Vulnerability Reporttomcat:9.0.118-jdk8-corretto

tomcat:9.0.118-jdk8-corretto-al2tomcat:9.0.118-jdk8-correttotomcat:9.0-jdk8-corretto-al2tomcat:9.0-jdk8-correttotomcat:9-jdk8-corretto-al2tomcat:9-jdk8-corretto

DIGESTsha256:06981b3d65bfe1de25060cd69f858d66c517908725a0fa348962ce163599ab39

Executive Summary

Threat ScoreSAFE• Official Docker image with TRUSTED verdict• No exposed vulnerabilities (exposed_total=0)• One low-severity post-exploit vulnerability (max severity 2.78) requires local access• Pinned by digest for immutability

0/100SAFE

ReputationOFFICIAL• Official Docker Hub Image• Pinned by digest (Immutable)

TRUSTED

This image is safe for production use. It has no exposed vulnerabilities and only one low-severity post-exploit finding that requires local access, posing minimal risk. The image is from an official publisher and verified trusted.

Vulnerabilities

Vulnerability Log

1 total

CVE ID	Adjusted Severity	Package	Exploit Probability	Risk Context
CVE-2026-7598	LOW2.78	libssh2 1.4.3-12.amzn2.2.6 fixed in 1.4.3-12.amzn2.2.7	0.4% Theoretical Threat	Post-Exploit