docker.io/kuingsmile/piclist:v1.9.10 linux/amd64

docker.io/kuingsmile/piclist:v1.9.10 - Trivy安全扫描结果 扫描时间: 2025-02-07 22:14
全部漏洞信息
低危漏洞:0 中危漏洞:6 高危漏洞:7 严重漏洞:2

系统OS: alpine 3.21.0 扫描引擎: Trivy 扫描时间: 2025-02-07 22:14

docker.io/kuingsmile/piclist:v1.9.10 (alpine 3.21.0) (alpine)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
Node.js (node-pkg)
低危漏洞:0 中危漏洞:6 高危漏洞:7 严重漏洞:2
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
ejs CVE-2022-29078 严重 2.7.4 3.1.7 ejs: server-side template injection in outputFunctionName

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29078

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2022-04-25 15:15 修改: 2023-08-08 14:22
ejs CVE-2022-29078 严重 2.7.4 3.1.7 ejs: server-side template injection in outputFunctionName

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29078

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2022-04-25 15:15 修改: 2023-08-08 14:22
cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:6335126e16759c2f5649e1316cf0dfbfb18ba4193e97d281654b6d5d692c3b4b

发布日期: 2024-11-08 05:15 修改: 2024-11-19 14:15
file-type CVE-2022-36313 高危 16.2.0 16.5.4, 17.1.3 file-type: a malformed MKV file could cause the file type detector to get caught in an infinite loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36313

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2022-07-21 16:15 修改: 2022-10-27 13:25
file-type CVE-2022-36313 高危 16.2.0 16.5.4, 17.1.3 file-type: a malformed MKV file could cause the file type detector to get caught in an infinite loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36313

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2022-07-21 16:15 修改: 2022-10-27 13:25
git-clone CVE-2022-25900 高危 0.1.0 Command injection in git-clone

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25900

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2022-07-01 20:15 修改: 2023-08-08 14:21
git-clone CVE-2022-25900 高危 0.1.0 Command injection in git-clone

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25900

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2022-07-01 20:15 修改: 2023-08-08 14:21
http-cache-semantics CVE-2022-25881 高危 3.8.1 4.1.1 http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25881

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2023-01-31 05:15 修改: 2023-11-07 03:44
http-cache-semantics CVE-2022-25881 高危 3.8.1 4.1.1 http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25881

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2023-01-31 05:15 修改: 2023-11-07 03:44
ejs CVE-2024-33883 中危 2.7.4 3.1.10 The ejs (aka Embedded JavaScript templates) package before 3.1.10 for ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33883

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2024-04-28 16:15 修改: 2024-08-01 13:52
ejs CVE-2024-33883 中危 2.7.4 3.1.10 The ejs (aka Embedded JavaScript templates) package before 3.1.10 for ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33883

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2024-04-28 16:15 修改: 2024-08-01 13:52
got CVE-2022-33987 中危 8.3.2 12.1.0, 11.8.5 nodejs-got: missing verification of requested URLs allows redirects to UNIX sockets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-33987

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2022-06-18 21:15 修改: 2022-06-28 16:15
got CVE-2022-33987 中危 8.3.2 12.1.0, 11.8.5 nodejs-got: missing verification of requested URLs allows redirects to UNIX sockets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-33987

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2022-06-18 21:15 修改: 2022-06-28 16:15
axios CVE-2023-45857 中危 0.27.2 1.6.0, 0.28.0 axios: exposure of confidential data stored in cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45857

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2023-11-08 21:15 修改: 2024-06-21 19:15
axios CVE-2023-45857 中危 0.27.2 1.6.0, 0.28.0 axios: exposure of confidential data stored in cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45857

镜像层: sha256:3abb0c990466984d1bbfe80157a4a639e2111cf4e8b38c71dd374d4e58b0fe03

发布日期: 2023-11-08 21:15 修改: 2024-06-21 19:15