Skip to content

registry.hub.docker.com/aquasec/tfsec-ci (alpine 3.20.3)

Trivy Image Scan

  • Image: registry.hub.docker.com/aquasec/tfsec-ci (alpine 3.20.3)
  • Scan date: 2024-12-04

registry.hub.docker.com/aquasec/tfsec-ci (alpine 3.20.3) (alpine)

Package Vulnerability ID Severity Installed Version Fixed Version Links
libcrypto3 CVE-2024-9143 LOW 3.3.2-r0 3.3.2-r1 https://access.redhat.com/security/cve/CVE-2024-9143 https://github.com/openssl/openssl/commit/72ae83ad214d2eef262461365a1975707f862712 https://github.com/openssl/openssl/commit/bc7e04d7c8d509fb78fc0e285aa948fb0da04700 https://github.com/openssl/openssl/commit/c0d3e4d32d2805f49bec30547f225bc4d092e1f4 https://github.com/openssl/openssl/commit/fdf6723362ca51bd883295efe206cb5b1cfa5154 https://github.openssl.org/openssl/extended-releases/commit/8efc0cbaa8ebba8e116f7b81a876a4123594d86a https://github.openssl.org/openssl/extended-releases/commit/9d576994cec2b7aa37a91740ea7e680810957e41 https://nvd.nist.gov/vuln/detail/CVE-2024-9143 https://openssl-library.org/news/secadv/20241016.txt https://www.cve.org/CVERecord?id=CVE-2024-9143
libcurl CVE-2024-9681 MEDIUM 8.10.1-r0 8.11.0-r0 http://www.openwall.com/lists/oss-security/2024/11/06/2 https://access.redhat.com/security/cve/CVE-2024-9681 https://curl.se/docs/CVE-2024-9681.html https://curl.se/docs/CVE-2024-9681.json https://hackerone.com/reports/2764830 https://nvd.nist.gov/vuln/detail/CVE-2024-9681 https://ubuntu.com/security/notices/USN-7104-1 https://www.cve.org/CVERecord?id=CVE-2024-9681
libexpat CVE-2024-50602 MEDIUM 2.6.3-r0 2.6.4-r0 https://access.redhat.com/errata/RHSA-2024:9541 https://access.redhat.com/security/cve/CVE-2024-50602 https://bugzilla.redhat.com/2321987 https://bugzilla.redhat.com/show_bug.cgi?id=2321987 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50602 https://errata.almalinux.org/9/ALSA-2024-9541.html https://errata.rockylinux.org/RLSA-2024:9502 https://github.com/libexpat/libexpat/pull/915 https://linux.oracle.com/cve/CVE-2024-50602.html https://linux.oracle.com/errata/ELSA-2024-9541.html https://nvd.nist.gov/vuln/detail/CVE-2024-50602 https://www.cve.org/CVERecord?id=CVE-2024-50602
libssl3 CVE-2024-9143 LOW 3.3.2-r0 3.3.2-r1 https://access.redhat.com/security/cve/CVE-2024-9143 https://github.com/openssl/openssl/commit/72ae83ad214d2eef262461365a1975707f862712 https://github.com/openssl/openssl/commit/bc7e04d7c8d509fb78fc0e285aa948fb0da04700 https://github.com/openssl/openssl/commit/c0d3e4d32d2805f49bec30547f225bc4d092e1f4 https://github.com/openssl/openssl/commit/fdf6723362ca51bd883295efe206cb5b1cfa5154 https://github.openssl.org/openssl/extended-releases/commit/8efc0cbaa8ebba8e116f7b81a876a4123594d86a https://github.openssl.org/openssl/extended-releases/commit/9d576994cec2b7aa37a91740ea7e680810957e41 https://nvd.nist.gov/vuln/detail/CVE-2024-9143 https://openssl-library.org/news/secadv/20241016.txt https://www.cve.org/CVERecord?id=CVE-2024-9143
No Misconfigurations found

usr/bin/tfsec (gobinary)

No Vulnerabilities found
No Misconfigurations found