quay.io/argoproj/argocd:v2.14.2 linux/amd64

quay.io/argoproj/argocd:v2.14.2 - Trivy安全扫描结果 扫描时间: 2025-02-06 11:00
全部漏洞信息
低危漏洞:25 中危漏洞:17 高危漏洞:3 严重漏洞:2

系统OS: ubuntu 24.04 扫描引擎: Trivy 扫描时间: 2025-02-06 11:00

quay.io/argoproj/argocd:v2.14.2 (ubuntu 24.04) (ubuntu)
低危漏洞:25 中危漏洞:15 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
krb5-locales CVE-2024-26462 中危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libgssapi-krb5-2 CVE-2024-26462 中危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3 CVE-2024-26462 中危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3 CVE-2024-26462 中危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5support0 CVE-2024-26462 中危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libpam-modules CVE-2024-10041 中危 1.5.3-5ubuntu5.1 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules CVE-2024-10963 中危 1.5.3-5ubuntu5.1 pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam-modules-bin CVE-2024-10041 中危 1.5.3-5ubuntu5.1 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules-bin CVE-2024-10963 中危 1.5.3-5ubuntu5.1 pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam-runtime CVE-2024-10041 中危 1.5.3-5ubuntu5.1 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-runtime CVE-2024-10963 中危 1.5.3-5ubuntu5.1 pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam0g CVE-2024-10041 中危 1.5.3-5ubuntu5.1 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam0g CVE-2024-10963 中危 1.5.3-5ubuntu5.1 pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
login CVE-2024-56433 中危 1:4.13+dfsg1-4ubuntu3.2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
passwd CVE-2024-56433 中危 1:4.13+dfsg1-4ubuntu3.2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
libgssapi-krb5-2 CVE-2024-26458 低危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libgssapi-krb5-2 CVE-2024-26461 低危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
git CVE-2018-1000021 低危 1:2.43.0-1ubuntu7.2 git: client prints server-sent ANSI escape codes to the terminal, allowing for unverified messages to potentially execute arbitrary commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000021

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2018-02-09 23:29 修改: 2024-10-24 17:58
libk5crypto3 CVE-2024-26458 低危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libk5crypto3 CVE-2024-26461 低危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
git-man CVE-2018-1000021 低危 1:2.43.0-1ubuntu7.2 git: client prints server-sent ANSI escape codes to the terminal, allowing for unverified messages to potentially execute arbitrary commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000021

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2018-02-09 23:29 修改: 2024-10-24 17:58
libkrb5-3 CVE-2024-26458 低危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5-3 CVE-2024-26461 低危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gpg CVE-2022-3219 低危 2.4.4-2ubuntu17 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libkrb5support0 CVE-2024-26458 低危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5support0 CVE-2024-26461 低危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gpg-agent CVE-2022-3219 低危 2.4.4-2ubuntu17 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpgconf CVE-2022-3219 低危 2.4.4-2ubuntu17 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpgv CVE-2022-3219 低危 2.4.4-2ubuntu17 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:80098e3d304cd7858ad97b310cd16083fbe6fab2968be7a988fc6894cb85dc25

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
coreutils CVE-2016-2781 低危 9.4-3ubuntu6 coreutils: Non-privileged session can escape to the parent session in chroot

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781

镜像层: sha256:80098e3d304cd7858ad97b310cd16083fbe6fab2968be7a988fc6894cb85dc25

发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
krb5-locales CVE-2024-26458 低危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
krb5-locales CVE-2024-26461 低危 1.20.1-6ubuntu2.3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libc-bin CVE-2016-20013 低危 2.39-0ubuntu8.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
libc6 CVE-2016-20013 低危 2.39-0ubuntu8.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
libssl3t64 CVE-2024-41996 低危 3.0.13-0ubuntu3.4 openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
libgcrypt20 CVE-2024-2236 低危 1.10.3-2build1 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:80098e3d304cd7858ad97b310cd16083fbe6fab2968be7a988fc6894cb85dc25

发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15
openssl CVE-2024-41996 低危 3.0.13-0ubuntu3.4 openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
dirmngr CVE-2022-3219 低危 2.4.4-2ubuntu17 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
patch CVE-2018-6952 低危 2.7.6-7build3 patch: Double free of memory in pch.c:another_hunk() causes a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6952

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2018-02-13 19:29 修改: 2019-04-17 20:29
patch CVE-2021-45261 低危 2.7.6-7build3 patch: Invalid Pointer via another_hunk function

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45261

镜像层: sha256:a17d3702515e9db0711c8a67e476a8e5b1e892f3bfea259a97a62f02d3257c0b

发布日期: 2021-12-22 18:15 修改: 2021-12-28 14:24
usr/local/bin/argocd (gobinary)
低危漏洞:0 中危漏洞:0 高危漏洞:1 严重漏洞:1
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
github.com/go-git/go-git/v5 CVE-2025-21613 严重 v5.12.0 5.13.0 go-git: argument injection via the URL field

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-21613

镜像层: sha256:68571ce8a2c962d1ee51baafcb7c3b677210cdcf65eaf2340c00a249c747d464

发布日期: 2025-01-06 17:15 修改: 2025-01-06 17:15
github.com/go-git/go-git/v5 CVE-2025-21614 高危 v5.12.0 5.13.0 go-git: go-git clients vulnerable to DoS via maliciously crafted Git server replies

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-21614

镜像层: sha256:68571ce8a2c962d1ee51baafcb7c3b677210cdcf65eaf2340c00a249c747d464

发布日期: 2025-01-06 17:15 修改: 2025-01-06 17:15
usr/local/bin/helm (gobinary)
低危漏洞:0 中危漏洞:0 高危漏洞:1 严重漏洞:1
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
golang.org/x/crypto CVE-2024-45337 严重 v0.27.0 0.31.0 golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45337

镜像层: sha256:0548de89c01e9a2425f4e7a6a16fdfea44ef724b6fd7f665ba0b5f2a17bbbb3c

发布日期: 2024-12-12 02:02 修改: 2024-12-12 21:15
golang.org/x/net CVE-2024-45338 高危 v0.26.0 0.33.0 golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45338

镜像层: sha256:0548de89c01e9a2425f4e7a6a16fdfea44ef724b6fd7f665ba0b5f2a17bbbb3c

发布日期: 2024-12-18 21:15 修改: 2024-12-31 20:16
usr/local/bin/kustomize (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2024-34156 高危 1.21.12 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:875944b531c38695b02047ebdba49dc097c61f4409ebf048ac815f9cf9a8f285

发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib CVE-2024-34155 中危 1.21.12 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:875944b531c38695b02047ebdba49dc097c61f4409ebf048ac815f9cf9a8f285

发布日期: 2024-09-06 21:15 修改: 2024-11-04 17:35
stdlib CVE-2024-34158 中危 1.21.12 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:875944b531c38695b02047ebdba49dc097c61f4409ebf048ac815f9cf9a8f285

发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35