UNCLASSIFIED - NO CUI

Skip to content

chore(findings): cintel-inc/webapps/django-prod

Summary

cintel-inc/webapps/django-prod has 409 new findings discovered during continuous monitoring.

Layer: redhat/ubi/ubi8:8.7 is EOL, please update if possible

More information can be found in the VAT located here: https://vat.dso.mil/vat/image?imageName=cintel-inc/webapps/django-prod&tag=0.1.2&branch=master

EPSS (Exploit Prediction Scoring System) provides an estimate of the likelihood that a vulnerability will be exploited in the wild.

KEV (Known Exploited Vulnerabilities) indicates whether a vulnerability is actively being exploited according to CISA.

id source severity package impact workaround epss_score kev
CVE-2023-2650 Anchore CVE Medium openssl-1:1.1.1k-14.el8_6 0.88208 false
CVE-2023-2650 Anchore CVE Medium openssl-libs-1:1.1.1k-14.el8_6 0.88208 false
CVE-2023-2650 Twistlock CVE Low openssl-1.1.1k-14.el8_6 0.88208 false
CVE-2024-27316 Twistlock CVE Medium httpd-2.4.37 0.87121 false
CVE-2023-24580 Twistlock CVE High django-4.1.2 Does not require authenticated users, but requires resource exhaustion strategy to exploit. Block size of file uploads in upstream HTML proxy. 0.12511 false
CVE-2024-6345 Twistlock CVE High setuptools-65.5.1 Most users have migrated off of the code paths that are affected. The affected code paths are actively deprecated and planned for turn down. Only specialized and legacy workflows are affected. Use recommended installers pip, uv, build, system package managers to install all packages from trusted indexes. If working with untrusted content in private indexes, consider scanning for malicious code in the package index pages. 0.10079 false
CVE-2020-19188 Anchore CVE Low ncurses-base-6.1-10.20180224.el8 0.07066 false
CVE-2020-19188 Anchore CVE Low ncurses-libs-6.1-10.20180224.el8 0.07066 false
CVE-2020-19188 Twistlock CVE Low ncurses-6.1-10.20180224.el8 0.07066 false
CVE-2019-17567 Twistlock CVE Medium httpd:2.4-8100020250728150834:489197e6 0.05655 false
CVE-2019-17567 Anchore CVE Medium httpd-filesystem-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.05655 false
CVE-2019-17567 Anchore CVE Medium httpd-tools-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.05655 false
CVE-2019-17567 Anchore CVE Medium httpd-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.05655 false
CVE-2020-19186 Anchore CVE Low ncurses-base-6.1-10.20180224.el8 0.04961 false
CVE-2020-19186 Anchore CVE Low ncurses-libs-6.1-10.20180224.el8 0.04961 false
CVE-2020-19186 Twistlock CVE Low ncurses-6.1-10.20180224.el8 0.04961 false
CVE-2020-19185 Anchore CVE Low ncurses-libs-6.1-10.20180224.el8 0.04961 false
CVE-2020-19185 Anchore CVE Low ncurses-base-6.1-10.20180224.el8 0.04961 false
CVE-2020-19185 Twistlock CVE Low ncurses-6.1-10.20180224.el8 0.04961 false
CVE-2020-19190 Anchore CVE Low ncurses-libs-6.1-10.20180224.el8 0.04954 false
CVE-2020-19190 Anchore CVE Low ncurses-base-6.1-10.20180224.el8 0.04954 false
CVE-2020-19190 Twistlock CVE Low ncurses-6.1-10.20180224.el8 0.04954 false
CVE-2020-19187 Anchore CVE Low ncurses-base-6.1-10.20180224.el8 0.04834 false
CVE-2020-19187 Anchore CVE Low ncurses-libs-6.1-10.20180224.el8 0.04834 false
CVE-2020-19187 Twistlock CVE Low ncurses-6.1-10.20180224.el8 0.04834 false
CVE-2024-33655 Twistlock CVE Low unbound-1.16.2-5.9.el8_10 0.04101 false
CVE-2024-33655 Anchore CVE Low python3-unbound-1.16.2-5.9.el8_10 0.04101 false
CVE-2024-33655 Anchore CVE Low unbound-libs-1.16.2-5.9.el8_10 0.04101 false
CVE-2023-36053 Twistlock CVE High django-4.1.2 Almost all Django application deployments validate emails or URLs. Manually restrict of the lengths of email and URL inputs manually before they are passed to the builtin validator. 0.04078 false
CVE-2019-9936 Twistlock CVE Low sqlite-3.26.0-20.el8_10 0.03924 false
CVE-2019-9936 Anchore CVE Low sqlite-libs-3.26.0-20.el8_10 0.03924 false
CVE-2019-9937 Twistlock CVE Low sqlite-3.26.0-20.el8_10 0.03622 false
CVE-2019-9937 Anchore CVE Low sqlite-libs-3.26.0-20.el8_10 0.03622 false
CVE-2022-23990 Twistlock CVE Medium expat-2.2.5-17.el8_10 0.03519 false
CVE-2022-23990 Anchore CVE Medium expat-2.2.5-17.el8_10 0.03519 false
CVE-2005-2541 Anchore CVE Medium tar-2:1.30-11.el8_10 0.03250 false
CVE-2024-56433 Anchore CVE Low shadow-utils-2:4.6-22.el8 0.02806 false
CVE-2023-46695 Twistlock CVE High django-4.1.2 0.02674 false
CVE-2020-19189 Anchore CVE Low ncurses-base-6.1-10.20180224.el8 0.02620 false
CVE-2020-19189 Anchore CVE Low ncurses-libs-6.1-10.20180224.el8 0.02620 false
CVE-2020-19189 Twistlock CVE Low ncurses-6.1-10.20180224.el8 0.02620 false
CVE-2024-7264 Anchore CVE Low libcurl-7.61.1-34.el8_10.3 0.02574 false
CVE-2024-7264 Anchore CVE Low curl-7.61.1-34.el8_10.3 0.02574 false
CVE-2024-7264 Twistlock CVE Low curl-7.61.1-34.el8_10.3 0.02574 false
CVE-2018-20225 Anchore CVE Low platform-python-pip-9.0.3-24.el8 0.02537 false
CVE-2018-20225 Anchore CVE Low python3-pip-wheel-9.0.3-24.el8 0.02537 false
CVE-2023-23969 Twistlock CVE High django-4.1.2 Remotely exploitable. Filter very large values HTTP headers 0.02195 false
CVE-2024-2511 Anchore CVE Low openssl-1:1.1.1k-14.el8_6 0.02116 false
CVE-2024-2511 Anchore CVE Low openssl-libs-1:1.1.1k-14.el8_6 0.02116 false
CVE-2024-2511 Twistlock CVE Low openssl-1.1.1k-14.el8_6 0.02116 false
CVE-2024-24795 Twistlock CVE Low httpd:2.4-8100020250728150834:489197e6 0.01914 false
CVE-2024-24795 Anchore CVE Low httpd-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.01914 false
CVE-2024-24795 Anchore CVE Low httpd-tools-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.01914 false
CVE-2024-24795 Anchore CVE Low httpd-filesystem-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.01914 false
CVE-2018-1000880 Twistlock CVE Low libarchive-3.3.3-6.el8_10 0.01747 false
CVE-2018-1000880 Anchore CVE Low libarchive-3.3.3-6.el8_10 0.01747 false
CVE-2024-6232 Anchore CVE High python-3.10.9 0.01519 false
CVE-2024-6232 Twistlock CVE Medium python-idna-2.5-7.el8_10 0.01519 false
CVE-2024-6232 Twistlock CVE Medium python-urllib3-1.24.2-8.el8_10 0.01519 false
CVE-2024-6232 Twistlock CVE Medium python-pysocks-1.6.8-3.el8 0.01519 false
CVE-2024-6232 Twistlock CVE Medium python-requests-2.20.0-6.el8_10 0.01519 false
CVE-2024-6232 Twistlock CVE Medium python-chardet-3.0.4-7.el8 0.01519 false
CVE-2024-6232 Twistlock CVE Medium mod_wsgi-4.6.4-5.el8 0.01519 false
CVE-2023-43665 Twistlock CVE High django-4.1.2 0.01454 false
CVE-2023-0464 Anchore CVE Low openssl-libs-1:1.1.1k-14.el8_6 0.01333 false
CVE-2023-0464 Anchore CVE Low openssl-1:1.1.1k-14.el8_6 0.01333 false
CVE-2023-0464 Twistlock CVE Low openssl-1.1.1k-14.el8_6 0.01333 false
CVE-2023-24329 Anchore CVE High python-3.10.9 0.01309 false
CVE-2019-16866 Twistlock CVE Low unbound-1.16.2-5.9.el8_10 0.01248 false
CVE-2019-16866 Anchore CVE Low python3-unbound-1.16.2-5.9.el8_10 0.01248 false
CVE-2019-16866 Anchore CVE Low unbound-libs-1.16.2-5.9.el8_10 0.01248 false
CVE-2019-9674 Twistlock CVE Low python3-3.6.8-71.el8_10 0.01198 false
CVE-2019-9674 Anchore CVE Low python3-libs-3.6.8-71.el8_10 0.01198 false
CVE-2019-9674 Anchore CVE Low platform-python-3.6.8-71.el8_10 0.01198 false
CVE-2018-1000879 Twistlock CVE Low libarchive-3.3.3-6.el8_10 0.01112 false
CVE-2018-1000879 Anchore CVE Low libarchive-3.3.3-6.el8_10 0.01112 false
CVE-2020-21674 Twistlock CVE Low libarchive-3.3.3-6.el8_10 0.00915 false
CVE-2020-21674 Anchore CVE Medium libarchive-3.3.3-6.el8_10 0.00915 false
CVE-2025-0938 Anchore CVE Medium python-3.10.9 0.00801 false
CVE-2025-0938 Twistlock CVE Medium python3-3.6.8-71.el8_10 0.00801 false
CVE-2025-0938 Anchore CVE Medium python3-libs-3.6.8-71.el8_10 0.00801 false
CVE-2025-0938 Anchore CVE Medium platform-python-3.6.8-71.el8_10 0.00801 false
CVE-2024-4032 Anchore CVE High python-3.10.9 0.00735 false
CVE-2018-20839 Twistlock CVE Medium systemd-239-82.el8_10.5 0.00668 false
CVE-2018-20839 Anchore CVE Medium systemd-239-82.el8_10.5 0.00668 false
CVE-2018-20839 Anchore CVE Medium systemd-libs-239-82.el8_10.5 0.00668 false
CVE-2018-20839 Anchore CVE Medium systemd-pam-239-82.el8_10.5 0.00668 false
CVE-2022-0235 Twistlock CVE Medium subscription-manager-1.28.44-1.el8_10 0.00512 false
CVE-2022-0235 Anchore CVE Medium python3-syspurpose-1.28.44-1.el8_10 0.00512 false
CVE-2022-0235 Anchore CVE Medium python3-cloud-what-1.28.44-1.el8_10 0.00512 false
CVE-2022-0235 Anchore CVE Medium python3-subscription-manager-rhsm-1.28.44-1.el8_10 0.00512 false
CVE-2022-0235 Anchore CVE Medium subscription-manager-1.28.44-1.el8_10 0.00512 false
CVE-2022-0235 Anchore CVE Medium dnf-plugin-subscription-manager-1.28.44-1.el8_10 0.00512 false
CVE-2022-0235 Twistlock CVE Medium subscription-manager-rhsm-certificates-20220623-1.el8 0.00512 false
CVE-2023-0466 Anchore CVE Medium openssl-libs-1:1.1.1k-14.el8_6 0.00508 false
CVE-2023-0466 Anchore CVE Medium openssl-1:1.1.1k-14.el8_6 0.00508 false
CVE-2023-0466 Twistlock CVE Medium openssl-1.1.1k-14.el8_6 0.00508 false
CVE-2024-7592 Anchore CVE High python-3.10.9 0.00468 false
CVE-2024-7592 Twistlock CVE Low python3-3.6.8-71.el8_10 0.00468 false
CVE-2024-7592 Anchore CVE Low platform-python-3.6.8-71.el8_10 0.00468 false
CVE-2024-7592 Anchore CVE Low python3-libs-3.6.8-71.el8_10 0.00468 false
CVE-2025-53020 Twistlock CVE Medium httpd-2.4.37 0.00455 false
CVE-2025-53020 Anchore CVE Medium httpd-filesystem-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00455 false
CVE-2025-53020 Anchore CVE Medium httpd-tools-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00455 false
CVE-2025-53020 Anchore CVE Medium httpd-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00455 false
CVE-2023-41164 Twistlock CVE High django-4.1.2 0.00425 false
CVE-2019-9923 Twistlock CVE Low tar-1.30-11.el8_10 0.00408 false
CVE-2019-9923 Anchore CVE Low tar-2:1.30-11.el8_10 0.00408 false
CVE-2018-19217 Anchore CVE Medium ncurses-libs-6.1-10.20180224.el8 0.00404 false
CVE-2018-19217 Anchore CVE Medium ncurses-base-6.1-10.20180224.el8 0.00404 false
CVE-2024-42516 Twistlock CVE Medium httpd-2.4.37 0.00369 false
CVE-2024-42516 Anchore CVE Medium httpd-filesystem-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00369 false
CVE-2024-42516 Anchore CVE Medium httpd-tools-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00369 false
CVE-2024-42516 Anchore CVE Medium httpd-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00369 false
CVE-2024-11053 Anchore CVE Low curl-7.61.1-34.el8_10.3 0.00361 false
CVE-2024-11053 Anchore CVE Low libcurl-7.61.1-34.el8_10.3 0.00361 false
CVE-2024-11053 Twistlock CVE Low curl-7.61.1-34.el8_10.3 0.00361 false
CVE-2025-49630 Anchore CVE Medium mod_http2-1.15.7-10.module+el8.10.0+23369+11a81384.4 0.00347 false
CVE-2021-39537 Anchore CVE Low ncurses-base-6.1-10.20180224.el8 0.00342 false
CVE-2021-39537 Anchore CVE Low ncurses-libs-6.1-10.20180224.el8 0.00342 false
CVE-2021-39537 Twistlock CVE Low ncurses-6.1-10.20180224.el8 0.00342 false
CVE-2024-3651 Twistlock CVE Medium python-idna-2.5-7.el8_10 0.00338 false
CVE-2023-0465 Anchore CVE Low openssl-libs-1:1.1.1k-14.el8_6 0.00337 false
CVE-2023-0465 Anchore CVE Low openssl-1:1.1.1k-14.el8_6 0.00337 false
CVE-2023-0465 Twistlock CVE Low openssl-1.1.1k-14.el8_6 0.00337 false
CVE-2024-0727 Anchore CVE Low openssl-1:1.1.1k-14.el8_6 0.00332 false
CVE-2024-0727 Anchore CVE Low openssl-libs-1:1.1.1k-14.el8_6 0.00332 false
CVE-2024-0727 Twistlock CVE Low openssl-1.1.1k-14.el8_6 0.00332 false
CVE-2024-2236 Anchore CVE Medium libgcrypt-1.8.5-7.el8_6 0.00301 false
CVE-2024-2236 Twistlock CVE Medium libgcrypt-1.8.5-7.el8_6 0.00301 false
CVE-2019-12904 Anchore CVE Medium libgcrypt-1.8.5-7.el8_6 0.00290 false
CVE-2024-11168 Anchore CVE Medium python-3.10.9 0.00278 false
CVE-2018-19211 Anchore CVE Low ncurses-libs-6.1-10.20180224.el8 0.00278 false
CVE-2018-19211 Anchore CVE Low ncurses-base-6.1-10.20180224.el8 0.00278 false
CVE-2018-19211 Twistlock CVE Low ncurses-6.1-10.20180224.el8 0.00278 false
CVE-2023-40217 Anchore CVE Medium python-3.10.9 0.00266 false
CVE-2022-2255 Twistlock CVE Medium mod_wsgi-4.6.4-5.el8 0.00266 false
CVE-2019-19244 Twistlock CVE Low sqlite-3.26.0-20.el8_10 0.00256 false
CVE-2019-19244 Anchore CVE Low sqlite-libs-3.26.0-20.el8_10 0.00256 false
CVE-2024-43204 Twistlock CVE Medium httpd-2.4.37 0.00231 false
CVE-2024-43204 Anchore CVE Medium httpd-filesystem-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00231 false
CVE-2024-43204 Anchore CVE Medium httpd-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00231 false
CVE-2024-43204 Anchore CVE Medium httpd-tools-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00231 false
CVE-2024-0397 Anchore CVE High python-3.10.9 0.00226 false
CVE-2024-0397 Twistlock CVE Low python3-3.6.8-71.el8_10 0.00226 false
CVE-2024-0397 Anchore CVE Low python3-libs-3.6.8-71.el8_10 0.00226 false
CVE-2024-0397 Anchore CVE Low platform-python-3.6.8-71.el8_10 0.00226 false
CVE-2025-1153 Anchore CVE Low gdb-gdbserver-8.2-20.el8 0.00212 false
CVE-2025-1153 Twistlock CVE Low gdb-8.2-20.el8 0.00212 false
CVE-2025-1795 Anchore CVE Low python-3.10.9 0.00184 false
CVE-2025-1795 Twistlock CVE Low python3-3.6.8-71.el8_10 0.00184 false
CVE-2025-1795 Anchore CVE Low platform-python-3.6.8-71.el8_10 0.00184 false
CVE-2025-1795 Anchore CVE Low python3-libs-3.6.8-71.el8_10 0.00184 false
CVE-2023-32636 Twistlock CVE Low glib2-2.56.4-166.el8_10 0.00179 false
CVE-2023-32636 Anchore CVE Low glib2-2.56.4-166.el8_10 0.00179 false
CVE-2023-27534 Anchore CVE Low curl-7.61.1-34.el8_10.3 0.00176 false
CVE-2023-27534 Anchore CVE Low libcurl-7.61.1-34.el8_10.3 0.00176 false
CVE-2023-27534 Twistlock CVE Low curl-7.61.1-34.el8_10.3 0.00176 false
CVE-2018-20657 Twistlock CVE Low gcc-8.5.0-28.el8_10 0.00174 false
CVE-2018-20657 Anchore CVE Low libgcc-8.5.0-28.el8_10 0.00174 false
CVE-2018-20657 Anchore CVE Low libstdc++-8.5.0-28.el8_10 0.00174 false
CVE-2024-0450 Anchore CVE Medium python-3.10.9 0.00173 false
CVE-2024-41996 Anchore CVE Low openssl-1:1.1.1k-14.el8_6 0.00166 false
CVE-2024-41996 Anchore CVE Low openssl-libs-1:1.1.1k-14.el8_6 0.00166 false
CVE-2024-41996 Twistlock CVE Low openssl-1.1.1k-14.el8_6 0.00166 false
CVE-2024-34459 Twistlock CVE Low libxml2-2.9.7-21.el8_10.3 0.00153 false
CVE-2024-34459 Anchore CVE Low libxml2-2.9.7-21.el8_10.3 0.00153 false
CVE-2024-34459 Anchore CVE Low python3-libxml2-2.9.7-21.el8_10.3 0.00153 false
CVE-2021-4209 Twistlock CVE Low gnutls-3.6.16-8.el8_10.3 0.00148 false
CVE-2021-4209 Anchore CVE Low gnutls-3.6.16-8.el8_10.3 0.00148 false
CVE-2025-4517 Anchore CVE Critical python-3.10.9 0.00146 false
CVE-2025-47273 Twistlock CVE High setuptools-65.5.1 0.00139 false
CVE-2025-1632 Twistlock CVE Low libarchive-3.3.3-6.el8_10 0.00136 false
CVE-2025-1632 Anchore CVE Low libarchive-3.3.3-6.el8_10 0.00136 false
CVE-2019-14250 Twistlock CVE Low gcc-8.5.0-28.el8_10 0.00127 false
CVE-2019-14250 Anchore CVE Low libgcc-8.5.0-28.el8_10 0.00127 false
CVE-2019-14250 Anchore CVE Low libstdc++-8.5.0-28.el8_10 0.00127 false
CVE-2025-4330 Anchore CVE High python-3.10.9 0.00120 false
CVE-2023-29499 Twistlock CVE Low glib2-2.56.4-166.el8_10 0.00120 false
CVE-2023-29499 Anchore CVE Low glib2-2.56.4-166.el8_10 0.00120 false
CVE-2020-12413 Twistlock CVE Low nss-3.101.0-11.el8_8 0.00120 false
CVE-2020-12413 Anchore CVE Low nss-softokn-freebl-3.101.0-11.el8_8 0.00120 false
CVE-2020-12413 Anchore CVE Low nss-sysinit-3.101.0-11.el8_8 0.00120 false
CVE-2020-12413 Anchore CVE Low nss-3.101.0-11.el8_8 0.00120 false
CVE-2020-12413 Anchore CVE Low nss-util-3.101.0-11.el8_8 0.00120 false
CVE-2020-12413 Anchore CVE Low nss-softokn-3.101.0-11.el8_8 0.00120 false
CVE-2018-1000654 Twistlock CVE Low libtasn1-4.13-5.el8_10 0.00120 false
CVE-2018-1000654 Anchore CVE Low libtasn1-4.13-5.el8_10 0.00120 false
CVE-2023-27043 Anchore CVE Medium python-3.10.9 0.00117 false
CVE-2024-4741 Anchore CVE Low openssl-1:1.1.1k-14.el8_6 0.00116 false
CVE-2024-4741 Anchore CVE Low openssl-libs-1:1.1.1k-14.el8_6 0.00116 false
CVE-2024-4741 Twistlock CVE Low openssl-1.1.1k-14.el8_6 0.00116 false
CVE-2024-7531 Twistlock CVE Low nss-3.101.0-11.el8_8 0.00112 false
CVE-2024-7531 Anchore CVE Low nss-softokn-3.101.0-11.el8_8 0.00112 false
CVE-2024-7531 Anchore CVE Low nss-sysinit-3.101.0-11.el8_8 0.00112 false
CVE-2024-7531 Anchore CVE Low nss-util-3.101.0-11.el8_8 0.00112 false
CVE-2024-7531 Anchore CVE Low nss-softokn-freebl-3.101.0-11.el8_8 0.00112 false
CVE-2024-7531 Anchore CVE Low nss-3.101.0-11.el8_8 0.00112 false
CVE-2019-8905 Anchore CVE Medium file-libs-5.33-26.el8 0.00105 false
CVE-2019-8905 Twistlock CVE Medium file-5.33-26.el8 0.00105 false
CVE-2025-4138 Anchore CVE High python-3.10.9 0.00100 false
CVE-2021-20193 Twistlock CVE Low tar-1.30-11.el8_10 0.00100 false
CVE-2021-20193 Anchore CVE Medium tar-2:1.30-11.el8_10 0.00100 false
CVE-2024-12718 Anchore CVE Medium python-3.10.9 0.00097 false
CVE-2025-8194 Anchore CVE High python-3.10.9 0.00096 false
CVE-2025-1152 Anchore CVE Low gdb-gdbserver-8.2-20.el8 0.00093 false
CVE-2025-1152 Twistlock CVE Low gdb-8.2-20.el8 0.00093 false
CVE-2025-1150 Anchore CVE Low gdb-gdbserver-8.2-20.el8 0.00093 false
CVE-2025-1150 Twistlock CVE Low gdb-8.2-20.el8 0.00093 false
CVE-2024-22195 Twistlock CVE Medium python-chardet-3.0.4-7.el8 0.00093 false
CVE-2024-22195 Twistlock CVE Medium python-pysocks-1.6.8-3.el8 0.00093 false
CVE-2024-8088 Anchore CVE High python-3.10.9 0.00091 false
CVE-2025-6069 Anchore CVE Medium python-3.10.9 0.00090 false
CVE-2025-6069 Twistlock CVE Medium python3-3.6.8-71.el8_10 0.00090 false
CVE-2025-6069 Anchore CVE Medium python3-libs-3.6.8-71.el8_10 0.00090 false
CVE-2025-6069 Anchore CVE Medium platform-python-3.6.8-71.el8_10 0.00090 false
CVE-2019-8906 Anchore CVE Low file-libs-5.33-26.el8 0.00090 false
CVE-2019-8906 Twistlock CVE Low file-5.33-26.el8 0.00090 false
CVE-2024-6923 Anchore CVE Medium python-3.10.9 0.00089 false
CVE-2025-1151 Anchore CVE Low gdb-gdbserver-8.2-20.el8 0.00086 false
CVE-2025-1151 Twistlock CVE Low gdb-8.2-20.el8 0.00086 false
CVE-2022-4899 Twistlock CVE Medium zstd-1.4.4-1.el8 0.00086 false
CVE-2024-47252 Anchore CVE Medium httpd-filesystem-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00084 false
CVE-2024-47252 Anchore CVE Medium httpd-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00084 false
CVE-2024-47252 Anchore CVE Medium httpd-tools-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00084 false
CVE-2025-49812 Anchore CVE Medium httpd-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00083 false
CVE-2025-49812 Anchore CVE Medium httpd-filesystem-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00083 false
CVE-2025-49812 Anchore CVE Medium httpd-tools-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00083 false
CVE-2024-13176 Anchore CVE Low openssl-libs-1:1.1.1k-14.el8_6 0.00080 false
CVE-2024-13176 Anchore CVE Low openssl-1:1.1.1k-14.el8_6 0.00080 false
CVE-2024-13176 Twistlock CVE Low openssl-1.1.1k-14.el8_6 0.00080 false
CVE-2023-6597 Anchore CVE High python-3.10.9 0.00079 false
CVE-2023-45322 Anchore CVE Low libxml2-2.9.7-21.el8_10.3 0.00076 false
CVE-2023-45322 Anchore CVE Low python3-libxml2-2.9.7-21.el8_10.3 0.00076 false
CVE-2025-32990 Twistlock CVE Medium gnutls-3.6.16-8.el8_10.3 0.00072 false
CVE-2025-32990 Anchore CVE Medium gnutls-3.6.16-8.el8_10.3 0.00072 false
CVE-2024-50602 Anchore CVE Medium python-3.10.9 0.00068 false
CVE-2025-4435 Anchore CVE High python-3.10.9 0.00067 false
CVE-2025-23048 Anchore CVE Medium httpd-filesystem-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00065 false
CVE-2025-23048 Anchore CVE Medium httpd-tools-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00065 false
CVE-2025-23048 Anchore CVE Medium httpd-2.4.37-65.module+el8.10.0+23369+11a81384.5 0.00065 false
CVE-2023-31047 Twistlock CVE Critical django-4.1.2 Unlikely that Django application uses forms.FileField or forms.ImageField, uses one form field to upload multiple files.. and that validation is important. Note that this was never officially supported, even though the documentation suggested otherwise. Disable multiple file uploads at the HTTP level eg. in nginx or other proxy 0.00063 false
CVE-2021-24032 Anchore CVE Low libzstd-1.4.4-1.el8 0.00062 false
CVE-2021-24032 Twistlock CVE Low zstd-1.4.4-1.el8 0.00062 false
CVE-2022-41409 Anchore CVE Low pcre2-10.32-3.el8_6 0.00061 false
CVE-2022-41409 Twistlock CVE Low pcre2-10.32-3.el8_6 0.00061 false
CVE-2023-32665 Twistlock CVE Low glib2-2.56.4-166.el8_10 0.00059 false
CVE-2023-32665 Anchore CVE Low glib2-2.56.4-166.el8_10 0.00059 false
CVE-2025-6395 Twistlock CVE Medium gnutls-3.6.16-8.el8_10.3 0.00057 false
CVE-2025-6395 Anchore CVE Medium gnutls-3.6.16-8.el8_10.3 0.00057 false
CVE-2025-32988 Twistlock CVE Medium gnutls-3.6.16-8.el8_10.3 0.00056 false
CVE-2025-32988 Anchore CVE Medium gnutls-3.6.16-8.el8_10.3 0.00056 false
CVE-2025-5318 Twistlock CVE Medium libssh-0.9.6-14.el8 0.00055 false
CVE-2025-5318 Anchore CVE Medium libssh-0.9.6-14.el8 0.00055 false
CVE-2025-5318 Anchore CVE Medium libssh-config-0.9.6-14.el8 0.00055 false
CVE-2025-27113 Twistlock CVE Low libxml2-2.9.7-21.el8_10.3 0.00055 false
CVE-2025-27113 Anchore CVE Low libxml2-2.9.7-21.el8_10.3 0.00055 false
CVE-2025-27113 Anchore CVE Low python3-libxml2-2.9.7-21.el8_10.3 0.00055 false
CVE-2025-3360 Twistlock CVE Low glib2-2.56.4-166.el8_10 0.00052 false
CVE-2025-3360 Anchore CVE Low glib2-2.56.4-166.el8_10 0.00052 false
CVE-2025-7039 Twistlock CVE Low glib2-2.56.4-166.el8_10 0.00050 false
CVE-2025-5987 Twistlock CVE Medium libssh-0.9.6-14.el8 0.00050 false
CVE-2025-5987 Anchore CVE Medium libssh-0.9.6-14.el8 0.00050 false
CVE-2025-5987 Anchore CVE Medium libssh-config-0.9.6-14.el8 0.00050 false
CVE-2023-50495 Anchore CVE Low ncurses-libs-6.1-10.20180224.el8 0.00050 false
CVE-2023-50495 Anchore CVE Low ncurses-base-6.1-10.20180224.el8 0.00050 false
CVE-2023-50495 Twistlock CVE Low ncurses-6.1-10.20180224.el8 0.00050 false
CVE-2022-27943 Twistlock CVE Low gcc-8.5.0-28.el8_10 0.00050 false
CVE-2022-27943 Anchore CVE Low libstdc++-8.5.0-28.el8_10 0.00050 false
CVE-2022-27943 Anchore CVE Low libgcc-8.5.0-28.el8_10 0.00050 false
CVE-2025-5372 Twistlock CVE Medium libssh-0.9.6-14.el8 0.00048 false
CVE-2025-5372 Anchore CVE Medium libssh-0.9.6-14.el8 0.00048 false
CVE-2025-5372 Anchore CVE Medium libssh-config-0.9.6-14.el8 0.00048 false
CVE-2024-9287 Anchore CVE High python-3.10.9 0.00048 false
CVE-2024-35195 Twistlock CVE Medium python-requests-2.20.0-6.el8_10 0.00044 false
CVE-2023-5752 Twistlock CVE Low pip-22.3 Only users using Mercurial VCS functionality with untrusted inputs are affected. 0.00044 false
CVE-2025-45582 Twistlock CVE Medium tar-1.30-11.el8_10 0.00042 false
CVE-2025-45582 Anchore CVE Medium tar-2:1.30-11.el8_10 0.00042 false
CVE-2023-39804 Twistlock CVE Low tar-1.30-11.el8_10 0.00039 false
CVE-2023-39804 Anchore CVE Low tar-2:1.30-11.el8_10 0.00039 false
CVE-2021-3997 Twistlock CVE Low systemd-239-82.el8_10.5 0.00038 false
CVE-2021-3997 Anchore CVE Medium systemd-pam-239-82.el8_10.5 0.00038 false
CVE-2021-3997 Anchore CVE Medium systemd-libs-239-82.el8_10.5 0.00038 false
CVE-2021-3997 Anchore CVE Medium systemd-239-82.el8_10.5 0.00038 false
CVE-2025-4598 Twistlock CVE Medium systemd-239-82.el8_10.5 0.00037 false
CVE-2025-4598 Anchore CVE Medium systemd-239-82.el8_10.5 0.00037 false
CVE-2025-4598 Anchore CVE Medium systemd-pam-239-82.el8_10.5 0.00037 false
CVE-2025-4598 Anchore CVE Medium systemd-libs-239-82.el8_10.5 0.00037 false
CVE-2023-32611 Twistlock CVE Low glib2-2.56.4-166.el8_10 0.00037 false
CVE-2023-32611 Anchore CVE Low glib2-2.56.4-166.el8_10 0.00037 false
CVE-2025-5351 Twistlock CVE Medium libssh-0.9.6-14.el8 0.00034 false
CVE-2025-5351 Anchore CVE Medium libssh-0.9.6-14.el8 0.00034 false
CVE-2025-5351 Anchore CVE Medium libssh-config-0.9.6-14.el8 0.00034 false
CVE-2024-43167 Twistlock CVE Low unbound-1.16.2-5.9.el8_10 0.00032 false
CVE-2024-43167 Anchore CVE Low python3-unbound-1.16.2-5.9.el8_10 0.00032 false
CVE-2024-43167 Anchore CVE Low unbound-libs-1.16.2-5.9.el8_10 0.00032 false
CVE-2025-48432 Twistlock CVE Medium django-4.1.2 0.00031 false
CVE-2024-43168 Twistlock CVE Low unbound-1.16.2-5.9.el8_10 0.00031 false
CVE-2024-43168 Anchore CVE Low python3-unbound-1.16.2-5.9.el8_10 0.00031 false
CVE-2024-43168 Anchore CVE Low unbound-libs-1.16.2-5.9.el8_10 0.00031 false
CVE-2023-4156 Anchore CVE Low gawk-4.2.1-4.el8 0.00031 false
CVE-2023-4156 Twistlock CVE Low gawk-4.2.1-4.el8 0.00031 false
CVE-2024-47081 Twistlock CVE Medium python-requests-2.20.0-6.el8_10 0.00028 false
CVE-2025-32989 Twistlock CVE Medium gnutls-3.6.16-8.el8_10.3 0.00026 false
CVE-2025-32989 Anchore CVE Medium gnutls-3.6.16-8.el8_10.3 0.00026 false
CVE-2025-8941 Anchore CVE High pam-1.3.1-38.el8_10 0.00024 false
CVE-2024-57360 Anchore CVE Low gdb-gdbserver-8.2-20.el8 0.00024 false
CVE-2024-57360 Twistlock CVE Low gdb-8.2-20.el8 0.00024 false
CVE-2025-5245 Twistlock CVE Medium gdb-8.2-20.el8 0.00022 false
CVE-2025-5245 Anchore CVE Medium gdb-gdbserver-8.2-20.el8 0.00022 false
CVE-2025-6170 Twistlock CVE Low libxml2-2.9.7-21.el8_10.3 0.00021 false
CVE-2025-6170 Anchore CVE Low libxml2-2.9.7-21.el8_10.3 0.00021 false
CVE-2025-6170 Anchore CVE Low python3-libxml2-2.9.7-21.el8_10.3 0.00021 false
CVE-2025-4516 Anchore CVE Medium python-3.10.9 0.00021 false
CVE-2025-4516 Twistlock CVE Medium python3-3.6.8-71.el8_10 0.00021 false
CVE-2025-4516 Anchore CVE Medium platform-python-3.6.8-71.el8_10 0.00021 false
CVE-2025-4516 Anchore CVE Medium python3-libs-3.6.8-71.el8_10 0.00021 false
CVE-2025-5918 Twistlock CVE Low libarchive-3.3.3-6.el8_10 0.00018 false
CVE-2025-5918 Anchore CVE Low libarchive-3.3.3-6.el8_10 0.00018 false
CVE-2025-5278 Twistlock CVE Medium coreutils-8.30-15.el8 0.00018 false
CVE-2025-5278 Anchore CVE Medium coreutils-single-8.30-15.el8 0.00018 false
CVE-2024-0232 Twistlock CVE Low sqlite-3.26.0-20.el8_10 0.00018 false
CVE-2024-0232 Anchore CVE Low sqlite-libs-3.26.0-20.el8_10 0.00018 false
CVE-2025-5916 Twistlock CVE Low libarchive-3.3.3-6.el8_10 0.00017 false
CVE-2025-5916 Anchore CVE Low libarchive-3.3.3-6.el8_10 0.00017 false
CVE-2025-30258 Anchore CVE Low gnupg2-2.2.20-3.el8_6 0.00017 false
CVE-2025-30258 Twistlock CVE Low gnupg2-2.2.20-3.el8_6 0.00017 false
CVE-2020-35512 Twistlock CVE Low dbus-1.12.8-27.el8_10 0.00017 false
CVE-2020-35512 Anchore CVE Low dbus-common-1:1.12.8-27.el8_10 0.00017 false
CVE-2020-35512 Anchore CVE Low dbus-libs-1:1.12.8-27.el8_10 0.00017 false
CVE-2020-35512 Anchore CVE Low dbus-daemon-1:1.12.8-27.el8_10 0.00017 false
CVE-2020-35512 Anchore CVE Low dbus-tools-1:1.12.8-27.el8_10 0.00017 false
CVE-2020-35512 Anchore CVE Low dbus-1:1.12.8-27.el8_10 0.00017 false
CVE-2025-25724 Twistlock CVE Medium libarchive-3.3.3-6.el8_10 0.00016 false
CVE-2025-25724 Anchore CVE Medium libarchive-3.3.3-6.el8_10 0.00016 false
CVE-2025-8114 Twistlock CVE Medium libssh-0.9.6-14.el8 0.00015 false
CVE-2025-8114 Anchore CVE Medium libssh-config-0.9.6-14.el8 0.00015 false
CVE-2025-8114 Anchore CVE Medium libssh-0.9.6-14.el8 0.00015 false
CVE-2025-5917 Twistlock CVE Low libarchive-3.3.3-6.el8_10 0.00015 false
CVE-2025-5917 Anchore CVE Low libarchive-3.3.3-6.el8_10 0.00015 false
CVE-2025-50181 Twistlock CVE Medium urllib3-1.24.2 Most users dont disable redirects on the PoolManager. Set redirectsFalseredirects0 on the .request call instead of on the toplevel urllib3.PoolManager 0.00015 false
CVE-2025-50181 Twistlock CVE Medium python-pip-9.0.3-24.el8 0.00015 false
CVE-2025-50181 Anchore CVE Medium platform-python-pip-9.0.3-24.el8 0.00015 false
CVE-2025-50181 Anchore CVE Medium python3-pip-wheel-9.0.3-24.el8 0.00015 false
CVE-2025-4878 Twistlock CVE Low libssh-0.9.6-14.el8 0.00015 false
CVE-2025-4878 Anchore CVE Low libssh-0.9.6-14.el8 0.00015 false
CVE-2025-4878 Anchore CVE Low libssh-config-0.9.6-14.el8 0.00015 false
CVE-2025-5915 Twistlock CVE Low libarchive-3.3.3-6.el8_10 0.00014 false
CVE-2025-5915 Anchore CVE Low libarchive-3.3.3-6.el8_10 0.00014 false
CVE-2024-25260 Anchore CVE Low elfutils-debuginfod-client-0.190-2.el8 0.00014 false
CVE-2024-25260 Anchore CVE Low elfutils-default-yama-scope-0.190-2.el8 0.00014 false
CVE-2024-25260 Anchore CVE Low elfutils-libelf-0.190-2.el8 0.00014 false
CVE-2024-25260 Anchore CVE Low elfutils-libs-0.190-2.el8 0.00014 false
CVE-2024-25260 Twistlock CVE Low elfutils-0.190-2.el8 0.00014 false
CVE-2022-47011 Anchore CVE Low gdb-gdbserver-8.2-20.el8 0.00014 false
CVE-2022-47011 Twistlock CVE Low gdb-8.2-20.el8 0.00014 false
CVE-2022-47010 Anchore CVE Low gdb-gdbserver-8.2-20.el8 0.00014 false
CVE-2022-47010 Twistlock CVE Low gdb-8.2-20.el8 0.00014 false
CVE-2022-47007 Anchore CVE Low gdb-gdbserver-8.2-20.el8 0.00014 false
CVE-2022-47007 Twistlock CVE Low gdb-8.2-20.el8 0.00014 false
CVE-2025-50182 Twistlock CVE Medium python-pip-9.0.3-24.el8 0.00013 false
CVE-2025-50182 Anchore CVE Medium platform-python-pip-9.0.3-24.el8 0.00013 false
CVE-2025-50182 Anchore CVE Medium python3-pip-wheel-9.0.3-24.el8 0.00013 false
CVE-2024-57970 Twistlock CVE Medium libarchive-3.3.3-6.el8_10 0.00012 false
CVE-2024-57970 Anchore CVE Medium libarchive-3.3.3-6.el8_10 0.00012 false
CVE-2022-3219 Anchore CVE Low gnupg2-2.2.20-3.el8_6 0.00012 false
CVE-2025-3198 Anchore CVE Low gdb-gdbserver-8.2-20.el8 0.00011 false
CVE-2025-3198 Twistlock CVE Low gdb-8.2-20.el8 0.00011 false
CVE-2021-33294 Anchore CVE Medium elfutils-libs-0.190-2.el8 0.00006 false
CVE-2021-33294 Anchore CVE Medium elfutils-libelf-0.190-2.el8 0.00006 false
CVE-2021-33294 Anchore CVE Medium elfutils-default-yama-scope-0.190-2.el8 0.00006 false
CVE-2021-33294 Anchore CVE Medium elfutils-debuginfod-client-0.190-2.el8 0.00006 false
CVE-2021-33294 Twistlock CVE Medium elfutils-0.190-2.el8 0.00006 false
CVE-2025-9714 Twistlock CVE Medium libxml2-2.9.7-21.el8_10.3 N/A false
CVE-2023-2222 Anchore CVE Low gdb-gdbserver-8.2-20.el8 N/A false
addbb93c22e9b0988b8b40392a4538cb Anchore Compliance Low N/A N/A
PRISMA-2022-0168 Twistlock CVE High pip-22.3 N/A N/A
GHSA-rrqc-c2jx-6jgv Anchore CVE Medium django-4.1.2 N/A N/A
GHSA-r3xc-prgr-mg9p Anchore CVE Critical Django-4.1.2 N/A N/A
GHSA-qmf9-6jqf-j8fq Anchore CVE High Django-4.1.2 N/A N/A
GHSA-q2jf-h9jm-m7p4 Anchore CVE High Django-4.1.2 N/A N/A
GHSA-mq26-g339-26xf Anchore CVE Medium pip-22.3 N/A N/A
GHSA-jh3w-4vvf-mjgr Anchore CVE High Django-4.1.2 N/A N/A
GHSA-h8gc-pgj2-vjm3 Anchore CVE High Django-4.1.2 N/A N/A
GHSA-cx63-2mw6-8hw5 Anchore CVE High setuptools-65.5.1 N/A N/A
GHSA-7xr5-9hcq-chf9 Anchore CVE Medium django-4.1.2 N/A N/A
GHSA-7h4p-27mh-hmrw Anchore CVE Medium Django-4.1.2 N/A N/A
GHSA-5rjg-fvgr-3xxf Anchore CVE High setuptools-65.5.1 N/A N/A
GHSA-2hrw-hx67-34x6 Anchore CVE High Django-4.1.2 N/A N/A
CCE-89707-4 OSCAP Compliance Medium N/A N/A
CCE-86473-6 OSCAP Compliance Medium N/A N/A
CCE-86106-2 OSCAP Compliance Medium N/A N/A
CCE-85902-5 OSCAP Compliance High N/A N/A
CCE-85899-3 OSCAP Compliance Medium N/A N/A
CCE-85897-7 OSCAP Compliance Medium N/A N/A
CCE-85870-4 OSCAP Compliance Medium N/A N/A
CCE-84255-9 OSCAP Compliance Medium N/A N/A
CCE-84254-2 OSCAP Compliance Medium N/A N/A
CCE-82730-3 OSCAP Compliance Medium N/A N/A
CCE-81044-0 OSCAP Compliance Low N/A N/A
CCE-80935-0 OSCAP Compliance High N/A N/A
CCE-80854-3 OSCAP Compliance Low N/A N/A
CCE-80853-5 OSCAP Compliance Low N/A N/A
CCE-80852-7 OSCAP Compliance Low N/A N/A
CCE-80851-9 OSCAP Compliance Low N/A N/A
CCE-80839-4 OSCAP Compliance Medium N/A N/A
CCE-80838-6 OSCAP Compliance Medium N/A N/A
CCE-80837-8 OSCAP Compliance Medium N/A N/A
CCE-80664-6 OSCAP Compliance Medium N/A N/A

More information can be found in the VAT located here: https://vat.dso.mil/vat/image?imageName=cintel-inc/webapps/django-prod&tag=0.1.2&branch=master

Tasks

Contributor:

  • Provide justifications for findings in the VAT (docs)
  • Apply the StatusVerification label to this issue and wait for feedback

Iron Bank:

  • Review findings and justifications

Note: If the above process is rejected for any reason, the Verification label will be removed and the issue will be sent back to Open. Any comments will be listed in this issue for you to address. Once they have been addressed, you must re-add the Verification label.

Questions?

Contact the Iron Bank team by commenting on this issue with your questions or concerns. If you do not receive a response, add /cc @ironbank-notifications/onboarding.

Additionally, Iron Bank hosts an AMA working session every Wednesday from 1630-1730EST to answer questions.

Edited by CHORE_TOKEN
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information

UNCLASSIFIED - NO CUI