docker.io/verdaccio/verdaccio:latest - Trivy镜像安全扫描结果

全部漏洞信息

低危漏洞:5

中危漏洞:0

高危漏洞:0

严重漏洞:0

系统OS: alpine 3.20.3 扫描引擎: Trivy 扫描时间: 2024-11-10 20:52

docker.io/verdaccio/verdaccio:latest (alpine 3.20.3) (alpine)

低危漏洞:3

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
libcrypto3	CVE-2024-9143	低危	3.3.2-r0	3.3.2-r1	openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:63ca1fbb43ae5034640e5e6cb3e083e05c290072c5366fcaa9d62435a4cced85 发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
libssl3	CVE-2024-9143	低危	3.3.2-r0	3.3.2-r1	openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:63ca1fbb43ae5034640e5e6cb3e083e05c290072c5366fcaa9d62435a4cced85 发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
openssl	CVE-2024-9143	低危	3.3.2-r0	3.3.2-r1	openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:aeb557db107a905e63e1fa05c8bc8e4e3357e1f721cbc6fcbb6123033c54bdd7 发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35

软件包

漏洞

安全状态

安装版本

修复版本

漏洞信息

libcrypto3

CVE-2024-9143

低危

3.3.2-r0

3.3.2-r1

openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:63ca1fbb43ae5034640e5e6cb3e083e05c290072c5366fcaa9d62435a4cced85

发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35

libssl3

CVE-2024-9143

低危

3.3.2-r0

3.3.2-r1

openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:63ca1fbb43ae5034640e5e6cb3e083e05c290072c5366fcaa9d62435a4cced85

发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35

openssl

CVE-2024-9143

低危

3.3.2-r0

3.3.2-r1

openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:aeb557db107a905e63e1fa05c8bc8e4e3357e1f721cbc6fcbb6123033c54bdd7

发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35

Node.js (node-pkg)

低危漏洞:2

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
cookie	CVE-2024-47764	低危	0.6.0	0.7.0	cookie: cookie accepts cookie name, path, and domain with out of bounds characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764 镜像层: sha256:04d8acb4fe3aaa1e193897703753b2cb0e69d6dad2d608dc1bde05411a842a88 发布日期: 2024-10-04 20:15 修改: 2024-10-07 17:48
cookie	CVE-2024-47764	低危	0.6.0	0.7.0	cookie: cookie accepts cookie name, path, and domain with out of bounds characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764 镜像层: sha256:04d8acb4fe3aaa1e193897703753b2cb0e69d6dad2d608dc1bde05411a842a88 发布日期: 2024-10-04 20:15 修改: 2024-10-07 17:48

软件包

漏洞

安全状态

安装版本

修复版本

漏洞信息

cookie

CVE-2024-47764

低危

0.6.0

0.7.0

cookie: cookie accepts cookie name, path, and domain with out of bounds characters

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764

镜像层: sha256:04d8acb4fe3aaa1e193897703753b2cb0e69d6dad2d608dc1bde05411a842a88

发布日期: 2024-10-04 20:15 修改: 2024-10-07 17:48

cookie

CVE-2024-47764

低危

0.6.0

0.7.0

cookie: cookie accepts cookie name, path, and domain with out of bounds characters

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764

镜像层: sha256:04d8acb4fe3aaa1e193897703753b2cb0e69d6dad2d608dc1bde05411a842a88

发布日期: 2024-10-04 20:15 修改: 2024-10-07 17:48

docker.io/verdaccio/verdaccio:latest linux/amd64

全部漏洞信息

docker.io/verdaccio/verdaccio:latest (alpine 3.20.3) (alpine)

Node.js (node-pkg)