docker.io/2fauth/2fauth:latest linux/amd64

docker.io/2fauth/2fauth:latest - Trivy安全扫描结果 扫描时间: 2024-11-13 19:47
全部漏洞信息
低危漏洞:3 中危漏洞:2 高危漏洞:3 严重漏洞:0

系统OS: alpine 3.19.4 扫描引擎: Trivy 扫描时间: 2024-11-13 19:47

docker.io/2fauth/2fauth:latest (alpine 3.19.4) (alpine)
低危漏洞:2 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libcrypto3 CVE-2024-9143 低危 3.1.7-r0 3.1.7-r1 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:94b0f5987cb71badf41e0e98ad0305e7ae36e2f5a4c92c26f6a7b42eb2303ba2

发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
libssl3 CVE-2024-9143 低危 3.1.7-r0 3.1.7-r1 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:94b0f5987cb71badf41e0e98ad0305e7ae36e2f5a4c92c26f6a7b42eb2303ba2

发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
srv/vendor/composer/installed.json (composer-vendor)
低危漏洞:1 中危漏洞:0 高危漏洞:2 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
laravel/framework CVE-2024-52301 高危 v11.23.5 6.20.45, 7.30.7, 8.83.28, 9.52.17, 10.48.23, 11.31.0 Laravel environment manipulation via query string

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52301

镜像层: sha256:28a6e120c80a9537eb8ffc00ca3aedea082dcd739c4f8f8021c611b9f313eb60

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
symfony/process CVE-2024-51736 高危 v7.1.5 5.3.0, 6.2.0, 6.4.14, 7.1.0, 3.0.0, 5.0.0, 6.3.0, 7.1.7, 4.0.0, 5.4.46, 6.1.0, 5.1.0, 5.2.0, 5.4.0, 6.4.0 CVE-2024-51736: Command execution hijack on Windows with Process class

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-51736

镜像层: sha256:28a6e120c80a9537eb8ffc00ca3aedea082dcd739c4f8f8021c611b9f313eb60

发布日期: 2024-11-06 21:15 修改: 2024-11-08 19:01
symfony/http-foundation CVE-2024-50345 低危 v7.1.5 5.2.0, 5.4.0, 3.0.0, 7.1.0, 6.4.14, 7.1.7, 4.0.0, 5.0.0, 5.1.0, 5.3.0, 6.1.0, 5.4.46, 6.2.0, 6.3.0, 6.4.0 symfony/http-foundation is a module for the Symphony PHP framework whi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50345

镜像层: sha256:28a6e120c80a9537eb8ffc00ca3aedea082dcd739c4f8f8021c611b9f313eb60

发布日期: 2024-11-06 21:15 修改: 2024-11-08 19:01
usr/local/bin/supervisord (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
github.com/prometheus/client_golang CVE-2022-21698 高危 v1.10.0 1.11.1 prometheus/client_golang: Denial of service using InstrumentHandlerCounter

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21698

镜像层: sha256:53f164f9e75063b96077d1332829fee01625cd81967d365cdcd0366d25991118

发布日期: 2022-02-15 16:15 修改: 2023-11-07 03:43
golang.org/x/sys CVE-2022-29526 中危 v0.0.0-20210503080704-8803ae5d1324 0.0.0-20220412211240-33da011f77ad golang: syscall: faccessat checks wrong group

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29526

镜像层: sha256:53f164f9e75063b96077d1332829fee01625cd81967d365cdcd0366d25991118

发布日期: 2022-06-23 17:15 修改: 2023-11-07 03:46
google.golang.org/protobuf CVE-2024-24786 中危 v1.26.0 1.33.0 golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24786

镜像层: sha256:53f164f9e75063b96077d1332829fee01625cd81967d365cdcd0366d25991118

发布日期: 2024-03-05 23:15 修改: 2024-11-07 17:35