Vulnerability Reporttomcat:9.0.118-jdk17-corretto

tomcat:9.0.118-jdk17-corretto-al2tomcat:9.0.118-jdk17-correttotomcat:9.0-jdk17-corretto-al2tomcat:9.0-jdk17-correttotomcat:9-jdk17-corretto-al2tomcat:9-jdk17-corretto

DIGESTsha256:f08f750e56c26293a3ae95bbb290b96f54b63744938087116c182076b005a84c

Executive Summary

Threat ScoreSAFE• Official Docker Hub image with high trust score (100)• Image pinned by digest (immutable) ensuring integrity• No exposed surface vulnerabilities (0 findings)• Only 1 post-exploit vulnerability with low severity (max 2.78)

0/100SAFE

ReputationOFFICIAL• Official Docker Hub Image• Pinned by digest (Immutable)

TRUSTED

This image is safe for production use. It has no exploitable vulnerabilities on the exposed surface, and the only post-exploit finding is a low-severity issue (max CVSS 2.78) that requires prior local access, posing negligible real-world risk for this Tomcat container.

Vulnerabilities

Vulnerability Log

1 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-7598	LOW2.78	libssh2 1.4.3-12.amzn2.2.6 fixed in 1.4.3-12.amzn2.2.7	0.4% Theoretical Threat	Post-Exploit