cdxgen:master (alma 10.1)¶

Trivy Image Scan

Image: ghcr.io/cyclonedx/cdxgen:master (alma 10.1)
Scan date: 2026-04-01

ghcr.io/cyclonedx/cdxgen:master (alma 10.1) (alma)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
curl	CVE-2025-9086	MEDIUM	8.12.1-2.el10	8.12.1-2.el10_1.2	http://www.openwall.com/lists/oss-security/2025/09/10/1 https://access.redhat.com/errata/RHSA-2026:1350 https://access.redhat.com/security/cve/CVE-2025-9086 https://bugzilla.redhat.com/2394750 https://bugzilla.redhat.com/show_bug.cgi?id=2394750 https://curl.se/docs/CVE-2025-9086.html https://curl.se/docs/CVE-2025-9086.json https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9086 https://errata.almalinux.org/9/ALSA-2026-1350.html https://errata.rockylinux.org/RLSA-2026:1350 https://github.com/curl/curl/commit/c6ae07c6a541e0e96d0040afb6 https://hackerone.com/reports/3294999 https://linux.oracle.com/cve/CVE-2025-9086.html https://linux.oracle.com/errata/ELSA-2026-1825.html https://lists.debian.org/debian-lts-announce/2026/01/msg00002.html https://nvd.nist.gov/vuln/detail/CVE-2025-9086 https://ubuntu.com/security/notices/USN-8062-1 https://www.cve.org/CVERecord?id=CVE-2025-9086
gnutls	CVE-2025-14831	MEDIUM	3.8.10-2.el10	3.8.10-3.el10_1	https://access.redhat.com/errata/RHSA-2026:3477 https://access.redhat.com/errata/RHSA-2026:4188 https://access.redhat.com/errata/RHSA-2026:4655 https://access.redhat.com/errata/RHSA-2026:4943 https://access.redhat.com/errata/RHSA-2026:5585 https://access.redhat.com/errata/RHSA-2026:5606 https://access.redhat.com/security/cve/CVE-2025-14831 https://bugzilla.redhat.com/2392528 https://bugzilla.redhat.com/2423177 https://bugzilla.redhat.com/show_bug.cgi?id=2392528 https://bugzilla.redhat.com/show_bug.cgi?id=2423177 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14831 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9820 https://errata.almalinux.org/9/ALSA-2026-4188.html https://errata.rockylinux.org/RLSA-2026:4188 https://gitlab.com/gnutls/gnutls/-/issues/1773 https://linux.oracle.com/cve/CVE-2025-14831.html https://linux.oracle.com/errata/ELSA-2026-5585.html https://nvd.nist.gov/vuln/detail/CVE-2025-14831 https://ubuntu.com/security/notices/USN-8043-1 https://www.cve.org/CVERecord?id=CVE-2025-14831
gnutls	CVE-2025-9820	MEDIUM	3.8.10-2.el10	3.8.10-3.el10_1	http://www.openwall.com/lists/oss-security/2025/11/20/2 https://access.redhat.com/errata/RHSA-2026:3477 https://access.redhat.com/errata/RHSA-2026:4188 https://access.redhat.com/errata/RHSA-2026:4655 https://access.redhat.com/errata/RHSA-2026:4943 https://access.redhat.com/errata/RHSA-2026:5585 https://access.redhat.com/errata/RHSA-2026:5606 https://access.redhat.com/security/cve/CVE-2025-9820 https://bugzilla.redhat.com/2392528 https://bugzilla.redhat.com/2423177 https://bugzilla.redhat.com/show_bug.cgi?id=2392528 https://bugzilla.redhat.com/show_bug.cgi?id=2423177 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14831 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9820 https://errata.almalinux.org/9/ALSA-2026-4188.html https://errata.rockylinux.org/RLSA-2026:4188 https://gitlab.com/gnutls/gnutls/-/commit/1d56f96f6ab5034d677136b9d50b5a75dff0faf5 https://gitlab.com/gnutls/gnutls/-/issues/1732 https://linux.oracle.com/cve/CVE-2025-9820.html https://linux.oracle.com/errata/ELSA-2026-5585.html https://nvd.nist.gov/vuln/detail/CVE-2025-9820 https://ubuntu.com/security/notices/USN-8043-1 https://www.cve.org/CVERecord?id=CVE-2025-9820 https://www.gnutls.org/security-new.html#GNUTLS-SA-2025-11-18
libarchive	CVE-2026-4111	HIGH	3.7.7-4.el10_0	3.7.7-5.el10_1	https://access.redhat.com/errata/RHSA-2026:5063 https://access.redhat.com/errata/RHSA-2026:5080 https://access.redhat.com/security/cve/CVE-2026-4111 https://bugzilla.redhat.com/2446453 https://bugzilla.redhat.com/show_bug.cgi?id=2446453 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4111 https://errata.almalinux.org/9/ALSA-2026-5080.html https://errata.rockylinux.org/RLSA-2026:5080 https://github.com/libarchive/libarchive/pull/2877 https://linux.oracle.com/cve/CVE-2026-4111.html https://linux.oracle.com/errata/ELSA-2026-5080.html https://nvd.nist.gov/vuln/detail/CVE-2026-4111 https://www.cve.org/CVERecord?id=CVE-2026-4111
libblkid	CVE-2025-14104	MEDIUM	2.40.2-13.el10	2.40.2-15.el10_1	https://access.redhat.com/errata/RHSA-2026:1696 https://access.redhat.com/errata/RHSA-2026:1852 https://access.redhat.com/errata/RHSA-2026:1913 https://access.redhat.com/errata/RHSA-2026:2485 https://access.redhat.com/errata/RHSA-2026:2563 https://access.redhat.com/errata/RHSA-2026:2737 https://access.redhat.com/errata/RHSA-2026:2800 https://access.redhat.com/errata/RHSA-2026:3406 https://access.redhat.com/errata/RHSA-2026:4943 https://access.redhat.com/security/cve/CVE-2025-14104 https://bugzilla.redhat.com/2419369 https://bugzilla.redhat.com/show_bug.cgi?id=2419369 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14104 https://errata.almalinux.org/9/ALSA-2026-1913.html https://errata.rockylinux.org/RLSA-2026:1913 https://linux.oracle.com/cve/CVE-2025-14104.html https://linux.oracle.com/errata/ELSA-2026-1913.html https://nvd.nist.gov/vuln/detail/CVE-2025-14104 https://www.cve.org/CVERecord?id=CVE-2025-14104
libcurl-minimal	CVE-2025-9086	MEDIUM	8.12.1-2.el10	8.12.1-2.el10_1.2	http://www.openwall.com/lists/oss-security/2025/09/10/1 https://access.redhat.com/errata/RHSA-2026:1350 https://access.redhat.com/security/cve/CVE-2025-9086 https://bugzilla.redhat.com/2394750 https://bugzilla.redhat.com/show_bug.cgi?id=2394750 https://curl.se/docs/CVE-2025-9086.html https://curl.se/docs/CVE-2025-9086.json https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9086 https://errata.almalinux.org/9/ALSA-2026-1350.html https://errata.rockylinux.org/RLSA-2026:1350 https://github.com/curl/curl/commit/c6ae07c6a541e0e96d0040afb6 https://hackerone.com/reports/3294999 https://linux.oracle.com/cve/CVE-2025-9086.html https://linux.oracle.com/errata/ELSA-2026-1825.html https://lists.debian.org/debian-lts-announce/2026/01/msg00002.html https://nvd.nist.gov/vuln/detail/CVE-2025-9086 https://ubuntu.com/security/notices/USN-8062-1 https://www.cve.org/CVERecord?id=CVE-2025-9086
libfdisk	CVE-2025-14104	MEDIUM	2.40.2-13.el10	2.40.2-15.el10_1	https://access.redhat.com/errata/RHSA-2026:1696 https://access.redhat.com/errata/RHSA-2026:1852 https://access.redhat.com/errata/RHSA-2026:1913 https://access.redhat.com/errata/RHSA-2026:2485 https://access.redhat.com/errata/RHSA-2026:2563 https://access.redhat.com/errata/RHSA-2026:2737 https://access.redhat.com/errata/RHSA-2026:2800 https://access.redhat.com/errata/RHSA-2026:3406 https://access.redhat.com/errata/RHSA-2026:4943 https://access.redhat.com/security/cve/CVE-2025-14104 https://bugzilla.redhat.com/2419369 https://bugzilla.redhat.com/show_bug.cgi?id=2419369 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14104 https://errata.almalinux.org/9/ALSA-2026-1913.html https://errata.rockylinux.org/RLSA-2026:1913 https://linux.oracle.com/cve/CVE-2025-14104.html https://linux.oracle.com/errata/ELSA-2026-1913.html https://nvd.nist.gov/vuln/detail/CVE-2025-14104 https://www.cve.org/CVERecord?id=CVE-2025-14104
libmount	CVE-2025-14104	MEDIUM	2.40.2-13.el10	2.40.2-15.el10_1	https://access.redhat.com/errata/RHSA-2026:1696 https://access.redhat.com/errata/RHSA-2026:1852 https://access.redhat.com/errata/RHSA-2026:1913 https://access.redhat.com/errata/RHSA-2026:2485 https://access.redhat.com/errata/RHSA-2026:2563 https://access.redhat.com/errata/RHSA-2026:2737 https://access.redhat.com/errata/RHSA-2026:2800 https://access.redhat.com/errata/RHSA-2026:3406 https://access.redhat.com/errata/RHSA-2026:4943 https://access.redhat.com/security/cve/CVE-2025-14104 https://bugzilla.redhat.com/2419369 https://bugzilla.redhat.com/show_bug.cgi?id=2419369 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14104 https://errata.almalinux.org/9/ALSA-2026-1913.html https://errata.rockylinux.org/RLSA-2026:1913 https://linux.oracle.com/cve/CVE-2025-14104.html https://linux.oracle.com/errata/ELSA-2026-1913.html https://nvd.nist.gov/vuln/detail/CVE-2025-14104 https://www.cve.org/CVERecord?id=CVE-2025-14104
libsmartcols	CVE-2025-14104	MEDIUM	2.40.2-13.el10	2.40.2-15.el10_1	https://access.redhat.com/errata/RHSA-2026:1696 https://access.redhat.com/errata/RHSA-2026:1852 https://access.redhat.com/errata/RHSA-2026:1913 https://access.redhat.com/errata/RHSA-2026:2485 https://access.redhat.com/errata/RHSA-2026:2563 https://access.redhat.com/errata/RHSA-2026:2737 https://access.redhat.com/errata/RHSA-2026:2800 https://access.redhat.com/errata/RHSA-2026:3406 https://access.redhat.com/errata/RHSA-2026:4943 https://access.redhat.com/security/cve/CVE-2025-14104 https://bugzilla.redhat.com/2419369 https://bugzilla.redhat.com/show_bug.cgi?id=2419369 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14104 https://errata.almalinux.org/9/ALSA-2026-1913.html https://errata.rockylinux.org/RLSA-2026:1913 https://linux.oracle.com/cve/CVE-2025-14104.html https://linux.oracle.com/errata/ELSA-2026-1913.html https://nvd.nist.gov/vuln/detail/CVE-2025-14104 https://www.cve.org/CVERecord?id=CVE-2025-14104
libuuid	CVE-2025-14104	MEDIUM	2.40.2-13.el10	2.40.2-15.el10_1	https://access.redhat.com/errata/RHSA-2026:1696 https://access.redhat.com/errata/RHSA-2026:1852 https://access.redhat.com/errata/RHSA-2026:1913 https://access.redhat.com/errata/RHSA-2026:2485 https://access.redhat.com/errata/RHSA-2026:2563 https://access.redhat.com/errata/RHSA-2026:2737 https://access.redhat.com/errata/RHSA-2026:2800 https://access.redhat.com/errata/RHSA-2026:3406 https://access.redhat.com/errata/RHSA-2026:4943 https://access.redhat.com/security/cve/CVE-2025-14104 https://bugzilla.redhat.com/2419369 https://bugzilla.redhat.com/show_bug.cgi?id=2419369 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14104 https://errata.almalinux.org/9/ALSA-2026-1913.html https://errata.rockylinux.org/RLSA-2026:1913 https://linux.oracle.com/cve/CVE-2025-14104.html https://linux.oracle.com/errata/ELSA-2026-1913.html https://nvd.nist.gov/vuln/detail/CVE-2025-14104 https://www.cve.org/CVERecord?id=CVE-2025-14104
ncurses	CVE-2025-69720	MEDIUM	6.4-14.20240127.el10	6.4-15.20240127.el10_1	https://access.redhat.com/errata/RHSA-2026:5913 https://access.redhat.com/security/cve/CVE-2025-69720 https://bugzilla.redhat.com/2449037 https://errata.almalinux.org/10/ALSA-2026-5913.html https://github.com/Cao-Wuhui/CVE-2025-69720 https://invisible-island.net/archives/ncurses/6.5/ https://invisible-island.net/ncurses/ https://linux.oracle.com/cve/CVE-2025-69720.html https://linux.oracle.com/errata/ELSA-2026-5913.html https://marc.info/?l=ncurses-bug&m=176539968328570&w=2 https://marc.info/?l=ncurses-bug&m=176540731801330&w=2 https://marc.info/?l=ncurses-bug&m=176545557728083&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-69720 https://www.cve.org/CVERecord?id=CVE-2025-69720
ncurses-base	CVE-2025-69720	MEDIUM	6.4-14.20240127.el10	6.4-15.20240127.el10_1	https://access.redhat.com/errata/RHSA-2026:5913 https://access.redhat.com/security/cve/CVE-2025-69720 https://bugzilla.redhat.com/2449037 https://errata.almalinux.org/10/ALSA-2026-5913.html https://github.com/Cao-Wuhui/CVE-2025-69720 https://invisible-island.net/archives/ncurses/6.5/ https://invisible-island.net/ncurses/ https://linux.oracle.com/cve/CVE-2025-69720.html https://linux.oracle.com/errata/ELSA-2026-5913.html https://marc.info/?l=ncurses-bug&m=176539968328570&w=2 https://marc.info/?l=ncurses-bug&m=176540731801330&w=2 https://marc.info/?l=ncurses-bug&m=176545557728083&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-69720 https://www.cve.org/CVERecord?id=CVE-2025-69720
ncurses-c++-libs	CVE-2025-69720	MEDIUM	6.4-14.20240127.el10	6.4-15.20240127.el10_1	https://access.redhat.com/errata/RHSA-2026:5913 https://access.redhat.com/security/cve/CVE-2025-69720 https://bugzilla.redhat.com/2449037 https://errata.almalinux.org/10/ALSA-2026-5913.html https://github.com/Cao-Wuhui/CVE-2025-69720 https://invisible-island.net/archives/ncurses/6.5/ https://invisible-island.net/ncurses/ https://linux.oracle.com/cve/CVE-2025-69720.html https://linux.oracle.com/errata/ELSA-2026-5913.html https://marc.info/?l=ncurses-bug&m=176539968328570&w=2 https://marc.info/?l=ncurses-bug&m=176540731801330&w=2 https://marc.info/?l=ncurses-bug&m=176545557728083&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-69720 https://www.cve.org/CVERecord?id=CVE-2025-69720
ncurses-devel	CVE-2025-69720	MEDIUM	6.4-14.20240127.el10	6.4-15.20240127.el10_1	https://access.redhat.com/errata/RHSA-2026:5913 https://access.redhat.com/security/cve/CVE-2025-69720 https://bugzilla.redhat.com/2449037 https://errata.almalinux.org/10/ALSA-2026-5913.html https://github.com/Cao-Wuhui/CVE-2025-69720 https://invisible-island.net/archives/ncurses/6.5/ https://invisible-island.net/ncurses/ https://linux.oracle.com/cve/CVE-2025-69720.html https://linux.oracle.com/errata/ELSA-2026-5913.html https://marc.info/?l=ncurses-bug&m=176539968328570&w=2 https://marc.info/?l=ncurses-bug&m=176540731801330&w=2 https://marc.info/?l=ncurses-bug&m=176545557728083&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-69720 https://www.cve.org/CVERecord?id=CVE-2025-69720
ncurses-libs	CVE-2025-69720	MEDIUM	6.4-14.20240127.el10	6.4-15.20240127.el10_1	https://access.redhat.com/errata/RHSA-2026:5913 https://access.redhat.com/security/cve/CVE-2025-69720 https://bugzilla.redhat.com/2449037 https://errata.almalinux.org/10/ALSA-2026-5913.html https://github.com/Cao-Wuhui/CVE-2025-69720 https://invisible-island.net/archives/ncurses/6.5/ https://invisible-island.net/ncurses/ https://linux.oracle.com/cve/CVE-2025-69720.html https://linux.oracle.com/errata/ELSA-2026-5913.html https://marc.info/?l=ncurses-bug&m=176539968328570&w=2 https://marc.info/?l=ncurses-bug&m=176540731801330&w=2 https://marc.info/?l=ncurses-bug&m=176545557728083&w=2 https://nvd.nist.gov/vuln/detail/CVE-2025-69720 https://www.cve.org/CVERecord?id=CVE-2025-69720
util-linux	CVE-2025-14104	MEDIUM	2.40.2-13.el10	2.40.2-15.el10_1	https://access.redhat.com/errata/RHSA-2026:1696 https://access.redhat.com/errata/RHSA-2026:1852 https://access.redhat.com/errata/RHSA-2026:1913 https://access.redhat.com/errata/RHSA-2026:2485 https://access.redhat.com/errata/RHSA-2026:2563 https://access.redhat.com/errata/RHSA-2026:2737 https://access.redhat.com/errata/RHSA-2026:2800 https://access.redhat.com/errata/RHSA-2026:3406 https://access.redhat.com/errata/RHSA-2026:4943 https://access.redhat.com/security/cve/CVE-2025-14104 https://bugzilla.redhat.com/2419369 https://bugzilla.redhat.com/show_bug.cgi?id=2419369 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14104 https://errata.almalinux.org/9/ALSA-2026-1913.html https://errata.rockylinux.org/RLSA-2026:1913 https://linux.oracle.com/cve/CVE-2025-14104.html https://linux.oracle.com/errata/ELSA-2026-1913.html https://nvd.nist.gov/vuln/detail/CVE-2025-14104 https://www.cve.org/CVERecord?id=CVE-2025-14104
util-linux-core	CVE-2025-14104	MEDIUM	2.40.2-13.el10	2.40.2-15.el10_1	https://access.redhat.com/errata/RHSA-2026:1696 https://access.redhat.com/errata/RHSA-2026:1852 https://access.redhat.com/errata/RHSA-2026:1913 https://access.redhat.com/errata/RHSA-2026:2485 https://access.redhat.com/errata/RHSA-2026:2563 https://access.redhat.com/errata/RHSA-2026:2737 https://access.redhat.com/errata/RHSA-2026:2800 https://access.redhat.com/errata/RHSA-2026:3406 https://access.redhat.com/errata/RHSA-2026:4943 https://access.redhat.com/security/cve/CVE-2025-14104 https://bugzilla.redhat.com/2419369 https://bugzilla.redhat.com/show_bug.cgi?id=2419369 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14104 https://errata.almalinux.org/9/ALSA-2026-1913.html https://errata.rockylinux.org/RLSA-2026:1913 https://linux.oracle.com/cve/CVE-2025-14104.html https://linux.oracle.com/errata/ELSA-2026-1913.html https://nvd.nist.gov/vuln/detail/CVE-2025-14104 https://www.cve.org/CVERecord?id=CVE-2025-14104
No Misconfigurations found

Java (jar)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
com.fasterxml.jackson.core:jackson-core	GHSA-72hv-8253-57qq	MEDIUM	2.15.1	2.18.6, 2.21.1, 3.1.0	https://github.com/FasterXML/jackson-core https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf https://github.com/FasterXML/jackson-core/pull/1555 https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
commons-io:commons-io	CVE-2024-47554	HIGH	2.8.0	2.14.0	http://www.openwall.com/lists/oss-security/2024/10/03/2 https://access.redhat.com/security/cve/CVE-2024-47554 https://github.com/apache/commons-io https://lists.apache.org/thread/6ozr91rr9cj5lm0zyhv30bsp317hk5z1 https://nvd.nist.gov/vuln/detail/CVE-2024-47554 https://security.netapp.com/advisory/ntap-20250131-0010 https://security.netapp.com/advisory/ntap-20250131-0010/ https://www.cve.org/CVERecord?id=CVE-2024-47554
commons-lang:commons-lang	CVE-2025-48924	MEDIUM	2.6	no fix available	http://www.openwall.com/lists/oss-security/2025/07/11/1 https://access.redhat.com/security/cve/CVE-2025-48924 https://github.com/apache/commons-lang https://github.com/apache/commons-lang/commit/b424803abdb2bec818e4fbcb251ce031c22aca53 https://lists.apache.org/thread/bgv0lpswokgol11tloxnjfzdl7yrc1g1 https://lists.debian.org/debian-lts-announce/2025/08/msg00000.html https://lists.debian.org/debian-lts-announce/2025/08/msg00026.html https://lists.debian.org/debian-lts-announce/2025/09/msg00032.html https://lists.debian.org/debian-lts-announce/2025/09/msg00036.html https://nvd.nist.gov/vuln/detail/CVE-2025-48924 https://www.cve.org/CVERecord?id=CVE-2025-48924 https://www.openwall.com/lists/oss-security/2025/07/11/1
org.apache.commons:commons-lang3	CVE-2025-48924	MEDIUM	3.12.0	3.18.0	http://www.openwall.com/lists/oss-security/2025/07/11/1 https://access.redhat.com/security/cve/CVE-2025-48924 https://github.com/apache/commons-lang https://github.com/apache/commons-lang/commit/b424803abdb2bec818e4fbcb251ce031c22aca53 https://lists.apache.org/thread/bgv0lpswokgol11tloxnjfzdl7yrc1g1 https://lists.debian.org/debian-lts-announce/2025/08/msg00000.html https://lists.debian.org/debian-lts-announce/2025/08/msg00026.html https://lists.debian.org/debian-lts-announce/2025/09/msg00032.html https://lists.debian.org/debian-lts-announce/2025/09/msg00036.html https://nvd.nist.gov/vuln/detail/CVE-2025-48924 https://www.cve.org/CVERecord?id=CVE-2025-48924 https://www.openwall.com/lists/oss-security/2025/07/11/1
org.codehaus.plexus:plexus-utils	CVE-2025-67030	HIGH	3.3.1	4.0.3	https://access.redhat.com/security/cve/CVE-2025-67030 https://gist.github.com/weaver4VD/3216dac645220f8c9b488362f61241ec https://github.com/codehaus-plexus/plexus-utils https://github.com/codehaus-plexus/plexus-utils/commit/6d780b3378829318ba5c2d29547e0012d5b29642 https://github.com/codehaus-plexus/plexus-utils/issues/294 https://github.com/codehaus-plexus/plexus-utils/pull/295 https://github.com/codehaus-plexus/plexus-utils/pull/296 https://github.com/codehaus-plexus/plexus-utils/releases/tag/plexus-utils-4.0.3 https://nvd.nist.gov/vuln/detail/CVE-2025-67030 https://www.cve.org/CVERecord?id=CVE-2025-67030
org.codehaus.plexus:plexus-utils	CVE-2025-67030	HIGH	3.4.1	4.0.3	https://access.redhat.com/security/cve/CVE-2025-67030 https://gist.github.com/weaver4VD/3216dac645220f8c9b488362f61241ec https://github.com/codehaus-plexus/plexus-utils https://github.com/codehaus-plexus/plexus-utils/commit/6d780b3378829318ba5c2d29547e0012d5b29642 https://github.com/codehaus-plexus/plexus-utils/issues/294 https://github.com/codehaus-plexus/plexus-utils/pull/295 https://github.com/codehaus-plexus/plexus-utils/pull/296 https://github.com/codehaus-plexus/plexus-utils/releases/tag/plexus-utils-4.0.3 https://nvd.nist.gov/vuln/detail/CVE-2025-67030 https://www.cve.org/CVERecord?id=CVE-2025-67030
org.codehaus.plexus:plexus-utils	CVE-2025-67030	HIGH	3.5.1	4.0.3	https://access.redhat.com/security/cve/CVE-2025-67030 https://gist.github.com/weaver4VD/3216dac645220f8c9b488362f61241ec https://github.com/codehaus-plexus/plexus-utils https://github.com/codehaus-plexus/plexus-utils/commit/6d780b3378829318ba5c2d29547e0012d5b29642 https://github.com/codehaus-plexus/plexus-utils/issues/294 https://github.com/codehaus-plexus/plexus-utils/pull/295 https://github.com/codehaus-plexus/plexus-utils/pull/296 https://github.com/codehaus-plexus/plexus-utils/releases/tag/plexus-utils-4.0.3 https://nvd.nist.gov/vuln/detail/CVE-2025-67030 https://www.cve.org/CVERecord?id=CVE-2025-67030
org.codehaus.plexus:plexus-utils	CVE-2025-67030	HIGH	3.6.0	4.0.3	https://access.redhat.com/security/cve/CVE-2025-67030 https://gist.github.com/weaver4VD/3216dac645220f8c9b488362f61241ec https://github.com/codehaus-plexus/plexus-utils https://github.com/codehaus-plexus/plexus-utils/commit/6d780b3378829318ba5c2d29547e0012d5b29642 https://github.com/codehaus-plexus/plexus-utils/issues/294 https://github.com/codehaus-plexus/plexus-utils/pull/295 https://github.com/codehaus-plexus/plexus-utils/pull/296 https://github.com/codehaus-plexus/plexus-utils/releases/tag/plexus-utils-4.0.3 https://nvd.nist.gov/vuln/detail/CVE-2025-67030 https://www.cve.org/CVERecord?id=CVE-2025-67030
org.eclipse.jetty:jetty-http	CVE-2024-6763	MEDIUM	9.4.58.v20250814	12.0.12	https://access.redhat.com/security/cve/CVE-2024-6763 https://github.com/jetty/jetty.project https://github.com/jetty/jetty.project/pull/12012 https://github.com/jetty/jetty.project/security/advisories/GHSA-qh8g-58pp-2wxh https://gitlab.eclipse.org/security/cve-assignement/-/issues/25 https://nvd.nist.gov/vuln/detail/CVE-2024-6763 https://security.netapp.com/advisory/ntap-20250306-0005 https://security.netapp.com/advisory/ntap-20250306-0005/ https://www.cve.org/CVERecord?id=CVE-2024-6763
org.msgpack:msgpack-core	CVE-2026-21452	HIGH	0.9.10	0.9.11	https://github.com/msgpack/msgpack-java https://github.com/msgpack/msgpack-java/commit/daa2ea6b2f11f500e22c70a22f689f7a9debdeae https://github.com/msgpack/msgpack-java/releases/tag/v0.9.11 https://github.com/msgpack/msgpack-java/security/advisories/GHSA-cw39-r4h6-8j3x https://nvd.nist.gov/vuln/detail/CVE-2026-21452
No Misconfigurations found

Node.js (node-pkg)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
brace-expansion	CVE-2026-33750	MEDIUM	1.1.12	5.0.5, 3.0.2, 2.0.3, 1.1.13	https://access.redhat.com/security/cve/CVE-2026-33750 https://github.com/juliangruber/brace-expansion https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113 https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184 https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5 https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2 https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a https://github.com/juliangruber/brace-expansion/issues/98 https://github.com/juliangruber/brace-expansion/pull/95 https://github.com/juliangruber/brace-expansion/pull/96 https://github.com/juliangruber/brace-expansion/pull/97 https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v https://nvd.nist.gov/vuln/detail/CVE-2026-33750 https://www.cve.org/CVERecord?id=CVE-2026-33750
brace-expansion	CVE-2026-33750	MEDIUM	1.1.12	5.0.5, 3.0.2, 2.0.3, 1.1.13	https://access.redhat.com/security/cve/CVE-2026-33750 https://github.com/juliangruber/brace-expansion https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113 https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184 https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5 https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2 https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a https://github.com/juliangruber/brace-expansion/issues/98 https://github.com/juliangruber/brace-expansion/pull/95 https://github.com/juliangruber/brace-expansion/pull/96 https://github.com/juliangruber/brace-expansion/pull/97 https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v https://nvd.nist.gov/vuln/detail/CVE-2026-33750 https://www.cve.org/CVERecord?id=CVE-2026-33750
brace-expansion	CVE-2026-33750	MEDIUM	2.0.2	5.0.5, 3.0.2, 2.0.3, 1.1.13	https://access.redhat.com/security/cve/CVE-2026-33750 https://github.com/juliangruber/brace-expansion https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113 https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184 https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5 https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2 https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a https://github.com/juliangruber/brace-expansion/issues/98 https://github.com/juliangruber/brace-expansion/pull/95 https://github.com/juliangruber/brace-expansion/pull/96 https://github.com/juliangruber/brace-expansion/pull/97 https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v https://nvd.nist.gov/vuln/detail/CVE-2026-33750 https://www.cve.org/CVERecord?id=CVE-2026-33750
brace-expansion	CVE-2026-33750	MEDIUM	2.0.2	5.0.5, 3.0.2, 2.0.3, 1.1.13	https://access.redhat.com/security/cve/CVE-2026-33750 https://github.com/juliangruber/brace-expansion https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113 https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184 https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5 https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2 https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a https://github.com/juliangruber/brace-expansion/issues/98 https://github.com/juliangruber/brace-expansion/pull/95 https://github.com/juliangruber/brace-expansion/pull/96 https://github.com/juliangruber/brace-expansion/pull/97 https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v https://nvd.nist.gov/vuln/detail/CVE-2026-33750 https://www.cve.org/CVERecord?id=CVE-2026-33750
brace-expansion	CVE-2026-33750	MEDIUM	5.0.3	5.0.5, 3.0.2, 2.0.3, 1.1.13	https://access.redhat.com/security/cve/CVE-2026-33750 https://github.com/juliangruber/brace-expansion https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113 https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184 https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5 https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2 https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a https://github.com/juliangruber/brace-expansion/issues/98 https://github.com/juliangruber/brace-expansion/pull/95 https://github.com/juliangruber/brace-expansion/pull/96 https://github.com/juliangruber/brace-expansion/pull/97 https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v https://nvd.nist.gov/vuln/detail/CVE-2026-33750 https://www.cve.org/CVERecord?id=CVE-2026-33750
brace-expansion	CVE-2026-33750	MEDIUM	5.0.4	5.0.5, 3.0.2, 2.0.3, 1.1.13	https://access.redhat.com/security/cve/CVE-2026-33750 https://github.com/juliangruber/brace-expansion https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L107-L113 https://github.com/juliangruber/brace-expansion/blob/daa71bcb4a30a2df9bcb7f7b8daaf2ab30e5794a/src/index.ts#L184 https://github.com/juliangruber/brace-expansion/commit/311ac0d54994158c0a384e286a7d6cbb17ee8ed5 https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2 https://github.com/juliangruber/brace-expansion/commit/b9cacd9e55e7a1fa588fe4b7bb1159d52f1d902a https://github.com/juliangruber/brace-expansion/issues/98 https://github.com/juliangruber/brace-expansion/pull/95 https://github.com/juliangruber/brace-expansion/pull/96 https://github.com/juliangruber/brace-expansion/pull/97 https://github.com/juliangruber/brace-expansion/security/advisories/GHSA-f886-m6hf-6m8v https://nvd.nist.gov/vuln/detail/CVE-2026-33750 https://www.cve.org/CVERecord?id=CVE-2026-33750
minimatch	CVE-2026-27903	HIGH	10.2.2	10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3	https://access.redhat.com/security/cve/CVE-2026-27903 https://github.com/isaacs/minimatch https://github.com/isaacs/minimatch/commit/0bf499aa45f5059b56809cc3b75ff3eafeb8d748 https://github.com/isaacs/minimatch/security/advisories/GHSA-7r86-cg39-jmmj https://nvd.nist.gov/vuln/detail/CVE-2026-27903 https://www.cve.org/CVERecord?id=CVE-2026-27903
minimatch	CVE-2026-27904	HIGH	10.2.2	10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4	https://access.redhat.com/security/cve/CVE-2026-27904 https://github.com/isaacs/minimatch https://github.com/isaacs/minimatch/commit/11d0df6165d15a955462316b26d52e5efae06fce https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74 https://nvd.nist.gov/vuln/detail/CVE-2026-27904 https://www.cve.org/CVERecord?id=CVE-2026-27904
picomatch	CVE-2026-33671	HIGH	4.0.3	4.0.4, 3.0.2, 2.3.2	https://access.redhat.com/security/cve/CVE-2026-33671 https://github.com/micromatch/picomatch https://github.com/micromatch/picomatch/commit/5eceecd27543b8e056b9307d69e105ea03618a7d https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj https://nvd.nist.gov/vuln/detail/CVE-2026-33671 https://www.cve.org/CVERecord?id=CVE-2026-33671
picomatch	CVE-2026-33671	HIGH	4.0.3	4.0.4, 3.0.2, 2.3.2	https://access.redhat.com/security/cve/CVE-2026-33671 https://github.com/micromatch/picomatch https://github.com/micromatch/picomatch/commit/5eceecd27543b8e056b9307d69e105ea03618a7d https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj https://nvd.nist.gov/vuln/detail/CVE-2026-33671 https://www.cve.org/CVERecord?id=CVE-2026-33671
picomatch	CVE-2026-33672	MEDIUM	4.0.3	4.0.4, 3.0.2, 2.3.2	https://access.redhat.com/security/cve/CVE-2026-33672 https://github.com/micromatch/picomatch https://github.com/micromatch/picomatch/commit/4516eb521f13a46b2fe1a1d2c9ef6b20ddc0e903 https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p https://nvd.nist.gov/vuln/detail/CVE-2026-33672 https://www.cve.org/CVERecord?id=CVE-2026-33672
picomatch	CVE-2026-33672	MEDIUM	4.0.3	4.0.4, 3.0.2, 2.3.2	https://access.redhat.com/security/cve/CVE-2026-33672 https://github.com/micromatch/picomatch https://github.com/micromatch/picomatch/commit/4516eb521f13a46b2fe1a1d2c9ef6b20ddc0e903 https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p https://nvd.nist.gov/vuln/detail/CVE-2026-33672 https://www.cve.org/CVERecord?id=CVE-2026-33672
tar	CVE-2026-29786	HIGH	7.5.9	7.5.10	https://access.redhat.com/security/cve/CVE-2026-29786 https://github.com/isaacs/node-tar https://github.com/isaacs/node-tar/commit/7bc755dd85e623c0279e08eb3784909e6d7e4b9f https://github.com/isaacs/node-tar/security/advisories/GHSA-qffp-2rhf-9h96 https://nvd.nist.gov/vuln/detail/CVE-2026-29786 https://www.cve.org/CVERecord?id=CVE-2026-29786
tar	CVE-2026-31802	HIGH	7.5.9	7.5.11	https://access.redhat.com/security/cve/CVE-2026-31802 https://github.com/isaacs/node-tar https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad https://github.com/isaacs/node-tar/security/advisories/GHSA-9ppj-qmqm-q256 https://nvd.nist.gov/vuln/detail/CVE-2026-31802 https://www.cve.org/CVERecord?id=CVE-2026-31802
yaml	CVE-2026-33532	MEDIUM	2.4.1	2.8.3, 1.10.3	https://access.redhat.com/security/cve/CVE-2026-33532 https://github.com/eemeli/yaml https://github.com/eemeli/yaml/commit/1e84ebbea7ec35011a4c61bbb820a529ee4f359b https://github.com/eemeli/yaml/releases/tag/v1.10.3 https://github.com/eemeli/yaml/releases/tag/v2.8.3 https://github.com/eemeli/yaml/security/advisories/GHSA-48c2-rrv3-qjmp https://nvd.nist.gov/vuln/detail/CVE-2026-33532 https://www.cve.org/CVERecord?id=CVE-2026-33532
yaml	CVE-2026-33532	MEDIUM	2.8.2	2.8.3, 1.10.3	https://access.redhat.com/security/cve/CVE-2026-33532 https://github.com/eemeli/yaml https://github.com/eemeli/yaml/commit/1e84ebbea7ec35011a4c61bbb820a529ee4f359b https://github.com/eemeli/yaml/releases/tag/v1.10.3 https://github.com/eemeli/yaml/releases/tag/v2.8.3 https://github.com/eemeli/yaml/security/advisories/GHSA-48c2-rrv3-qjmp https://nvd.nist.gov/vuln/detail/CVE-2026-33532 https://www.cve.org/CVERecord?id=CVE-2026-33532
No Misconfigurations found

Python (python-pkg)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
Pygments	CVE-2026-4539	LOW	2.19.2	2.20.0	https://access.redhat.com/security/cve/CVE-2026-4539 https://github.com/pygments/pygments https://github.com/pygments/pygments/ https://github.com/pygments/pygments/commit/24b8aa76c6cd6d70f39c6dd605cce319c98e2ccc https://github.com/pygments/pygments/issues/3058 https://github.com/pygments/pygments/pull/3064 https://github.com/pygments/pygments/releases/tag/2.20.0 https://nvd.nist.gov/vuln/detail/CVE-2026-4539 https://vuldb.com/?ctiid.352327 https://vuldb.com/?id.352327 https://vuldb.com/?submit.774685 https://www.cve.org/CVERecord?id=CVE-2026-4539
cryptography	CVE-2026-34073	LOW	46.0.5	46.0.6	https://github.com/pyca/cryptography https://github.com/pyca/cryptography/security/advisories/GHSA-m959-cc7f-wv43 https://nvd.nist.gov/vuln/detail/CVE-2026-34073
No Misconfigurations found

Ruby (gemspec)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
json	CVE-2026-33210	CRITICAL	2.18.0	~> 2.15.2.1, ~> 2.17.1.2, >= 2.19.2	https://access.redhat.com/security/cve/CVE-2026-33210 https://github.com/advisories/GHSA-3m6g-2423-7cp3 https://github.com/ruby/json https://github.com/ruby/json/security/advisories/GHSA-3m6g-2423-7cp3 https://github.com/rubysec/ruby-advisory-db/blob/master/gems/json/CVE-2026-33210.yml https://nvd.nist.gov/vuln/detail/CVE-2026-33210 https://www.cve.org/CVERecord?id=CVE-2026-33210
zlib	CVE-2026-27820	UNKNOWN	3.2.2	~> 3.0.1, ~> 3.1.2, >= 3.2.3	https://rubygems.org/gems/zlib/versions/3.0.1 https://rubygems.org/gems/zlib/versions/3.1.2 https://rubygems.org/gems/zlib/versions/3.2.3 https://www.ruby-lang.org/en/news/2026/03/05/buffer-overflow-zlib-cve-2026-27820
No Misconfigurations found

opt/cdxgen/node_modules/.pnpm/@appthreat+atom-parsetools@1.1.3/node_modules/@appthreat/atom-parsetools/plugins/composer/installed.json (composer-vendor)¶

No Vulnerabilities found
No Misconfigurations found

opt/cdxgen/node_modules/.pnpm/@cdxgen+cdxgen-plugins-bin-linux-amd64@2.0.3/node_modules/@cdxgen/cdxgen-plugins-bin-linux-amd64/plugins/sourcekitten/sbom-trivy-postbuild.cdx.json (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
github.com/cloudflare/circl	CVE-2026-1229	LOW	v1.6.1	1.6.3	https://github.com/cloudflare/circl https://github.com/cloudflare/circl/pull/583 https://github.com/cloudflare/circl/releases/tag/v1.6.3 https://github.com/cloudflare/circl/security/advisories/GHSA-q9hv-hpm4-hj6x https://nvd.nist.gov/vuln/detail/CVE-2026-1229
github.com/docker/cli	CVE-2025-15558	HIGH	v29.0.3+incompatible	29.2.0	https://access.redhat.com/security/cve/CVE-2025-15558 https://docs.docker.com/desktop/release-notes https://docs.docker.com/desktop/release-notes/ https://github.com/docker/cli https://github.com/docker/cli/commit/13759330b1f7e7cb0d67047ea42c5482548ba7fa https://github.com/docker/cli/pull/6713 https://github.com/docker/cli/security/advisories/GHSA-p436-gjf2-799p https://github.com/docker/compose/pull/12300 https://nvd.nist.gov/vuln/detail/CVE-2025-15558 https://www.cve.org/CVERecord?id=CVE-2025-15558 https://www.zerodayinitiative.com/advisories/ZDI-CAN-28304 https://www.zerodayinitiative.com/advisories/ZDI-CAN-28304/
github.com/docker/docker	CVE-2026-34040	HIGH	v28.5.2+incompatible	29.3.1	https://docs.docker.com/engine/extend/plugins_authorization https://github.com/moby/moby https://github.com/moby/moby/commit/e89edb19ad7de0407a5d31e3111cb01aa10b5a38 https://github.com/moby/moby/releases/tag/docker-v29.3.1 https://github.com/moby/moby/security/advisories/GHSA-v23v-6jw2-98fq https://github.com/moby/moby/security/advisories/GHSA-x744-4wpc-v9h2 https://nvd.nist.gov/vuln/detail/CVE-2026-34040
github.com/docker/docker	CVE-2026-33997	MEDIUM	v28.5.2+incompatible	29.3.1	https://docs.docker.com/engine/extend/legacy_plugins https://github.com/moby/moby https://github.com/moby/moby/commit/f4d6f25bf0c3fa12d4968320a45685947756a22a https://github.com/moby/moby/releases/tag/docker-v29.3.1 https://github.com/moby/moby/security/advisories/GHSA-pxq6-2prw-chj9 https://nvd.nist.gov/vuln/detail/CVE-2026-33997
github.com/go-git/go-git/v5	CVE-2026-25934	MEDIUM	v5.16.3	5.16.5	https://access.redhat.com/security/cve/CVE-2026-25934 https://github.com/go-git/go-git https://github.com/go-git/go-git/releases/tag/v5.16.5 https://github.com/go-git/go-git/security/advisories/GHSA-37cx-329c-33x3 https://nvd.nist.gov/vuln/detail/CVE-2026-25934 https://ubuntu.com/security/notices/USN-8088-1 https://www.cve.org/CVERecord?id=CVE-2026-25934
github.com/go-git/go-git/v5	CVE-2026-34165	MEDIUM	v5.16.3	5.17.1	https://github.com/go-git/go-git https://github.com/go-git/go-git/releases/tag/v5.17.1 https://github.com/go-git/go-git/security/advisories/GHSA-jhf3-xxhw-2wpp https://nvd.nist.gov/vuln/detail/CVE-2026-34165
github.com/go-git/go-git/v5	CVE-2026-33762	LOW	v5.16.3	5.17.1	https://github.com/go-git/go-git https://github.com/go-git/go-git/releases/tag/v5.17.1 https://github.com/go-git/go-git/security/advisories/GHSA-gm2x-2g9h-ccm8 https://nvd.nist.gov/vuln/detail/CVE-2026-33762
github.com/moby/buildkit	CVE-2026-33747	HIGH	v0.26.2	0.28.1	https://access.redhat.com/security/cve/CVE-2026-33747 https://github.com/moby/buildkit https://github.com/moby/buildkit/releases/tag/v0.28.1 https://github.com/moby/buildkit/security/advisories/GHSA-4c29-8rgm-jvjj https://nvd.nist.gov/vuln/detail/CVE-2026-33747 https://www.cve.org/CVERecord?id=CVE-2026-33747
github.com/moby/buildkit	CVE-2026-33748	HIGH	v0.26.2	0.28.1	https://access.redhat.com/security/cve/CVE-2026-33748 https://docs.docker.com/build/concepts/context/#url-fragments https://github.com/moby/buildkit https://github.com/moby/buildkit/releases/tag/v0.28.1 https://github.com/moby/buildkit/security/advisories/GHSA-4vrq-3vrq-g6gg https://nvd.nist.gov/vuln/detail/CVE-2026-33748 https://www.cve.org/CVERecord?id=CVE-2026-33748
github.com/sigstore/cosign/v2	CVE-2026-22703	MEDIUM	v2.2.4	2.6.2	https://access.redhat.com/security/cve/CVE-2026-22703 https://github.com/sigstore/cosign https://github.com/sigstore/cosign/commit/6832fba4928c1ad69400235bbc41212de5006176 https://github.com/sigstore/cosign/pull/4623 https://github.com/sigstore/cosign/security/advisories/GHSA-whqx-f9j3-ch6m https://nvd.nist.gov/vuln/detail/CVE-2026-22703 https://www.cve.org/CVERecord?id=CVE-2026-22703
github.com/sigstore/rekor	CVE-2026-23831	MEDIUM	v1.4.3	1.5.0	https://access.redhat.com/security/cve/CVE-2026-23831 https://github.com/sigstore/rekor https://github.com/sigstore/rekor/commit/39bae3d192bce48ef4ef2cbd1788fb5770fee8cd https://github.com/sigstore/rekor/releases/tag/v1.5.0 https://github.com/sigstore/rekor/security/advisories/GHSA-273p-m2cw-6833 https://nvd.nist.gov/vuln/detail/CVE-2026-23831 https://www.cve.org/CVERecord?id=CVE-2026-23831
github.com/sigstore/rekor	CVE-2026-24117	MEDIUM	v1.4.3	1.5.0	https://access.redhat.com/security/cve/CVE-2026-24117 https://github.com/sigstore/rekor https://github.com/sigstore/rekor/commit/60ef2bceba192c5bf9327d003bceea8bf1f8275f https://github.com/sigstore/rekor/releases/tag/v1.5.0 https://github.com/sigstore/rekor/security/advisories/GHSA-4c4x-jm2x-pf9j https://nvd.nist.gov/vuln/detail/CVE-2026-24117 https://www.cve.org/CVERecord?id=CVE-2026-24117
github.com/sigstore/sigstore	CVE-2026-24137	MEDIUM	v1.9.5	1.10.4	https://access.redhat.com/security/cve/CVE-2026-24137 https://github.com/sigstore/sigstore https://github.com/sigstore/sigstore/commit/8ec410a2993ea78083aecf0e473a85453039496e https://github.com/sigstore/sigstore/releases/tag/v1.10.4 https://github.com/sigstore/sigstore/security/advisories/GHSA-fcv2-xgw5-pqxf https://nvd.nist.gov/vuln/detail/CVE-2026-24137 https://pkg.go.dev/vuln/GO-2026-4358 https://www.cve.org/CVERecord?id=CVE-2026-24137
github.com/sigstore/timestamp-authority	CVE-2025-66564	HIGH	v1.2.2	2.0.3	https://access.redhat.com/security/cve/CVE-2025-66564 https://github.com/sigstore/timestamp-authority https://github.com/sigstore/timestamp-authority/commit/0cae34e197d685a14904e0bad135b89d13b69421 https://github.com/sigstore/timestamp-authority/security/advisories/GHSA-4qg8-fj49-pxjh https://nvd.nist.gov/vuln/detail/CVE-2025-66564 https://www.cve.org/CVERecord?id=CVE-2025-66564
go.opentelemetry.io/otel/sdk	CVE-2026-24051	HIGH	v1.38.0	1.40.0	https://github.com/open-telemetry/opentelemetry-go https://github.com/open-telemetry/opentelemetry-go/commit/d45961bcda453fcbdb6469c22d6e88a1f9970a53 https://github.com/open-telemetry/opentelemetry-go/security/advisories/GHSA-9h8m-3fm2-qjrq https://nvd.nist.gov/vuln/detail/CVE-2026-24051 https://pkg.go.dev/vuln/GO-2026-4394
google.golang.org/grpc	CVE-2026-33186	CRITICAL	v1.76.0	1.79.3	https://access.redhat.com/security/cve/CVE-2026-33186 https://github.com/grpc/grpc-go https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3 https://nvd.nist.gov/vuln/detail/CVE-2026-33186 https://www.cve.org/CVERecord?id=CVE-2026-33186
No Misconfigurations found

opt/pypi/bin/uv (rustbinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
rustls-webpki	GHSA-pwjx-qhcg-rvj4	MEDIUM	0.103.9	0.103.10, 0.104.0-alpha.5	https://github.com/rustls/webpki https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4 https://rustsec.org/advisories/RUSTSEC-2026-0049.html
No Misconfigurations found

opt/pypi/bin/uvx (rustbinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
rustls-webpki	GHSA-pwjx-qhcg-rvj4	MEDIUM	0.103.9	0.103.10, 0.104.0-alpha.5	https://github.com/rustls/webpki https://github.com/rustls/webpki/security/advisories/GHSA-pwjx-qhcg-rvj4 https://rustsec.org/advisories/RUSTSEC-2026-0049.html
No Misconfigurations found

usr/local/bin/bazel (gobinary)¶

Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
stdlib	CVE-2025-68121	CRITICAL	v1.24.0	1.24.13, 1.25.7, 1.26.0-rc.3	https://access.redhat.com/errata/RHSA-2026:4177 https://access.redhat.com/security/cve/CVE-2025-68121 https://bugzilla.redhat.com/2434432 https://bugzilla.redhat.com/2437111 https://bugzilla.redhat.com/show_bug.cgi?id=2434432 https://bugzilla.redhat.com/show_bug.cgi?id=2437111 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61726 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68121 https://errata.almalinux.org/9/ALSA-2026-4177.html https://errata.rockylinux.org/RLSA-2026:4177 https://go.dev/cl/737700 https://go.dev/issue/77217 https://groups.google.com/g/golang-announce/c/K09ubi9FQFk https://linux.oracle.com/cve/CVE-2025-68121.html https://linux.oracle.com/errata/ELSA-2026-5146.html https://nvd.nist.gov/vuln/detail/CVE-2025-68121 https://pkg.go.dev/vuln/GO-2026-4337 https://www.cve.org/CVERecord?id=CVE-2025-68121
stdlib	CVE-2025-22874	HIGH	v1.24.0	1.24.4	https://access.redhat.com/security/cve/CVE-2025-22874 https://go.dev/cl/670375 https://go.dev/issue/73612 https://groups.google.com/g/golang-announce/c/ufZ8WpEsA3A https://nvd.nist.gov/vuln/detail/CVE-2025-22874 https://pkg.go.dev/vuln/GO-2025-3749 https://www.cve.org/CVERecord?id=CVE-2025-22874
stdlib	CVE-2025-47907	HIGH	v1.24.0	1.23.12, 1.24.6	http://www.openwall.com/lists/oss-security/2025/08/06/1 https://access.redhat.com/errata/RHSA-2025:20909 https://access.redhat.com/security/cve/CVE-2025-47907 https://bugzilla.redhat.com/2387083 https://bugzilla.redhat.com/2393152 https://errata.almalinux.org/9/ALSA-2025-20909.html https://go.dev/cl/693735 https://go.dev/issue/74831 https://groups.google.com/g/golang-announce/c/x5MKroML2yM https://linux.oracle.com/cve/CVE-2025-47907.html https://linux.oracle.com/errata/ELSA-2025-20983.html https://nvd.nist.gov/vuln/detail/CVE-2025-47907 https://pkg.go.dev/vuln/GO-2025-3849 https://www.cve.org/CVERecord?id=CVE-2025-47907
stdlib	CVE-2025-58183	HIGH	v1.24.0	1.24.8, 1.25.2	http://www.openwall.com/lists/oss-security/2025/10/08/1 https://access.redhat.com/errata/RHSA-2026:1381 https://access.redhat.com/security/cve/CVE-2025-58183 https://bugzilla.redhat.com/2407258 https://bugzilla.redhat.com/show_bug.cgi?id=2407258 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58183 https://errata.almalinux.org/9/ALSA-2026-1381.html https://errata.rockylinux.org/RLSA-2025:23326 https://go.dev/cl/709861 https://go.dev/issue/75677 https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI https://linux.oracle.com/cve/CVE-2025-58183.html https://linux.oracle.com/errata/ELSA-2026-50076.html https://nvd.nist.gov/vuln/detail/CVE-2025-58183 https://pkg.go.dev/vuln/GO-2025-4014 https://www.cve.org/CVERecord?id=CVE-2025-58183
stdlib	CVE-2025-61726	HIGH	v1.24.0	1.24.12, 1.25.6	https://access.redhat.com/errata/RHSA-2026:4177 https://access.redhat.com/security/cve/CVE-2025-61726 https://bugzilla.redhat.com/2434432 https://bugzilla.redhat.com/2437111 https://bugzilla.redhat.com/show_bug.cgi?id=2434432 https://bugzilla.redhat.com/show_bug.cgi?id=2437111 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61726 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68121 https://errata.almalinux.org/9/ALSA-2026-4177.html https://errata.rockylinux.org/RLSA-2026:4177 https://go.dev/cl/736712 https://go.dev/issue/77101 https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc https://linux.oracle.com/cve/CVE-2025-61726.html https://linux.oracle.com/errata/ELSA-2026-5146.html https://nvd.nist.gov/vuln/detail/CVE-2025-61726 https://pkg.go.dev/vuln/GO-2026-4341 https://www.cve.org/CVERecord?id=CVE-2025-61726
stdlib	CVE-2025-61728	HIGH	v1.24.0	1.24.12, 1.25.6	http://www.openwall.com/lists/oss-security/2026/01/15/4 https://access.redhat.com/errata/RHSA-2026:3753 https://access.redhat.com/security/cve/CVE-2025-61728 https://bugzilla.redhat.com/2418462 https://bugzilla.redhat.com/2434431 https://bugzilla.redhat.com/2434432 https://bugzilla.redhat.com/2437111 https://bugzilla.redhat.com/show_bug.cgi?id=2418462 https://bugzilla.redhat.com/show_bug.cgi?id=2434431 https://bugzilla.redhat.com/show_bug.cgi?id=2434432 https://bugzilla.redhat.com/show_bug.cgi?id=2437111 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61726 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61728 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61729 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68121 https://errata.almalinux.org/9/ALSA-2026-3753.html https://errata.rockylinux.org/RLSA-2026:3337 https://go.dev/cl/736713 https://go.dev/issue/77102 https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc https://linux.oracle.com/cve/CVE-2025-61728.html https://linux.oracle.com/errata/ELSA-2026-4672.html https://nvd.nist.gov/vuln/detail/CVE-2025-61728 https://pkg.go.dev/vuln/GO-2026-4342 https://www.cve.org/CVERecord?id=CVE-2025-61728
stdlib	CVE-2025-61729	HIGH	v1.24.0	1.24.11, 1.25.5	https://access.redhat.com/errata/RHSA-2026:3928 https://access.redhat.com/security/cve/CVE-2025-61729 https://bugzilla.redhat.com/2418462 https://bugzilla.redhat.com/2434432 https://bugzilla.redhat.com/2437111 https://bugzilla.redhat.com/show_bug.cgi?id=2418462 https://bugzilla.redhat.com/show_bug.cgi?id=2434432 https://bugzilla.redhat.com/show_bug.cgi?id=2437111 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61726 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61729 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68121 https://errata.almalinux.org/9/ALSA-2026-3928.html https://errata.rockylinux.org/RLSA-2026:3928 https://go.dev/cl/725920 https://go.dev/issue/76445 https://groups.google.com/g/golang-announce/c/8FJoBkPddm4 https://linux.oracle.com/cve/CVE-2025-61729.html https://linux.oracle.com/errata/ELSA-2026-5146.html https://nvd.nist.gov/vuln/detail/CVE-2025-61729 https://pkg.go.dev/vuln/GO-2025-4155 https://www.cve.org/CVERecord?id=CVE-2025-61729
stdlib	CVE-2026-25679	HIGH	v1.24.0	1.25.8, 1.26.1	https://access.redhat.com/errata/RHSA-2026:5942 https://access.redhat.com/security/cve/CVE-2026-25679 https://bugzilla.redhat.com/2434433 https://bugzilla.redhat.com/2445356 https://errata.almalinux.org/9/ALSA-2026-5942.html https://go.dev/cl/752180 https://go.dev/issue/77578 https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk https://linux.oracle.com/cve/CVE-2026-25679.html https://linux.oracle.com/errata/ELSA-2026-5942.html https://nvd.nist.gov/vuln/detail/CVE-2026-25679 https://pkg.go.dev/vuln/GO-2026-4601 https://www.cve.org/CVERecord?id=CVE-2026-25679
stdlib	CVE-2025-0913	MEDIUM	v1.24.0	1.23.10, 1.24.4	https://go.dev/cl/672396 https://go.dev/issue/73702 https://groups.google.com/g/golang-announce/c/ufZ8WpEsA3A https://nvd.nist.gov/vuln/detail/CVE-2025-0913 https://pkg.go.dev/vuln/GO-2025-3750
stdlib	CVE-2025-22871	MEDIUM	v1.24.0	1.23.8, 1.24.2	http://www.openwall.com/lists/oss-security/2025/04/04/4 https://access.redhat.com/errata/RHSA-2025:9635 https://access.redhat.com/security/cve/CVE-2025-22871 https://bugzilla.redhat.com/2358493 https://bugzilla.redhat.com/show_bug.cgi?id=2358493 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-22871 https://errata.almalinux.org/9/ALSA-2025-9635.html https://errata.rockylinux.org/RLSA-2025:9635 https://github.com/roadrunner-server/roadrunner https://github.com/roadrunner-server/roadrunner/commit/f269279ee87d0b88127741cad1042389af7605fa https://github.com/roadrunner-server/roadrunner/issues/2166 https://github.com/roadrunner-server/roadrunner/releases/tag/v2025.1.0 https://go.dev/cl/652998 https://go.dev/issue/71988 https://groups.google.com/g/golang-announce/c/Y2uBTVKjBQk https://linux.oracle.com/cve/CVE-2025-22871.html https://linux.oracle.com/errata/ELSA-2025-9845.html https://nvd.nist.gov/vuln/detail/CVE-2025-22871 https://pkg.go.dev/vuln/GO-2025-3563 https://www.cve.org/CVERecord?id=CVE-2025-22871
stdlib	CVE-2025-22873	MEDIUM	v1.24.0	1.23.9, 1.24.3	http://www.openwall.com/lists/oss-security/2025/05/06/2 https://access.redhat.com/security/cve/CVE-2025-22873 https://go.dev/cl/670036 https://go.dev/issue/73555 https://groups.google.com/g/golang-announce/c/UZoIkUT367A/m/5WDxKizJAQAJ https://nvd.nist.gov/vuln/detail/CVE-2025-22873 https://pkg.go.dev/vuln/GO-2026-4403 https://www.cve.org/CVERecord?id=CVE-2025-22873
stdlib	CVE-2025-4673	MEDIUM	v1.24.0	1.23.10, 1.24.4	https://access.redhat.com/errata/RHSA-2025:15887 https://access.redhat.com/security/cve/CVE-2025-4673 https://bugzilla.redhat.com/2373305 https://bugzilla.redhat.com/show_bug.cgi?id=2373305 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4673 https://errata.almalinux.org/9/ALSA-2025-15887.html https://errata.rockylinux.org/RLSA-2025:15887 https://go.dev/cl/679257 https://go.dev/issue/73816 https://groups.google.com/g/golang-announce/c/ufZ8WpEsA3A https://linux.oracle.com/cve/CVE-2025-4673.html https://linux.oracle.com/errata/ELSA-2025-10677.html https://nvd.nist.gov/vuln/detail/CVE-2025-4673 https://pkg.go.dev/vuln/GO-2025-3751 https://ubuntu.com/security/notices/USN-7574-1 https://www.cve.org/CVERecord?id=CVE-2025-4673
stdlib	CVE-2025-47906	MEDIUM	v1.24.0	1.23.12, 1.24.6	http://www.openwall.com/lists/oss-security/2025/08/06/1 https://access.redhat.com/errata/RHSA-2025:22005 https://access.redhat.com/security/cve/CVE-2025-47906 https://bugzilla.redhat.com/2396546 https://bugzilla.redhat.com/show_bug.cgi?id=2396546 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47906 https://errata.almalinux.org/9/ALSA-2025-22005.html https://errata.rockylinux.org/RLSA-2025:22005 https://go.dev/cl/691775 https://go.dev/issue/74466 https://groups.google.com/g/golang-announce/c/x5MKroML2yM https://linux.oracle.com/cve/CVE-2025-47906.html https://linux.oracle.com/errata/ELSA-2025-22668.html https://nvd.nist.gov/vuln/detail/CVE-2025-47906 https://pkg.go.dev/vuln/GO-2025-3956 https://www.cve.org/CVERecord?id=CVE-2025-47906
stdlib	CVE-2025-47912	MEDIUM	v1.24.0	1.24.8, 1.25.2	http://www.openwall.com/lists/oss-security/2025/10/08/1 https://access.redhat.com/security/cve/CVE-2025-47912 https://go.dev/cl/709857 https://go.dev/issue/75678 https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI https://nvd.nist.gov/vuln/detail/CVE-2025-47912 https://pkg.go.dev/vuln/GO-2025-4010 https://www.cve.org/CVERecord?id=CVE-2025-47912
stdlib	CVE-2025-58185	MEDIUM	v1.24.0	1.24.8, 1.25.2	http://www.openwall.com/lists/oss-security/2025/10/08/1 https://access.redhat.com/security/cve/CVE-2025-58185 https://github.com/golang/go/commit/8709a41d5ef7321f486a1857f189c3fee20e8edd https://go.dev/cl/709856 https://go.dev/issue/75671 https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI https://nvd.nist.gov/vuln/detail/CVE-2025-58185 https://pkg.go.dev/vuln/GO-2025-4011 https://www.cve.org/CVERecord?id=CVE-2025-58185
stdlib	CVE-2025-58186	MEDIUM	v1.24.0	1.24.8, 1.25.2	http://www.openwall.com/lists/oss-security/2025/10/08/1 https://access.redhat.com/security/cve/CVE-2025-58186 https://go.dev/cl/709855 https://go.dev/issue/75672 https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI https://nvd.nist.gov/vuln/detail/CVE-2025-58186 https://pkg.go.dev/vuln/GO-2025-4012 https://www.cve.org/CVERecord?id=CVE-2025-58186
stdlib	CVE-2025-58187	MEDIUM	v1.24.0	1.24.9, 1.25.3	http://www.openwall.com/lists/oss-security/2025/10/08/1 https://access.redhat.com/security/cve/CVE-2025-58187 https://github.com/golang/go/commit/3fc4c79fdbb17b9b29ea9f8c29dd780df075d4c4 https://go.dev/cl/709854 https://go.dev/issue/75681 https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI https://nvd.nist.gov/vuln/detail/CVE-2025-58187 https://pkg.go.dev/vuln/GO-2025-4007 https://www.cve.org/CVERecord?id=CVE-2025-58187
stdlib	CVE-2025-58188	MEDIUM	v1.24.0	1.24.8, 1.25.2	http://www.openwall.com/lists/oss-security/2025/10/08/1 https://access.redhat.com/security/cve/CVE-2025-58188 https://github.com/golang/go/commit/6e4007e8cffbb870e6b606307ab7308236ecefb9 https://go.dev/cl/709853 https://go.dev/issue/75675 https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI https://nvd.nist.gov/vuln/detail/CVE-2025-58188 https://pkg.go.dev/vuln/GO-2025-4013 https://www.cve.org/CVERecord?id=CVE-2025-58188
stdlib	CVE-2025-58189	MEDIUM	v1.24.0	1.24.8, 1.25.2	http://www.openwall.com/lists/oss-security/2025/10/08/1 https://access.redhat.com/security/cve/CVE-2025-58189 https://go.dev/cl/707776 https://go.dev/issue/75652 https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI https://nvd.nist.gov/vuln/detail/CVE-2025-58189 https://pkg.go.dev/vuln/GO-2025-4008 https://www.cve.org/CVERecord?id=CVE-2025-58189
stdlib	CVE-2025-61723	MEDIUM	v1.24.0	1.24.8, 1.25.2	http://www.openwall.com/lists/oss-security/2025/10/08/1 https://access.redhat.com/security/cve/CVE-2025-61723 https://github.com/golang/go/commit/5ce8cd16f3859ec5ac4106ad8ec15d6236f4501b https://go.dev/cl/709858 https://go.dev/issue/75676 https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI https://nvd.nist.gov/vuln/detail/CVE-2025-61723 https://pkg.go.dev/vuln/GO-2025-4009 https://www.cve.org/CVERecord?id=CVE-2025-61723
stdlib	CVE-2025-61724	MEDIUM	v1.24.0	1.24.8, 1.25.2	http://www.openwall.com/lists/oss-security/2025/10/08/1 https://access.redhat.com/security/cve/CVE-2025-61724 https://go.dev/cl/709859 https://go.dev/issue/75716 https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI https://nvd.nist.gov/vuln/detail/CVE-2025-61724 https://pkg.go.dev/vuln/GO-2025-4015 https://www.cve.org/CVERecord?id=CVE-2025-61724
stdlib	CVE-2025-61725	MEDIUM	v1.24.0	1.24.8, 1.25.2	http://www.openwall.com/lists/oss-security/2025/10/08/1 https://access.redhat.com/security/cve/CVE-2025-61725 https://go.dev/cl/709860 https://go.dev/issue/75680 https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI https://nvd.nist.gov/vuln/detail/CVE-2025-61725 https://pkg.go.dev/vuln/GO-2025-4006 https://www.cve.org/CVERecord?id=CVE-2025-61725
stdlib	CVE-2025-61727	MEDIUM	v1.24.0	1.24.11, 1.25.5	https://access.redhat.com/security/cve/CVE-2025-61727 https://go.dev/cl/723900 https://go.dev/issue/76442 https://groups.google.com/g/golang-announce/c/8FJoBkPddm4 https://nvd.nist.gov/vuln/detail/CVE-2025-61727 https://pkg.go.dev/vuln/GO-2025-4175 https://www.cve.org/CVERecord?id=CVE-2025-61727
stdlib	CVE-2025-61730	MEDIUM	v1.24.0	1.24.12, 1.25.6	https://go.dev/cl/724120 https://go.dev/issue/76443 https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc https://nvd.nist.gov/vuln/detail/CVE-2025-61730 https://pkg.go.dev/vuln/GO-2026-4340
stdlib	CVE-2026-27142	MEDIUM	v1.24.0	1.25.8, 1.26.1	https://access.redhat.com/security/cve/CVE-2026-27142 https://go.dev/cl/752081 https://go.dev/issue/77954 https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk https://nvd.nist.gov/vuln/detail/CVE-2026-27142 https://pkg.go.dev/vuln/GO-2026-4603 https://www.cve.org/CVERecord?id=CVE-2026-27142
stdlib	CVE-2026-27139	LOW	v1.24.0	1.25.8, 1.26.1	https://access.redhat.com/security/cve/CVE-2026-27139 https://go.dev/cl/749480 https://go.dev/issue/77827 https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk https://nvd.nist.gov/vuln/detail/CVE-2026-27139 https://pkg.go.dev/vuln/GO-2026-4602 https://www.cve.org/CVERecord?id=CVE-2026-27139
No Misconfigurations found

usr/local/go/bin/go (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/go/bin/gofmt (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/go/pkg/tool/linux_amd64/asm (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/go/pkg/tool/linux_amd64/cgo (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/go/pkg/tool/linux_amd64/compile (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/go/pkg/tool/linux_amd64/cover (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/go/pkg/tool/linux_amd64/fix (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/go/pkg/tool/linux_amd64/link (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/go/pkg/tool/linux_amd64/preprofile (gobinary)¶

No Vulnerabilities found
No Misconfigurations found

usr/local/go/pkg/tool/linux_amd64/vet (gobinary)¶

No Vulnerabilities found
No Misconfigurations found