docker.io/grafana/agent:v0.43.4 linux/amd64

docker.io/grafana/agent:v0.43.4 - Trivy安全扫描结果 扫描时间: 2025-01-07 19:51
全部漏洞信息
低危漏洞:7 中危漏洞:10 高危漏洞:1 严重漏洞:1

系统OS: ubuntu 24.04 扫描引擎: Trivy 扫描时间: 2025-01-07 19:51

docker.io/grafana/agent:v0.43.4 (ubuntu 24.04) (ubuntu)
低危漏洞:7 中危漏洞:8 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libpam-modules CVE-2024-10041 中危 1.5.3-5ubuntu5.1 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules CVE-2024-10963 中危 1.5.3-5ubuntu5.1 pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam-modules-bin CVE-2024-10041 中危 1.5.3-5ubuntu5.1 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules-bin CVE-2024-10963 中危 1.5.3-5ubuntu5.1 pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam-runtime CVE-2024-10041 中危 1.5.3-5ubuntu5.1 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-runtime CVE-2024-10963 中危 1.5.3-5ubuntu5.1 pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam0g CVE-2024-10041 中危 1.5.3-5ubuntu5.1 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam0g CVE-2024-10963 中危 1.5.3-5ubuntu5.1 pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libc6 CVE-2016-20013 低危 2.39-0ubuntu8.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
libgcrypt20 CVE-2024-2236 低危 1.10.3-2build1 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15
coreutils CVE-2016-2781 低危 9.4-3ubuntu6 coreutils: Non-privileged session can escape to the parent session in chroot

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
gpgv CVE-2022-3219 低危 2.4.4-2ubuntu17 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libc-bin CVE-2016-20013 低危 2.39-0ubuntu8.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
libssl3t64 CVE-2024-41996 低危 3.0.13-0ubuntu3.4 openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996

镜像层: sha256:687d50f2f6a697da02e05f2b2b9cb05c1d551f37c404ebe55fdec44b0ae8aa5c

发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
openssl CVE-2024-41996 低危 3.0.13-0ubuntu3.4 openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996

镜像层: sha256:4903af0120c474cf4b7713cf8e16115fc385c9a50f8c6048d8f5d7906c1c2522

发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
usr/bin/grafana-agent (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:1
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
golang.org/x/crypto CVE-2024-45337 严重 v0.24.0 0.31.0 golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45337

镜像层: sha256:67c0870a645e13f1c4bed1a484ed3e350da85d294bab57132b2624dedca09f40

发布日期: 2024-12-12 02:02 修改: 2024-12-12 21:15
golang.org/x/net CVE-2024-45338 高危 v0.26.0 0.33.0 golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45338

镜像层: sha256:67c0870a645e13f1c4bed1a484ed3e350da85d294bab57132b2624dedca09f40

发布日期: 2024-12-18 21:15 修改: 2024-12-31 20:16
github.com/grafana/loki CVE-2021-36156 中危 v1.6.2-0.20240510183741-cef4c2826b4b 2.3.0 loki: Path traversal in Grafana Loki

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36156

镜像层: sha256:67c0870a645e13f1c4bed1a484ed3e350da85d294bab57132b2624dedca09f40

发布日期: 2021-08-03 15:15 修改: 2021-09-14 18:46
github.com/open-telemetry/opentelemetry-collector-contrib/extension/bearertokenauthextension CVE-2024-42368 中危 v0.96.0 0.107.0 bearertokenauthextension: Observable Timing Discrepancy in github.com/open-telemetry/opentelemetry-collector-contrib/extension/bearertokenauthextension

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-42368

镜像层: sha256:67c0870a645e13f1c4bed1a484ed3e350da85d294bab57132b2624dedca09f40

发布日期: 2024-08-13 20:15 修改: 2024-08-14 02:07