docker.io/teslamate/grafana:latest linux/arm64

docker.io/teslamate/grafana:latest - Trivy安全扫描结果 扫描时间: 2025-01-27 12:57 温馨提示: 这是一个 linux/arm64 系统架构镜像
全部漏洞信息
低危漏洞:3 中危漏洞:7 高危漏洞:1 严重漏洞:2

系统OS: alpine 3.20.3 扫描引擎: Trivy 扫描时间: 2025-01-27 12:57

docker.io/teslamate/grafana:latest (alpine 3.20.3) (alpine)
低危漏洞:2 中危漏洞:4 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
curl CVE-2024-11053 中危 8.10.1-r0 8.11.1-r0 curl: curl netrc password leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053

镜像层: sha256:9d90499bc20feccc3a731eefd282908951e2c3999cc1c85c844a7e1c16eaf382

发布日期: 2024-12-11 08:15 修改: 2024-12-15 17:15
curl CVE-2024-9681 中危 8.10.1-r0 8.11.0-r0 curl: HSTS subdomain overwrites parent cache entry

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681

镜像层: sha256:9d90499bc20feccc3a731eefd282908951e2c3999cc1c85c844a7e1c16eaf382

发布日期: 2024-11-06 08:15 修改: 2024-12-13 14:15
libcurl CVE-2024-11053 中危 8.10.1-r0 8.11.1-r0 curl: curl netrc password leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053

镜像层: sha256:9d90499bc20feccc3a731eefd282908951e2c3999cc1c85c844a7e1c16eaf382

发布日期: 2024-12-11 08:15 修改: 2024-12-15 17:15
libcurl CVE-2024-9681 中危 8.10.1-r0 8.11.0-r0 curl: HSTS subdomain overwrites parent cache entry

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681

镜像层: sha256:9d90499bc20feccc3a731eefd282908951e2c3999cc1c85c844a7e1c16eaf382

发布日期: 2024-11-06 08:15 修改: 2024-12-13 14:15
libcrypto3 CVE-2024-9143 低危 3.3.2-r0 3.3.2-r1 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:16113d51b7181f20135f51e8ffbaead20a7671cd783017601f198748ce8a8ebf

发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
libssl3 CVE-2024-9143 低危 3.3.2-r0 3.3.2-r1 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:16113d51b7181f20135f51e8ffbaead20a7671cd783017601f198748ce8a8ebf

发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
Node.js (node-pkg)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
usr/share/grafana/bin/grafana (gobinary)
低危漏洞:1 中危漏洞:3 高危漏洞:1 严重漏洞:2
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
github.com/grafana/grafana-plugin-sdk-go CVE-2024-8986 严重 v0.241.0 0.250.0 grafana-plugin-sdk-go: Information Leakage in grafana-plugin-sdk-go

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8986

镜像层: sha256:606f60f952445a2e1356f5d8748e7852e7bdccb95b773cab3c7c22362f977674

发布日期: 2024-09-19 11:15 修改: 2024-09-20 12:30
golang.org/x/crypto CVE-2024-45337 严重 v0.26.0 0.31.0 golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45337

镜像层: sha256:606f60f952445a2e1356f5d8748e7852e7bdccb95b773cab3c7c22362f977674

发布日期: 2024-12-12 02:02 修改: 2024-12-12 21:15
golang.org/x/net CVE-2024-45338 高危 v0.28.0 0.33.0 golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45338

镜像层: sha256:606f60f952445a2e1356f5d8748e7852e7bdccb95b773cab3c7c22362f977674

发布日期: 2024-12-18 21:15 修改: 2024-12-31 20:16
github.com/rs/cors GHSA-mh55-gqvf-xfwm 中危 v1.10.1 1.11.0 Denial of service via malicious preflight requests in github.com/rs/cors

漏洞详情: https://github.com/advisories/GHSA-mh55-gqvf-xfwm

镜像层: sha256:606f60f952445a2e1356f5d8748e7852e7bdccb95b773cab3c7c22362f977674

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
filippo.io/age GHSA-32gq-x56h-299c 中危 v1.1.1 1.2.1 age vulnerable to malicious plugin names, recipients, or identities causing arbitrary binary execution

漏洞详情: https://github.com/advisories/GHSA-32gq-x56h-299c

镜像层: sha256:606f60f952445a2e1356f5d8748e7852e7bdccb95b773cab3c7c22362f977674

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/openfga/openfga CVE-2024-56323 中危 v1.5.4 1.8.3 OpenFGA Authorization Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56323

镜像层: sha256:606f60f952445a2e1356f5d8748e7852e7bdccb95b773cab3c7c22362f977674

发布日期: 2025-01-13 22:15 修改: 2025-01-13 22:15
github.com/golang-jwt/jwt/v4 CVE-2024-51744 低危 v4.5.0 4.5.1 golang-jwt: Bad documentation of error handling in ParseWithClaims can lead to potentially dangerous situations in golang-jwt

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-51744

镜像层: sha256:606f60f952445a2e1356f5d8748e7852e7bdccb95b773cab3c7c22362f977674

发布日期: 2024-11-04 22:15 修改: 2024-11-05 16:04
usr/share/grafana/bin/grafana-cli (gobinary)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
usr/share/grafana/bin/grafana-server (gobinary)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息