Skip to content

to be continuous

DCMP_KICS_IMAGE

to-be-continuous/doc

docker.io/checkmarx/kics:latest (wolfi 20230201)¶

Trivy Image Scan

Image: docker.io/checkmarx/kics:latest (wolfi 20230201)
Scan date: 2026-04-01

docker.io/checkmarx/kics:latest (wolfi 20230201) (wolfi)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
libcrypto3	CVE-2026-2673	LOW	3.6.1-r1	3.6.1-r3	http://www.openwall.com/lists/oss-security/2026/03/13/3 https://access.redhat.com/security/cve/CVE-2026-2673 https://github.com/openssl/openssl/commit/2157c9d81f7b0bd7dfa25b960e928ec28e8dd63f https://github.com/openssl/openssl/commit/85977e013f32ceb96aa034c0e741adddc1a05e34 https://nvd.nist.gov/vuln/detail/CVE-2026-2673 https://openssl-library.org/news/secadv/20260313.txt https://www.cve.org/CVERecord?id=CVE-2026-2673
libssl3	CVE-2026-2673	LOW	3.6.1-r1	3.6.1-r3	http://www.openwall.com/lists/oss-security/2026/03/13/3 https://access.redhat.com/security/cve/CVE-2026-2673 https://github.com/openssl/openssl/commit/2157c9d81f7b0bd7dfa25b960e928ec28e8dd63f https://github.com/openssl/openssl/commit/85977e013f32ceb96aa034c0e741adddc1a05e34 https://nvd.nist.gov/vuln/detail/CVE-2026-2673 https://openssl-library.org/news/secadv/20260313.txt https://www.cve.org/CVERecord?id=CVE-2026-2673
No Misconfigurations found

app/bin/kics (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
github.com/moby/buildkit	CVE-2026-33747	HIGH	v0.26.3	0.28.1	https://access.redhat.com/security/cve/CVE-2026-33747 https://github.com/moby/buildkit https://github.com/moby/buildkit/releases/tag/v0.28.1 https://github.com/moby/buildkit/security/advisories/GHSA-4c29-8rgm-jvjj https://nvd.nist.gov/vuln/detail/CVE-2026-33747 https://www.cve.org/CVERecord?id=CVE-2026-33747
github.com/moby/buildkit	CVE-2026-33748	HIGH	v0.26.3	0.28.1	https://access.redhat.com/security/cve/CVE-2026-33748 https://docs.docker.com/build/concepts/context/#url-fragments https://github.com/moby/buildkit https://github.com/moby/buildkit/releases/tag/v0.28.1 https://github.com/moby/buildkit/security/advisories/GHSA-4vrq-3vrq-g6gg https://nvd.nist.gov/vuln/detail/CVE-2026-33748 https://www.cve.org/CVERecord?id=CVE-2026-33748
google.golang.org/grpc	CVE-2026-33186	CRITICAL	v1.77.0	1.79.3	https://access.redhat.com/security/cve/CVE-2026-33186 https://github.com/grpc/grpc-go https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3 https://nvd.nist.gov/vuln/detail/CVE-2026-33186 https://www.cve.org/CVERecord?id=CVE-2026-33186
stdlib	CVE-2026-25679	HIGH	v1.26.0	1.25.8, 1.26.1	https://access.redhat.com/errata/RHSA-2026:5942 https://access.redhat.com/security/cve/CVE-2026-25679 https://bugzilla.redhat.com/2434433 https://bugzilla.redhat.com/2445356 https://errata.almalinux.org/9/ALSA-2026-5942.html https://go.dev/cl/752180 https://go.dev/issue/77578 https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk https://linux.oracle.com/cve/CVE-2026-25679.html https://linux.oracle.com/errata/ELSA-2026-5942.html https://nvd.nist.gov/vuln/detail/CVE-2026-25679 https://pkg.go.dev/vuln/GO-2026-4601 https://www.cve.org/CVERecord?id=CVE-2026-25679
stdlib	CVE-2026-27137	HIGH	v1.26.0	1.26.1	https://access.redhat.com/security/cve/CVE-2026-27137 https://go.dev/cl/752182 https://go.dev/issue/77952 https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk https://nvd.nist.gov/vuln/detail/CVE-2026-27137 https://pkg.go.dev/vuln/GO-2026-4599 https://www.cve.org/CVERecord?id=CVE-2026-27137
stdlib	CVE-2026-27142	MEDIUM	v1.26.0	1.25.8, 1.26.1	https://access.redhat.com/security/cve/CVE-2026-27142 https://go.dev/cl/752081 https://go.dev/issue/77954 https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk https://nvd.nist.gov/vuln/detail/CVE-2026-27142 https://pkg.go.dev/vuln/GO-2026-4603 https://www.cve.org/CVERecord?id=CVE-2026-27142
stdlib	CVE-2026-27138	LOW	v1.26.0	1.26.1	https://access.redhat.com/security/cve/CVE-2026-27138 https://go.dev/cl/752183 https://go.dev/issue/77953 https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk https://nvd.nist.gov/vuln/detail/CVE-2026-27138 https://pkg.go.dev/vuln/GO-2026-4600 https://www.cve.org/CVERecord?id=CVE-2026-27138
stdlib	CVE-2026-27139	LOW	v1.26.0	1.25.8, 1.26.1	https://access.redhat.com/security/cve/CVE-2026-27139 https://go.dev/cl/749480 https://go.dev/issue/77827 https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk https://nvd.nist.gov/vuln/detail/CVE-2026-27139 https://pkg.go.dev/vuln/GO-2026-4602 https://www.cve.org/CVERecord?id=CVE-2026-27139
No Misconfigurations found