docker.io/n8nio/n8n:2.4.5 linux/amd64

docker.io/n8nio/n8n:2.4.5 - Trivy安全扫描结果 扫描时间: 2026-01-23 11:51
全部漏洞信息
低危漏洞:4 中危漏洞:0 高危漏洞:5 严重漏洞:0

系统OS: alpine 3.22 扫描引擎: Trivy 扫描时间: 2026-01-23 11:51

docker.io/n8nio/n8n:2.4.5 (alpine 3.22) (alpine)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
Node.js (node-pkg)
低危漏洞:4 中危漏洞:0 高危漏洞:5 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
@modelcontextprotocol/sdk CVE-2026-0621 高危 1.24.0 1.25.2 Anthropic's MCP TypeScript SDK has a ReDoS vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0621

镜像层: sha256:339d77d488ab25f19ccc2cb168771ea972fe6a18c7b89283bab1651ba186f3f6

发布日期: 2026-01-05 21:16 修改: 2026-01-08 18:09
tar CVE-2026-23745 高危 6.2.1 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:339d77d488ab25f19ccc2cb168771ea972fe6a18c7b89283bab1651ba186f3f6

发布日期: 2026-01-16 22:16 修改: 2026-01-16 22:16
tar CVE-2026-23950 高危 6.2.1 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:339d77d488ab25f19ccc2cb168771ea972fe6a18c7b89283bab1651ba186f3f6

发布日期: 2026-01-20 01:15 修改: 2026-01-20 01:15
tar CVE-2026-23745 高危 7.5.2 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:1303bfc8f4c74be6fd64d704cbaa85ab5e2cf8e3cd1cd7b09c645bfa21d22a63

发布日期: 2026-01-16 22:16 修改: 2026-01-16 22:16
tar CVE-2026-23950 高危 7.5.2 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:1303bfc8f4c74be6fd64d704cbaa85ab5e2cf8e3cd1cd7b09c645bfa21d22a63

发布日期: 2026-01-20 01:15 修改: 2026-01-20 01:15
@smithy/config-resolver GHSA-6475-r3vj-m8vf 低危 4.1.2 4.4.0 AWS SDK for JavaScript v3 adopted defense in depth enhancement for region parameter value

漏洞详情: https://github.com/advisories/GHSA-6475-r3vj-m8vf

镜像层: sha256:339d77d488ab25f19ccc2cb168771ea972fe6a18c7b89283bab1651ba186f3f6

发布日期: 2026-01-08 21:52 修改: 2026-01-08 21:52
diff CVE-2026-24001 低危 8.0.2 8.0.3, 5.2.2, 4.0.4 jsdiff has a Denial of Service vulnerability in parsePatch and applyPatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24001

镜像层: sha256:1303bfc8f4c74be6fd64d704cbaa85ab5e2cf8e3cd1cd7b09c645bfa21d22a63

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
undici CVE-2026-22036 低危 6.21.3 7.18.2, 6.23.0 undici: Undici: Denial of Service via excessive decompression steps

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22036

镜像层: sha256:339d77d488ab25f19ccc2cb168771ea972fe6a18c7b89283bab1651ba186f3f6

发布日期: 2026-01-14 19:16 修改: 2026-01-21 14:56
undici CVE-2026-22036 低危 7.16.0 7.18.2, 6.23.0 undici: Undici: Denial of Service via excessive decompression steps

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22036

镜像层: sha256:339d77d488ab25f19ccc2cb168771ea972fe6a18c7b89283bab1651ba186f3f6

发布日期: 2026-01-14 19:16 修改: 2026-01-21 14:56