docker.io/temporalio/admin-tools:1.31.0 linux/amd64

docker.io/temporalio/admin-tools:1.31.0 - Trivy安全扫描结果扫描时间: 2026-05-20 16:40

全部漏洞信息

低危漏洞:0

中危漏洞:16

高危漏洞:27

严重漏洞:0

系统OS: alpine 3.23.4 扫描引擎: Trivy 扫描时间: 2026-05-20 16:40

docker.io/temporalio/admin-tools:1.31.0 (alpine 3.23.4) (alpine)

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

usr/local/bin/tdbg (gobinary)

低危漏洞:0

中危漏洞:3

高危漏洞:5

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2026-33811	高危	v1.26.2	1.25.10, 1.26.3	When using LookupCNAME with the cgo DNS resolver, a very long CNAME re ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib	CVE-2026-33814	高危	v1.26.2	1.25.10, 1.26.3	When processing HTTP/2 SETTINGS frames, transport will enter an infini ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 19:16
stdlib	CVE-2026-39820	高危	v1.26.2	1.25.10, 1.26.3	Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib	CVE-2026-39836	高危	v1.26.2	1.25.10, 1.26.3	Panic in Dial and LookupPort when handling NUL byte on Windows in net 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-42499	高危	v1.26.2	1.25.10, 1.26.3	Pathological inputs could cause DoS through consumePhrase when parsing ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-39823	中危	v1.26.2	1.25.10, 1.26.3	CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib	CVE-2026-39825	中危	v1.26.2	1.25.10, 1.26.3	ReverseProxy can forward queries containing parameters not visible to ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-39826	中危	v1.26.2	1.25.10, 1.26.3	If a trusted template author were to write a <script> tag containing a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16

usr/local/bin/temporal (gobinary)

低危漏洞:0

中危漏洞:4

高危漏洞:7

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
github.com/apache/thrift	CVE-2026-41602	高危	v0.21.0	0.23.0	github.com/apache/thrift: Apache Thrift: Integer Overflow in TFramedTransport Go implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41602 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-04-28 10:16 修改: 2026-04-28 18:40
github.com/gomarkdown/markdown	CVE-2026-40890	高危	v0.0.0-20250311123330-531bef5e742b	0.0.0-20260411013819-759bbc3e3207	github.com/gomarkdown/markdown: github.com/gomarkdown/markdown: Denial of Service via malformed Markdown input 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40890 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-04-21 20:17 修改: 2026-04-27 15:07
stdlib	CVE-2026-33811	高危	v1.26.2	1.25.10, 1.26.3	When using LookupCNAME with the cgo DNS resolver, a very long CNAME re ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib	CVE-2026-33814	高危	v1.26.2	1.25.10, 1.26.3	When processing HTTP/2 SETTINGS frames, transport will enter an infini ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 19:16
stdlib	CVE-2026-39820	高危	v1.26.2	1.25.10, 1.26.3	Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib	CVE-2026-39836	高危	v1.26.2	1.25.10, 1.26.3	Panic in Dial and LookupPort when handling NUL byte on Windows in net 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-42499	高危	v1.26.2	1.25.10, 1.26.3	Pathological inputs could cause DoS through consumePhrase when parsing ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
github.com/aws/aws-sdk-go-v2/service/lambda	GHSA-xmrv-pmrh-hhx2	中危	v1.88.0	1.88.5	Denial of Service due to Panic in AWS SDK for Go v2 SDK EventStream Decoder 漏洞详情: https://github.com/advisories/GHSA-xmrv-pmrh-hhx2 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-04-08 00:18 修改: 2026-04-08 00:18
stdlib	CVE-2026-39823	中危	v1.26.2	1.25.10, 1.26.3	CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib	CVE-2026-39825	中危	v1.26.2	1.25.10, 1.26.3	ReverseProxy can forward queries containing parameters not visible to ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-39826	中危	v1.26.2	1.25.10, 1.26.3	If a trusted template author were to write a <script> tag containing a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16

usr/local/bin/temporal-cassandra-tool (gobinary)

低危漏洞:0

中危漏洞:3

高危漏洞:5

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2026-33811	高危	v1.26.2	1.25.10, 1.26.3	When using LookupCNAME with the cgo DNS resolver, a very long CNAME re ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib	CVE-2026-33814	高危	v1.26.2	1.25.10, 1.26.3	When processing HTTP/2 SETTINGS frames, transport will enter an infini ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 19:16
stdlib	CVE-2026-39820	高危	v1.26.2	1.25.10, 1.26.3	Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib	CVE-2026-39836	高危	v1.26.2	1.25.10, 1.26.3	Panic in Dial and LookupPort when handling NUL byte on Windows in net 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-42499	高危	v1.26.2	1.25.10, 1.26.3	Pathological inputs could cause DoS through consumePhrase when parsing ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-39823	中危	v1.26.2	1.25.10, 1.26.3	CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib	CVE-2026-39825	中危	v1.26.2	1.25.10, 1.26.3	ReverseProxy can forward queries containing parameters not visible to ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-39826	中危	v1.26.2	1.25.10, 1.26.3	If a trusted template author were to write a <script> tag containing a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16

usr/local/bin/temporal-elasticsearch-tool (gobinary)

低危漏洞:0

中危漏洞:3

高危漏洞:5

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2026-33811	高危	v1.26.2	1.25.10, 1.26.3	When using LookupCNAME with the cgo DNS resolver, a very long CNAME re ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib	CVE-2026-33814	高危	v1.26.2	1.25.10, 1.26.3	When processing HTTP/2 SETTINGS frames, transport will enter an infini ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 19:16
stdlib	CVE-2026-39820	高危	v1.26.2	1.25.10, 1.26.3	Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib	CVE-2026-39836	高危	v1.26.2	1.25.10, 1.26.3	Panic in Dial and LookupPort when handling NUL byte on Windows in net 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-42499	高危	v1.26.2	1.25.10, 1.26.3	Pathological inputs could cause DoS through consumePhrase when parsing ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-39823	中危	v1.26.2	1.25.10, 1.26.3	CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib	CVE-2026-39825	中危	v1.26.2	1.25.10, 1.26.3	ReverseProxy can forward queries containing parameters not visible to ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-39826	中危	v1.26.2	1.25.10, 1.26.3	If a trusted template author were to write a <script> tag containing a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16

usr/local/bin/temporal-sql-tool (gobinary)

低危漏洞:0

中危漏洞:3

高危漏洞:5

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2026-33811	高危	v1.26.2	1.25.10, 1.26.3	When using LookupCNAME with the cgo DNS resolver, a very long CNAME re ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib	CVE-2026-33814	高危	v1.26.2	1.25.10, 1.26.3	When processing HTTP/2 SETTINGS frames, transport will enter an infini ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 19:16
stdlib	CVE-2026-39820	高危	v1.26.2	1.25.10, 1.26.3	Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib	CVE-2026-39836	高危	v1.26.2	1.25.10, 1.26.3	Panic in Dial and LookupPort when handling NUL byte on Windows in net 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-42499	高危	v1.26.2	1.25.10, 1.26.3	Pathological inputs could cause DoS through consumePhrase when parsing ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-39823	中危	v1.26.2	1.25.10, 1.26.3	CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib	CVE-2026-39825	中危	v1.26.2	1.25.10, 1.26.3	ReverseProxy can forward queries containing parameters not visible to ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib	CVE-2026-39826	中危	v1.26.2	1.25.10, 1.26.3	If a trusted template author were to write a <script> tag containing a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826 镜像层: sha256:900de9fac32f5d0bdf57a408bb773ffb1ceb1bf8ca3e1b7cc5ec0e6ed0ffb0d2 发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16