Skip to content

Node.js

Trivy Image Scan

  • Image: Node.js
  • Scan date: 2025-06-30

Node.js (node-pkg)

Package Vulnerability ID Severity Installed Version Fixed Version Links
tar-fs CVE-2025-48387 HIGH 3.0.8 1.16.5, 2.1.3, 3.0.9 https://access.redhat.com/security/cve/CVE-2025-48387 https://github.com/mafintosh/tar-fs https://github.com/mafintosh/tar-fs/commit/647447b572bc135c41035e82ca7b894f02b17f0f https://github.com/mafintosh/tar-fs/security/advisories/GHSA-8cj5-5rvv-wf4v https://nvd.nist.gov/vuln/detail/CVE-2025-48387 https://www.cve.org/CVERecord?id=CVE-2025-48387
No Misconfigurations found

Python (python-pkg)

Package Vulnerability ID Severity Installed Version Fixed Version Links
h11 CVE-2025-43859 CRITICAL 0.14.0 0.16.0 https://access.redhat.com/security/cve/CVE-2025-43859 https://github.com/python-hyper/h11 https://github.com/python-hyper/h11/commit/114803a29ce50116dc47951c690ad4892b1a36ed https://github.com/python-hyper/h11/security/advisories/GHSA-vqfr-h8mv-ghfj https://nvd.nist.gov/vuln/detail/CVE-2025-43859 https://ubuntu.com/security/notices/USN-7503-1 https://www.cve.org/CVERecord?id=CVE-2025-43859
protobuf CVE-2025-4565 HIGH 5.29.3 4.25.8, 5.29.5, 6.31.1 https://access.redhat.com/security/cve/CVE-2025-4565 https://github.com/protocolbuffers/protobuf https://github.com/protocolbuffers/protobuf/blob/main/python/google/protobuf/internal/decoder_test.py#L87-L98 https://github.com/protocolbuffers/protobuf/blob/main/python/google/protobuf/internal/message_test.py#L1436-L1478 https://github.com/protocolbuffers/protobuf/commit/17838beda2943d08b8a9d4df5b68f5f04f26d901 https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-735f-pc8j-v9w8 https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-8qvm-5x2c-j2w7 https://github.com/protocolbuffers/protobuf/tree/main/python#implementation-backends https://nvd.nist.gov/vuln/detail/CVE-2025-4565 https://www.cve.org/CVERecord?id=CVE-2025-4565
requests CVE-2024-47081 MEDIUM 2.32.3 2.32.4 http://seclists.org/fulldisclosure/2025/Jun/2 http://www.openwall.com/lists/oss-security/2025/06/03/11 http://www.openwall.com/lists/oss-security/2025/06/03/9 http://www.openwall.com/lists/oss-security/2025/06/04/1 http://www.openwall.com/lists/oss-security/2025/06/04/6 https://access.redhat.com/security/cve/CVE-2024-47081 https://github.com/psf/requests https://github.com/psf/requests/commit/96ba401c1296ab1dda74a2365ef36d88f7d144ef https://github.com/psf/requests/pull/6965 https://github.com/psf/requests/security/advisories/GHSA-9hjg-9r4m-mvj7 https://nvd.nist.gov/vuln/detail/CVE-2024-47081 https://requests.readthedocs.io/en/latest/api/#requests.Session.trust_env https://seclists.org/fulldisclosure/2025/Jun/2 https://ubuntu.com/security/notices/USN-7568-1 https://www.cve.org/CVERecord?id=CVE-2024-47081 https://www.openwall.com/lists/oss-security/2025/06/03/9
setuptools CVE-2025-47273 HIGH 78.1.0 78.1.1 https://access.redhat.com/security/cve/CVE-2025-47273 https://github.com/pypa/advisory-database/tree/main/vulns/setuptools/PYSEC-2025-49.yaml https://github.com/pypa/setuptools https://github.com/pypa/setuptools/blob/6ead555c5fb29bc57fe6105b1bffc163f56fd558/setuptools/package_index.py#L810C1-L825C88 https://github.com/pypa/setuptools/commit/250a6d17978f9f6ac3ac887091f2d32886fbbb0b https://github.com/pypa/setuptools/issues/4946 https://github.com/pypa/setuptools/security/advisories/GHSA-5rjg-fvgr-3xxf https://lists.debian.org/debian-lts-announce/2025/05/msg00035.html https://nvd.nist.gov/vuln/detail/CVE-2025-47273 https://ubuntu.com/security/notices/USN-7544-1 https://www.cve.org/CVERecord?id=CVE-2025-47273
urllib3 CVE-2025-50181 MEDIUM 2.3.0 2.5.0 https://access.redhat.com/security/cve/CVE-2025-50181 https://github.com/urllib3/urllib3 https://github.com/urllib3/urllib3/commit/f05b1329126d5be6de501f9d1e3e36738bc08857 https://github.com/urllib3/urllib3/security/advisories/GHSA-pq67-6m6q-mj2v https://nvd.nist.gov/vuln/detail/CVE-2025-50181 https://ubuntu.com/security/notices/USN-7599-1 https://ubuntu.com/security/notices/USN-7599-2 https://www.cve.org/CVERecord?id=CVE-2025-50181
urllib3 CVE-2025-50182 MEDIUM 2.3.0 2.5.0 https://access.redhat.com/security/cve/CVE-2025-50182 https://github.com/urllib3/urllib3 https://github.com/urllib3/urllib3/commit/7eb4a2aafe49a279c29b6d1f0ed0f42e9736194f https://github.com/urllib3/urllib3/security/advisories/GHSA-48p4-8xcf-vxj5 https://nvd.nist.gov/vuln/detail/CVE-2025-50182 https://ubuntu.com/security/notices/USN-7599-1 https://www.cve.org/CVERecord?id=CVE-2025-50182
No Misconfigurations found