docker.io/vanjayak/open-design:latest linux/amd64

docker.io/vanjayak/open-design:latest - Trivy安全扫描结果 扫描时间: 2026-05-19 16:12
全部漏洞信息
低危漏洞:1 中危漏洞:6 高危漏洞:10 严重漏洞:0

系统OS: alpine 3.23.4 扫描引擎: Trivy 扫描时间: 2026-05-19 16:12

docker.io/vanjayak/open-design:latest (alpine 3.23.4) (alpine)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
Node.js (node-pkg)
低危漏洞:1 中危漏洞:6 高危漏洞:10 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
fast-uri CVE-2026-6321 高危 3.1.0 3.1.1 fast-uri: fast-uri: Path traversal vulnerability allows bypass of security policies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6321

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 2026-05-04 20:16 修改: 2026-05-12 18:54
fast-uri CVE-2026-6322 高危 3.1.0 3.1.2 fast-uri normalize() decoded percent-encoded authority delimiters insi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6322

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 2026-05-05 11:16 修改: 2026-05-12 19:11
multer CVE-2025-47935 高危 1.4.5-lts.2 2.0.0 Multer vulnerable to Denial of Service via memory leaks from unclosed streams

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47935

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 2025-05-19 20:15 修改: 2026-04-15 00:35
multer CVE-2025-47944 高危 1.4.5-lts.2 2.0.0 Multer vulnerable to Denial of Service from maliciously crafted requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47944

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 2025-05-19 20:15 修改: 2026-04-15 00:35
multer CVE-2025-48997 高危 1.4.5-lts.2 2.0.1 multer: Multer vulnerable to Denial of Service via unhandled exception

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-48997

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 2025-06-03 19:15 修改: 2026-04-15 00:35
multer CVE-2025-7338 高危 1.4.5-lts.2 2.0.2 multer: Multer Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7338

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 2025-07-17 16:15 修改: 2026-04-15 00:35
multer CVE-2026-2359 高危 1.4.5-lts.2 2.1.0 multer: Multer: Denial of Service via dropped file upload connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2359

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 2026-02-27 16:16 修改: 2026-03-19 17:28
multer CVE-2026-3304 高危 1.4.5-lts.2 2.1.0 multer: Multer: Denial of Service via malformed requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3304

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 2026-02-27 16:16 修改: 2026-03-19 17:28
multer CVE-2026-3520 高危 1.4.5-lts.2 2.1.1 multer: Multer: Denial of Service via malformed requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3520

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 2026-03-04 17:16 修改: 2026-03-09 18:03
picomatch CVE-2026-33671 高危 4.0.3 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:1162d08df74cbafeaf49341a64985a65ed1966fb1f267543135d65555918dded

发布日期: 2026-03-26 22:16 修改: 2026-04-01 13:45
ip-address CVE-2026-42338 中危 10.1.0 10.1.1 ip-address has XSS in Address6 HTML-emitting methods

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 2026-05-12 20:16 修改: 2026-05-12 20:16
ip-address CVE-2026-42338 中危 10.1.0 10.1.1 ip-address has XSS in Address6 HTML-emitting methods

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338

镜像层: sha256:1162d08df74cbafeaf49341a64985a65ed1966fb1f267543135d65555918dded

发布日期: 2026-05-12 20:16 修改: 2026-05-12 20:16
brace-expansion CVE-2026-33750 中危 5.0.4 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:1162d08df74cbafeaf49341a64985a65ed1966fb1f267543135d65555918dded

发布日期: 2026-03-27 15:16 修改: 2026-04-22 14:23
hono CVE-2026-44457 中危 4.12.16 4.12.18 Hono's Cache Middleware ignores Vary: Authorization / Vary: Cookie leading to cross-user cache leakage

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44457

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
hono CVE-2026-44458 中危 4.12.16 4.12.18 Hono has CSS Declaration Injection via Style Object Values in JSX SSR

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44458

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
picomatch CVE-2026-33672 中危 4.0.3 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:1162d08df74cbafeaf49341a64985a65ed1966fb1f267543135d65555918dded

发布日期: 2026-03-26 22:16 修改: 2026-04-01 13:44
hono CVE-2026-44459 低危 4.12.16 4.12.18 Hono has improper validation of NumericDate claims (exp, nbf, iat) in JWT verify()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44459

镜像层: sha256:4188ce22fa54c8705c0995f12ad7807defc8e135044c53001b406010405eba25

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00