docker.io/syncthing/syncthing:2.1.1 linux/amd64

docker.io/syncthing/syncthing:2.1.1 - Trivy安全扫描结果扫描时间: 2026-06-09 11:55

全部漏洞信息

低危漏洞:1

中危漏洞:5

高危漏洞:2

严重漏洞:0

系统OS: alpine 3.23.4 扫描引擎: Trivy 扫描时间: 2026-06-09 11:55

docker.io/syncthing/syncthing:2.1.1 (alpine 3.23.4) (alpine)

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

bin/syncthing (gobinary)

低危漏洞:1

中危漏洞:5

高危漏洞:2

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
github.com/syncthing/syncthing	CVE-2017-1000420	高危	v0.0.0-20260525132207-6be1ff848028+dirty		Syncthing version 0.14.33 and older is vulnerable to symlink traversal ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000420 镜像层: sha256:27c7e280452039177638150562daafe7523402729396b2aa702367464543f2cc 发布日期: 2018-01-02 19:29 修改: 2024-11-21 03:04
stdlib	CVE-2026-42504	高危	v1.26.3	1.25.11, 1.26.4	Decoding a maliciously-crafted MIME header containing many invalid enc ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504 镜像层: sha256:27c7e280452039177638150562daafe7523402729396b2aa702367464543f2cc 发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
github.com/Azure/go-ntlmssp	CVE-2026-32952	中危	v0.1.0	0.1.1	go-ntlmssp: go-ntlmssp: Denial of Service via malicious NTLM challenge 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32952 镜像层: sha256:27c7e280452039177638150562daafe7523402729396b2aa702367464543f2cc 发布日期: 2026-04-24 03:16 修改: 2026-05-21 18:22
github.com/syncthing/syncthing	CVE-2022-46165	中危	v0.0.0-20260525132207-6be1ff848028+dirty	1.23.5	Syncthing is an open source, continuous file synchronization program. ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-46165 镜像层: sha256:27c7e280452039177638150562daafe7523402729396b2aa702367464543f2cc 发布日期: 2023-06-06 18:15 修改: 2024-11-21 07:30
github.com/quic-go/quic-go	CVE-2026-40898	中危	v0.59.0	0.59.1	quic-go is an implementation of the QUIC protocol in Go. Prior to vers ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40898 镜像层: sha256:27c7e280452039177638150562daafe7523402729396b2aa702367464543f2cc 发布日期: 2026-06-04 19:16 修改: 2026-06-05 21:08
stdlib	CVE-2026-27145	中危	v1.26.3	1.25.11, 1.26.4	*x509.Certificate).VerifyHostname previously called matchHostnames in ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145 镜像层: sha256:27c7e280452039177638150562daafe7523402729396b2aa702367464543f2cc 发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib	CVE-2026-42507	中危	v1.26.3	1.25.11, 1.26.4	When returning errors, functions in the net/textproto package would in ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507 镜像层: sha256:27c7e280452039177638150562daafe7523402729396b2aa702367464543f2cc 发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
github.com/syncthing/syncthing	CVE-2021-21404	低危	v0.0.0-20260525132207-6be1ff848028+dirty	1.15.0	Syncthing is a continuous file synchronization program. In Syncthing b ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21404 镜像层: sha256:27c7e280452039177638150562daafe7523402729396b2aa702367464543f2cc 发布日期: 2021-04-06 20:15 修改: 2024-11-21 05:48