docker.io/prom/prometheus:v2.53.3 linux/amd64

docker.io/prom/prometheus:v2.53.3 - Trivy安全扫描结果 扫描时间: 2024-11-22 15:11
全部漏洞信息
低危漏洞:2 中危漏洞:4 高危漏洞:0 严重漏洞:2

系统OS: 扫描引擎: Trivy 扫描时间: 2024-11-22 15:11

bin/prometheus (gobinary)
低危漏洞:1 中危漏洞:2 高危漏洞:0 严重漏洞:1
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
github.com/docker/docker CVE-2024-41110 严重 v26.1.3+incompatible 23.0.15, 26.1.5, 27.1.1, 25.0.6 moby: Authz zero length regression

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41110

镜像层: sha256:665c34918020499dfdd188c920e117bb48f08b8610eb666450047801eab6e14e

发布日期: 2024-07-24 17:15 修改: 2024-07-30 20:15
github.com/Azure/azure-sdk-for-go/sdk/azidentity CVE-2024-35255 中危 v1.5.2 1.6.0 azure-identity: Azure Identity Libraries Elevation of Privilege Vulnerability in github.com/Azure/azure-sdk-for-go/sdk/azidentity

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35255

镜像层: sha256:665c34918020499dfdd188c920e117bb48f08b8610eb666450047801eab6e14e

发布日期: 2024-06-11 17:16 修改: 2024-06-20 16:31
github.com/hashicorp/go-retryablehttp CVE-2024-6104 中危 v0.7.4 0.7.7 go-retryablehttp: url might write sensitive information to log file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6104

镜像层: sha256:665c34918020499dfdd188c920e117bb48f08b8610eb666450047801eab6e14e

发布日期: 2024-06-24 17:15 修改: 2024-06-26 17:19
google.golang.org/grpc GHSA-xr7q-jx4m-x55m 低危 v1.64.0 1.64.1 Private tokens could appear in logs if context containing gRPC metadata is logged in github.com/grpc/grpc-go

漏洞详情: https://github.com/advisories/GHSA-xr7q-jx4m-x55m

镜像层: sha256:665c34918020499dfdd188c920e117bb48f08b8610eb666450047801eab6e14e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
bin/promtool (gobinary)
低危漏洞:1 中危漏洞:2 高危漏洞:0 严重漏洞:1
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
github.com/docker/docker CVE-2024-41110 严重 v26.1.3+incompatible 23.0.15, 26.1.5, 27.1.1, 25.0.6 moby: Authz zero length regression

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41110

镜像层: sha256:5e56527bdb8be25d57cccc207f60385b83760bb4044fe54c3e3600ef8ce11a0e

发布日期: 2024-07-24 17:15 修改: 2024-07-30 20:15
github.com/Azure/azure-sdk-for-go/sdk/azidentity CVE-2024-35255 中危 v1.5.2 1.6.0 azure-identity: Azure Identity Libraries Elevation of Privilege Vulnerability in github.com/Azure/azure-sdk-for-go/sdk/azidentity

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35255

镜像层: sha256:5e56527bdb8be25d57cccc207f60385b83760bb4044fe54c3e3600ef8ce11a0e

发布日期: 2024-06-11 17:16 修改: 2024-06-20 16:31
github.com/hashicorp/go-retryablehttp CVE-2024-6104 中危 v0.7.4 0.7.7 go-retryablehttp: url might write sensitive information to log file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6104

镜像层: sha256:5e56527bdb8be25d57cccc207f60385b83760bb4044fe54c3e3600ef8ce11a0e

发布日期: 2024-06-24 17:15 修改: 2024-06-26 17:19
google.golang.org/grpc GHSA-xr7q-jx4m-x55m 低危 v1.64.0 1.64.1 Private tokens could appear in logs if context containing gRPC metadata is logged in github.com/grpc/grpc-go

漏洞详情: https://github.com/advisories/GHSA-xr7q-jx4m-x55m

镜像层: sha256:5e56527bdb8be25d57cccc207f60385b83760bb4044fe54c3e3600ef8ce11a0e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00