ghcr.io/n8n-io/n8n:2.22.0 linux/amd64

ghcr.io/n8n-io/n8n:2.22.0 - Trivy安全扫描结果 扫描时间: 2026-05-20 19:35
全部漏洞信息
低危漏洞:2 中危漏洞:5 高危漏洞:0 严重漏洞:0

系统OS: alpine 3.22 扫描引擎: Trivy 扫描时间: 2026-05-20 19:35

ghcr.io/n8n-io/n8n:2.22.0 (alpine 3.22) (alpine)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
Node.js (node-pkg)
低危漏洞:2 中危漏洞:5 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
file-type CVE-2026-31808 中危 16.5.4 21.3.1 file-type: file-type: Denial of Service due to infinite loop in ASF file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31808

镜像层: sha256:38ebe9ffab711186547ca868a81c79a5dda557717d956388d15a5c371767cb65

发布日期: 2026-03-10 21:16 修改: 2026-03-18 19:48
ip-address CVE-2026-42338 中危 10.1.0 10.1.1 ip-address has XSS in Address6 HTML-emitting methods

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338

镜像层: sha256:38ebe9ffab711186547ca868a81c79a5dda557717d956388d15a5c371767cb65

发布日期: 2026-05-12 20:16 修改: 2026-05-12 20:16
nodemailer GHSA-vvjj-xcjg-gr5g 中危 7.0.11 8.0.5 Nodemailer Vulnerable to SMTP Command Injection via CRLF in Transport name Option (EHLO/HELO)

漏洞详情: https://github.com/advisories/GHSA-vvjj-xcjg-gr5g

镜像层: sha256:38ebe9ffab711186547ca868a81c79a5dda557717d956388d15a5c371767cb65

发布日期: 2026-04-08 15:05 修改: 2026-04-08 15:05
postcss CVE-2026-41305 中危 8.4.49 8.5.10 postcss: PostCSS: Cross-Site Scripting (XSS) via improper escaping of style closing tags

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41305

镜像层: sha256:38ebe9ffab711186547ca868a81c79a5dda557717d956388d15a5c371767cb65

发布日期: 2026-04-24 03:16 修改: 2026-04-24 17:16
showdown CVE-2024-1899 中危 2.1.0 Showdown vulnerable to Regular Expression Denial of Service (ReDoS) in link/anchor parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1899

镜像层: sha256:38ebe9ffab711186547ca868a81c79a5dda557717d956388d15a5c371767cb65

发布日期: 2024-02-26 19:15 修改: 2025-09-18 16:25
@tootallnate/once CVE-2026-3449 低危 2.0.0 3.0.1 @tootallnate/once: @tootallnate/once: Denial of Service due to incorrect control flow scoping with AbortSignal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3449

镜像层: sha256:38ebe9ffab711186547ca868a81c79a5dda557717d956388d15a5c371767cb65

发布日期: 2026-03-03 05:17 修改: 2026-04-29 01:00
nodemailer GHSA-c7w3-x93f-qmm8 低危 7.0.11 8.0.4 Nodemailer has SMTP command injection due to unsanitized `envelope.size` parameter

漏洞详情: https://github.com/advisories/GHSA-c7w3-x93f-qmm8

镜像层: sha256:38ebe9ffab711186547ca868a81c79a5dda557717d956388d15a5c371767cb65

发布日期: 2026-03-26 22:26 修改: 2026-03-26 22:26