+deb13u2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-14819	LOW3.47	curl 8.14.1-2+deb13u2 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-13034	LOW3.47	libcurl4t64 8.14.1-2+deb13u2 fixed in 8.14.1-2+deb13u3	0.2% Theoretical Threat	Post-Exploit
CVE-2026-1965	LOW3.47	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-14819	LOW3.47	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-4438	LOW3.4	libc-bin 2.41-12+deb13u2 fixed in 2.41-12+deb13u3	0.2% Theoretical Threat	Directly Exposed
CVE-2026-4438	LOW3.4	libc6 2.41-12+deb13u2 fixed in 2.41-12+deb13u3	0.2% Theoretical Threat	Directly Exposed
CVE-2026-28419	LOW3.37	vim-tiny 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-28419	LOW3.37	xxd 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-3784	LOW3.31	curl 8.14.1-2+deb13u2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	curl 8.14.1-2+deb13u2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	curl 8.14.1-2+deb13u2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	curl 8.14.1-2+deb13u2 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2026-3784	LOW3.31	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5545	LOW3.31	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6429	LOW3.31	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-14524	LOW3.31	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.6% Theoretical Threat	Post-Exploit
CVE-2025-15649	LOW3.31	perl-base 5.40.1-6 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-3805	LOW3.21	curl 8.14.1-2+deb13u2 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-3805	LOW3.21	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-34181	LOW3.21	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42768	LOW3.21	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.4% Theoretical Threat	Post-Exploit
CVE-2026-5958	LOW3.21	sed 4.9-2 fixed in 4.9-2+deb13u1	0.1% Theoretical Threat	Post-Exploit
CVE-2019-1010023	LOW3.17	libc-bin 2.41-12+deb13u2 No fix yet	3.1% Low-Moderate Risk	Post-Exploit
CVE-2019-1010023	LOW3.17	libc6 2.41-12+deb13u2 No fix yet	3.1% Low-Moderate Risk	Post-Exploit
CVE-2026-3832	LOW3.15	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.3% Theoretical Threat	Directly Exposed
CVE-2026-5419	LOW3.15	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.5% Theoretical Threat	Directly Exposed
CVE-2026-45446	LOW3.15	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.2% Theoretical Threat	Directly Exposed
CVE-2026-45446	LOW3.15	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.2% Theoretical Threat	Directly Exposed
CVE-2025-14104	LOW3.11	bsdutils 1:2.41-5 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	mount 2.41-5 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-14104	LOW3.11	util-linux 2.41-5 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-10966	LOW3.01	curl 8.14.1-2+deb13u2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-10966	LOW3.01	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-42764	LOW3.01	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.7% Theoretical Threat	Post-Exploit
CVE-2026-42769	LOW3.01	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42770	LOW3.01	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.2% Theoretical Threat	Post-Exploit
CVE-2026-9076	LOW3.01	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Post-Exploit
CVE-2026-8376	LOW3	perl-base 5.40.1-6 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-45447	LOW2.92	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	1.4% Low-Moderate Risk	Post-Exploit
CVE-2026-45447	LOW2.92	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	1.4% Low-Moderate Risk	Post-Exploit
CVE-2026-45447	LOW2.92	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	1.4% Low-Moderate Risk	Post-Exploit
CVE-2026-3783	LOW2.91	curl 8.14.1-2+deb13u2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-3783	LOW2.91	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-28417	LOW2.81	vim-tiny 2:9.1.1230-2 No fix yet	1.2% Low-Moderate Risk	Post-Exploit
CVE-2026-28417	LOW2.81	xxd 2:9.1.1230-2 No fix yet	1.2% Low-Moderate Risk	Post-Exploit
CVE-2022-0563	LOW2.8	bsdutils 1:2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	mount 2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-6843	LOW2.8	nano 8.4-1 fixed in 8.4-1+deb13u1	0.1% Theoretical Threat	Post-Exploit
CVE-2026-7383	LOW2.8	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Post-Exploit
CVE-2026-5704	LOW2.8	tar 1.35+dfsg-3.1 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2022-0563	LOW2.8	util-linux 2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-28418	LOW2.8	vim-tiny 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-45130	LOW2.8	vim-tiny 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2017-1000382	LOW2.8	vim-tiny 2:9.1.1230-2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-32249	LOW2.8	vim-tiny 2:9.1.1230-2 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-28418	LOW2.8	xxd 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-45130	LOW2.8	xxd 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2017-1000382	LOW2.8	xxd 2:9.1.1230-2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-32249	LOW2.8	xxd 2:9.1.1230-2 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-70873	LOW2.8	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	0.3% Theoretical Threat	Directly Exposed
CVE-2013-4392	LOW2.8	libsystemd0 257.9-1~deb13u1 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libsystemd0 257.9-1~deb13u1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2013-4392	LOW2.8	libudev1 257.9-1~deb13u1 No fix yet	0.5% Theoretical Threat	Directly Exposed
CVE-2026-40228	LOW2.8	libudev1 257.9-1~deb13u1 No fix yet	0.2% Theoretical Threat	Directly Exposed
CVE-2026-33845	LOW2.78	libgnutls30t64 3.8.9-3+deb13u2 fixed in 3.8.9-3+deb13u4	0.6% Theoretical Threat	Post-Exploit
CVE-2026-7598	LOW2.78	libssh2-1t64 1.11.1-1 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-45445	LOW2.78	libssl3t64 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Post-Exploit
CVE-2026-45445	LOW2.78	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Post-Exploit
CVE-2026-45445	LOW2.78	openssl-provider-legacy 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Post-Exploit
CVE-2026-42496	LOW2.78	perl-base 5.40.1-6 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2018-20796	LOW2.7	libc-bin 2.41-12+deb13u2 No fix yet	5.8% Low-Moderate Risk	Post-Exploit
CVE-2018-20796	LOW2.7	libc6 2.41-12+deb13u2 No fix yet	5.8% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libgssapi-krb5-2 1.21.3-5 No fix yet	2.1% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libk5crypto3 1.21.3-5 No fix yet	2.1% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libkrb5-3 1.21.3-5 No fix yet	2.1% Low-Moderate Risk	Post-Exploit
CVE-2018-5709	LOW2.7	libkrb5support0 1.21.3-5 No fix yet	2.1% Low-Moderate Risk	Post-Exploit
CVE-2015-3276	LOW2.7	libldap-common 2.6.10+dfsg-1 No fix yet	5.3% Low-Moderate Risk	Post-Exploit
CVE-2017-17740	LOW2.7	libldap-common 2.6.10+dfsg-1 No fix yet	7.0% Low-Moderate Risk	Post-Exploit
CVE-2015-3276	LOW2.7	libldap2 2.6.10+dfsg-1 No fix yet	5.3% Low-Moderate Risk	Post-Exploit
CVE-2017-17740	LOW2.7	libldap2 2.6.10+dfsg-1 No fix yet	7.0% Low-Moderate Risk	Post-Exploit
CVE-2026-3184	LOW2.7	bsdutils 1:2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-4873	LOW2.7	curl 8.14.1-2+deb13u2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	curl 8.14.1-2+deb13u2 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	curl 8.14.1-2+deb13u2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-4873	LOW2.7	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-6253	LOW2.7	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-7168	LOW2.7	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	mount 2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-42766	LOW2.7	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.6% Theoretical Threat	Post-Exploit
CVE-2026-42767	LOW2.7	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.3% Theoretical Threat	Post-Exploit
CVE-2026-12087	LOW2.7	perl-base 5.40.1-6 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-3184	LOW2.7	util-linux 2.41-5 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-44656	LOW2.7	vim-tiny 2:9.1.1230-2 No fix yet	0.9% Theoretical Threat	Post-Exploit
CVE-2026-47167	LOW2.7	vim-tiny 2:9.1.1230-2 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-44656	LOW2.7	xxd 2:9.1.1230-2 No fix yet	0.9% Theoretical Threat	Post-Exploit
CVE-2026-47167	LOW2.7	xxd 2:9.1.1230-2 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-47162	LOW2.69	vim-tiny 2:9.1.1230-2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2026-47162	LOW2.69	xxd 2:9.1.1230-2 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2008-4677	LOW2.58	vim-tiny 2:9.1.1230-2 No fix yet	2.0% Low-Moderate Risk	Post-Exploit
CVE-2008-4677	LOW2.58	xxd 2:9.1.1230-2 No fix yet	2.0% Low-Moderate Risk	Post-Exploit
CVE-2026-34180	LOW2.55	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.5% Theoretical Threat	Post-Exploit
CVE-2026-48959	LOW2.55	perl-base 5.40.1-6 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-48961	LOW2.55	perl-base 5.40.1-6 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2007-5686	LOW2.5	passwd 1:4.17.4-2 No fix yet	0.9% Theoretical Threat	Post-Exploit
CVE-2025-14017	LOW2.45	curl 8.14.1-2+deb13u2 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-14017	LOW2.45	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	bsdutils 1:2.41-5 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2017-18018	LOW2.4	coreutils 9.7-3 No fix yet	0.3% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	curl 8.14.1-2+deb13u2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2025-15224	LOW2.4	libcurl4t64 8.14.1-2+deb13u2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	mount 2.41-5 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-27456	LOW2.4	util-linux 2.41-5 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2025-5278	LOW2.24	coreutils 9.7-3 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-28420	LOW2.24	vim-tiny 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42307	LOW2.24	vim-tiny 2:9.1.1230-2 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2026-28420	LOW2.24	xxd 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2026-42307	LOW2.24	xxd 2:9.1.1230-2 No fix yet	0.8% Theoretical Threat	Post-Exploit
CVE-2011-3374	LOW2.22	apt 3.0.3 No fix yet	1.2% Low-Moderate Risk	Post-Exploit
CVE-2025-53905	LOW2.09	vim-tiny 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-53906	LOW2.09	vim-tiny 2:9.1.1230-2 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2025-53905	LOW2.09	xxd 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Post-Exploit
CVE-2025-53906	LOW2.09	xxd 2:9.1.1230-2 No fix yet	0.7% Theoretical Threat	Post-Exploit
CVE-2026-45446	LOW1.89	openssl 3.5.5-1~deb13u2 fixed in 3.5.6-1~deb13u2	0.2% Theoretical Threat	Post-Exploit
CVE-2024-56433	LOW1.84	passwd 1:4.17.4-2 No fix yet	0.4% Theoretical Threat	Post-Exploit
CVE-2011-4116	LOW1.68	perl-base 5.40.1-6 No fix yet	0.5% Theoretical Threat	Post-Exploit
CVE-2026-6842	LOW1.27	nano 8.4-1 fixed in 8.4-1+deb13u1	<0.1% Theoretical Threat	Post-Exploit
CVE-2026-28422	LOW1.12	vim-tiny 2:9.1.1230-2 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-28422	LOW1.12	xxd 2:9.1.1230-2 No fix yet	0.1% Theoretical Threat	Post-Exploit
CVE-2026-47162	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-34982	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2026-52859	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2018-7738	NONE0	bash-completion 1:2.16.0-7 No fix yet	0.5% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	libncursesw6 6.5+20250216-2 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	libtinfo6 6.5+20250216-2 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	ncurses-base 6.5+20250216-2 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2025-69720	NONE0	ncurses-bin 6.5+20250216-2 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2026-28417	NONE0	vim-common 2:9.1.1230-2 No fix yet	1.2% Low-Moderate Risk	Not Applicable
CVE-2026-28421	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-39881	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.6% Theoretical Threat	Not Applicable
CVE-2026-52858	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-52860	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2018-5709	NONE0	krb5-locales 1.21.3-5 No fix yet	2.1% Low-Moderate Risk	Not Applicable
CVE-2026-26269	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-33412	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.7% Theoretical Threat	Not Applicable
CVE-2026-25749	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-41411	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.5% Theoretical Threat	Not Applicable
CVE-2026-35177	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-46483	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.6% Theoretical Threat	Not Applicable
CVE-2026-28419	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-14104	NONE0	liblastlog2-2 2.41-5 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-14104	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-40355	NONE0	krb5-locales 1.21.3-5 fixed in 1.21.3-5+deb13u1	0.5% Theoretical Threat	Not Applicable
CVE-2026-40356	NONE0	krb5-locales 1.21.3-5 fixed in 1.21.3-5+deb13u1	0.5% Theoretical Threat	Not Applicable
CVE-2024-26458	NONE0	krb5-locales 1.21.3-5 No fix yet	0.8% Theoretical Threat	Not Applicable
CVE-2024-26461	NONE0	krb5-locales 1.21.3-5 No fix yet	1.1% Low-Moderate Risk	Not Applicable
CVE-2022-0563	NONE0	liblastlog2-2 2.41-5 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2022-0563	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2026-28418	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-45130	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2017-1000382	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2026-32249	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-3184	NONE0	liblastlog2-2 2.41-5 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2026-3184	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2026-44656	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.9% Theoretical Threat	Not Applicable
CVE-2026-47167	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-11850	NONE0	krb5-locales 1.21.3-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2007-5686	NONE0	login.defs 1:4.17.4-2 No fix yet	0.9% Theoretical Threat	Not Applicable
CVE-2026-54411	NONE0	libpam-modules 1.7.0-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-54411	NONE0	libpam-modules-bin 1.7.0-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-54411	NONE0	libpam-runtime 1.7.0-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-54411	NONE0	libpam0g 1.7.0-5 No fix yet	0.3% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	liblastlog2-2 2.41-5 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-27456	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	0.1% Theoretical Threat	Not Applicable
CVE-2026-28420	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-42307	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.8% Theoretical Threat	Not Applicable
CVE-2008-4677	NONE0	vim-common 2:9.1.1230-2 No fix yet	2.0% Low-Moderate Risk	Not Applicable
CVE-2025-53905	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-53906	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.7% Theoretical Threat	Not Applicable
CVE-2024-56433	NONE0	login.defs 1:4.17.4-2 No fix yet	0.4% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	libncursesw6 6.5+20250216-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	libtinfo6 6.5+20250216-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	ncurses-base 6.5+20250216-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-6141	NONE0	ncurses-bin 6.5+20250216-2 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-28422	NONE0	vim-common 2:9.1.1230-2 No fix yet	0.1% Theoretical Threat	Not Applicable
TEMP-0841856-B18BAF	NONE0	bash 5.2.37-2+b8 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	bsdutils 1:2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	bsdutils 1:2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	bsdutils 1:2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	bsdutils 1:2.41-5 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	libblkid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	libblkid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	libblkid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	libblkid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	liblastlog2-2 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	liblastlog2-2 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	liblastlog2-2 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	liblastlog2-2 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	libmount1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	libmount1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	libmount1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	libmount1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	libsmartcols1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	libsmartcols1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	libsmartcols1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	libsmartcols1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-11822	NONE0	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2026-11824	NONE0	libsqlite3-0 3.46.1-7+deb13u1 No fix yet	0.2% Theoretical Threat	Not Applicable
CVE-2025-15661	NONE0	libssh2-1t64 1.11.1-1 No fix yet	—	Not Applicable
CVE-2026-55199	NONE0	libssh2-1t64 1.11.1-1 No fix yet	—	Not Applicable
CVE-2026-55200	NONE0	libssh2-1t64 1.11.1-1 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	libuuid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	libuuid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	libuuid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	libuuid1 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	login 1:4.16.0-2+really2.41-5 No fix yet	—	Not Applicable
TEMP-0628843-DBAD28	NONE0	login.defs 1:4.17.4-2 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	mount 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	mount 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	mount 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	mount 2.41-5 No fix yet	—	Not Applicable
TEMP-0628843-DBAD28	NONE0	passwd 1:4.17.4-2 No fix yet	—	Not Applicable
CVE-2026-7010	NONE0	perl-base 5.40.1-6 No fix yet	0.2% Theoretical Threat	Not Applicable
TEMP-0517018-A83CE6	NONE0	sysvinit-utils 3.14-4 No fix yet	—	Not Applicable
TEMP-0290435-0B57B5	NONE0	tar 1.35+dfsg-3.1 No fix yet	—	Not Applicable
CVE-2026-53612	NONE0	util-linux 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53613	NONE0	util-linux 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53614	NONE0	util-linux 2.41-5 No fix yet	—	Not Applicable
CVE-2026-53615	NONE0	util-linux 2.41-5 No fix yet	—	Not Applicable
CVE-2026-43961	NONE0	vim-common 2:9.1.1230-2 No fix yet	—	Not Applicable
CVE-2026-43961	NONE0	vim-tiny 2:9.1.1230-2 No fix yet	—	Not Applicable
CVE-2026-43961	NONE0	xxd 2:9.1.1230-2 No fix yet	—	Not Applicable