gcr.io/google.com/cloudsdktool/cloud-sdk:latest (debian 13.5)¶
Trivy Image Scan
- Image:
gcr.io/google.com/cloudsdktool/cloud-sdk:latest (debian 13.5) - Scan date: 2026-06-21
gcr.io/google.com/cloudsdktool/cloud-sdk:latest (debian 13.5) (debian)¶
Java (jar)¶
Python (python-pkg)¶
| Package | Vulnerability ID | Severity | Installed Version | Fixed Version | Links |
|---|---|---|---|---|---|
| cryptography | GHSA-537c-gmf6-5ccf | HIGH | 46.0.7 | 48.0.1 | https://github.com/pyca/cryptography https://github.com/pyca/cryptography/security/advisories/GHSA-537c-gmf6-5ccf https://openssl-library.org/news/secadv/20260609.txt |
| No Misconfigurations found | |||||
usr/lib/google-cloud-sdk/bin/cbt (gobinary)¶
usr/lib/google-cloud-sdk/bin/cloud_spanner_emulator/gateway_main (gobinary)¶
| Package | Vulnerability ID | Severity | Installed Version | Fixed Version | Links |
|---|---|---|---|---|---|
| stdlib | CVE-2026-42504 | HIGH | v1.25.10 | 1.25.11, 1.26.4 | https://go.dev/cl/774481 https://go.dev/issue/79217 https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw https://nvd.nist.gov/vuln/detail/CVE-2026-42504 https://pkg.go.dev/vuln/GO-2026-5038 |
| stdlib | CVE-2026-27145 | MEDIUM | v1.25.10 | 1.25.11, 1.26.4 | https://go.dev/cl/783621 https://go.dev/issue/79694 https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw https://nvd.nist.gov/vuln/detail/CVE-2026-27145 https://pkg.go.dev/vuln/GO-2026-5037 |
| stdlib | CVE-2026-42507 | MEDIUM | v1.25.10 | 1.25.11, 1.26.4 | https://access.redhat.com/security/cve/CVE-2026-42507 https://go.dev/cl/777060 https://go.dev/issue/79346 https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw https://nvd.nist.gov/vuln/detail/CVE-2026-42507 https://pkg.go.dev/vuln/GO-2026-5039 https://www.cve.org/CVERecord?id=CVE-2026-42507 |
| No Misconfigurations found | |||||
usr/lib/google-cloud-sdk/bin/gcloud-crc32c (gobinary)¶
| No Vulnerabilities found | |||||
|---|---|---|---|---|---|
| No Misconfigurations found |
usr/lib/google-cloud-sdk/bin/gke-gcloud-auth-plugin (gobinary)¶
| Package | Vulnerability ID | Severity | Installed Version | Fixed Version | Links |
|---|---|---|---|---|---|
| stdlib | CVE-2026-42504 | HIGH | v1.26.3 | 1.25.11, 1.26.4 | https://go.dev/cl/774481 https://go.dev/issue/79217 https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw https://nvd.nist.gov/vuln/detail/CVE-2026-42504 https://pkg.go.dev/vuln/GO-2026-5038 |
| stdlib | CVE-2026-27145 | MEDIUM | v1.26.3 | 1.25.11, 1.26.4 | https://go.dev/cl/783621 https://go.dev/issue/79694 https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw https://nvd.nist.gov/vuln/detail/CVE-2026-27145 https://pkg.go.dev/vuln/GO-2026-5037 |
| stdlib | CVE-2026-42507 | MEDIUM | v1.26.3 | 1.25.11, 1.26.4 | https://access.redhat.com/security/cve/CVE-2026-42507 https://go.dev/cl/777060 https://go.dev/issue/79346 https://groups.google.com/g/golang-announce/c/tKs3rmcBcKw https://nvd.nist.gov/vuln/detail/CVE-2026-42507 https://pkg.go.dev/vuln/GO-2026-5039 https://www.cve.org/CVERecord?id=CVE-2026-42507 |
| No Misconfigurations found | |||||
usr/lib/google-cloud-sdk/bin/kpt (gobinary)¶
usr/lib/google-cloud-sdk/bin/local-extract (gobinary)¶
usr/lib/google-cloud-sdk/platform/bigtable-emulator/cbtemulator (gobinary)¶
usr/lib/google-cloud-sdk/platform/google_appengine/go-app-stager (gobinary)¶
| No Vulnerabilities found | |||||
|---|---|---|---|---|---|
| No Misconfigurations found |