docker.io/sonatype/nexus3:3.94.0 linux/amd64

docker.io/sonatype/nexus3:3.94.0 - Trivy安全扫描结果 扫描时间: 2026-07-14 16:12
全部漏洞信息
低危漏洞:1 中危漏洞:3 高危漏洞:1 严重漏洞:0

系统OS: alpine 3.24.1 扫描引擎: Trivy 扫描时间: 2026-07-14 16:12

docker.io/sonatype/nexus3:3.94.0 (alpine 3.24.1) (alpine)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
Java (jar)
低危漏洞:1 中危漏洞:3 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
org.apache.shiro:shiro-core CVE-2026-49268 高危 1.13.0 2.2.1, 3.0.0-alpha-2 A remote attacker can inject LDAP special characters into the Distingu ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49268

镜像层: sha256:84cd693e06726593bee97b815f6a305ddfcea8e818854ce1739c27e2f671f350

发布日期: 2026-06-17 14:17 修改: 2026-06-18 14:45

org.apache.shiro:shiro-core CVE-2026-43827 中危 1.13.0 2.2.0, 3.0.0-alpha-2 apache-shiro: Apache Shiro: Session fixation vulnerability due to improper session invalidation upon login

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43827

镜像层: sha256:84cd693e06726593bee97b815f6a305ddfcea8e818854ce1739c27e2f671f350

发布日期: 2026-05-25 21:16 修改: 2026-06-17 10:49

org.apache.shiro:shiro-spring CVE-2026-23903 中危 1.13.0 2.1.0 org.apache.shiro/shiro-web: Apache Shiro: Auth bypass when accessing static files only on case-insensitive filesystems

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23903

镜像层: sha256:84cd693e06726593bee97b815f6a305ddfcea8e818854ce1739c27e2f671f350

发布日期: 2026-02-09 10:15 修改: 2026-06-17 10:22

org.apache.shiro:shiro-web CVE-2026-43828 中危 1.13.0 2.2.0, 3.0.0-alpha-2 apache-shiro: Apache Shiro: Information disclosure via insecure cookie handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43828

镜像层: sha256:84cd693e06726593bee97b815f6a305ddfcea8e818854ce1739c27e2f671f350

发布日期: 2026-05-25 21:16 修改: 2026-06-17 10:49

org.apache.shiro:shiro-core CVE-2026-23901 低危 1.13.0 2.1.0 org.apache.shiro/shiro-core: Apache Shiro: Brute force attack possible to determine valid user names

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23901

镜像层: sha256:84cd693e06726593bee97b815f6a305ddfcea8e818854ce1739c27e2f671f350

发布日期: 2026-02-10 10:15 修改: 2026-06-17 10:22

检测到您正在使用广告拦截插件,本站为公益站点,依赖广告维持运转 🙏 查看如何关闭 ×