chore(findings): kasm/workspaces/guac
Summary
kasm/workspaces/guac has 503 new findings discovered during continuous monitoring.
More information can be found in the VAT located here: https://vat.dso.mil/vat/image?imageName=kasm/workspaces/guac&tag=1.16.1&branch=master
EPSS (Exploit Prediction Scoring System) provides an estimate of the likelihood that a vulnerability will be exploited in the wild.
KEV (Known Exploited Vulnerabilities) indicates whether a vulnerability is actively being exploited according to CISA.
| id | source | severity | package | impact | workaround | epss_score | kev |
|---|---|---|---|---|---|---|---|
| CVE-2022-35737 | Twistlock CVE | Low | sqlite3-3.34.1-3+deb11u1 | 0.63953 | false | ||
| CVE-2022-35737 | Anchore CVE | Low | libsqlite3-0-3.34.1-3+deb11u1 | 0.63953 | false | ||
| CVE-2017-17740 | Twistlock CVE | Low | openldap-2.4.57+dfsg-3+deb11u1 | 0.02838 | false | ||
| CVE-2023-4806 | Anchore CVE | Medium | libc6-dev-2.31-13+deb11u13 | 0.01895 | false | ||
| CVE-2023-4806 | Anchore CVE | Medium | libc-dev-bin-2.31-13+deb11u13 | 0.01895 | false | ||
| CVE-2018-20796 | Anchore CVE | Low | libc6-dev-2.31-13+deb11u13 | 0.01786 | false | ||
| CVE-2018-20796 | Anchore CVE | Low | libc-dev-bin-2.31-13+deb11u13 | 0.01786 | false | ||
| CVE-2015-3276 | Twistlock CVE | Low | openldap-2.4.57+dfsg-3+deb11u1 | 0.01757 | false | ||
| CVE-2015-3276 | Anchore CVE | Low | libldap-2.4-2-2.4.57+dfsg-3+deb11u1 | 0.01757 | false | ||
| CVE-2017-16232 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.01738 | false | ||
| CVE-2022-37454 | Anchore CVE | Low | libpython3.9-stdlib-3.9.2-1+deb11u3 | 0.01275 | false | ||
| CVE-2022-37454 | Anchore CVE | Low | libpython3.9-minimal-3.9.2-1+deb11u3 | 0.01275 | false | ||
| CVE-2022-37454 | Anchore CVE | Low | python3.9-3.9.2-1+deb11u3 | 0.01275 | false | ||
| CVE-2022-37454 | Anchore CVE | Low | python3.9-minimal-3.9.2-1+deb11u3 | 0.01275 | false | ||
| CVE-2022-37454 | Twistlock CVE | Low | python3.9-3.9.2-1+deb11u3 | 0.01275 | false | ||
| CVE-2023-2953 | Anchore CVE | High | libldap-2.4-2-2.4.57+dfsg-3+deb11u1 | 0.01149 | false | ||
| CVE-2023-2953 | Twistlock CVE | Low | openldap-2.4.57+dfsg-3+deb11u1 | 0.01149 | false | ||
| CVE-2014-8166 | Twistlock CVE | Low | cups-2.3.3op2-3+deb11u10 | 0.00992 | false | ||
| CVE-2014-8166 | Anchore CVE | Low | libcups2-2.3.3op2-3+deb11u10 | 0.00992 | false | ||
| CVE-2024-8176 | Anchore CVE | High | libexpat1-2.2.10-2+deb11u7 | 0.00805 | false | ||
| CVE-2024-8176 | Twistlock CVE | Low | expat-2.2.10-2+deb11u7 | 0.00805 | false | ||
| CVE-2019-1010023 | Anchore CVE | Low | libc-dev-bin-2.31-13+deb11u13 | 0.00703 | false | ||
| CVE-2019-1010023 | Anchore CVE | Low | libc6-dev-2.31-13+deb11u13 | 0.00703 | false | ||
| CVE-2016-10505 | Anchore CVE | Low | libopenjp2-7-2.4.0-3+deb11u1 | 0.00656 | false | ||
| CVE-2016-10505 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00656 | false | ||
| CVE-2023-28320 | Twistlock CVE | Low | curl-7.74.0-1.3+deb11u15 | 0.00641 | false | ||
| CVE-2023-28320 | Anchore CVE | Low | curl-7.74.0-1.3+deb11u15 | 0.00641 | false | ||
| CVE-2023-28320 | Anchore CVE | Low | libcurl4-7.74.0-1.3+deb11u15 | 0.00641 | false | ||
| CVE-2024-28757 | Twistlock CVE | Low | expat-2.2.10-2+deb11u7 | 0.00621 | false | ||
| CVE-2024-28757 | Anchore CVE | Low | libexpat1-2.2.10-2+deb11u7 | 0.00621 | false | ||
| CVE-2024-29511 | Twistlock CVE | Low | ghostscript-9.53.3~dfsg-7+deb11u11 | 0.00576 | false | ||
| CVE-2024-29511 | Anchore CVE | Low | ghostscript-9.53.3~dfsg-7+deb11u11 | 0.00576 | false | ||
| CVE-2024-29511 | Anchore CVE | Low | libgs9-9.53.3~dfsg-7+deb11u11 | 0.00576 | false | ||
| CVE-2024-29511 | Anchore CVE | Low | libgs9-common-9.53.3~dfsg-7+deb11u11 | 0.00576 | false | ||
| CVE-2024-9681 | Twistlock CVE | Medium | curl-7.74.0-1.3+deb11u15 | 0.00571 | false | ||
| CVE-2024-9681 | Anchore CVE | Medium | libcurl4-7.74.0-1.3+deb11u15 | 0.00571 | false | ||
| CVE-2024-9681 | Anchore CVE | Medium | curl-7.74.0-1.3+deb11u15 | 0.00571 | false | ||
| CVE-2018-16376 | Anchore CVE | Low | libopenjp2-7-2.4.0-3+deb11u1 | 0.00566 | false | ||
| CVE-2018-16376 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00566 | false | ||
| CVE-2023-31486 | Anchore CVE | Low | libperl5.32-5.32.1-4+deb11u4 | 0.00560 | false | ||
| CVE-2023-31486 | Anchore CVE | Low | perl-modules-5.32-5.32.1-4+deb11u4 | 0.00560 | false | ||
| CVE-2023-31486 | Anchore CVE | Low | perl-5.32.1-4+deb11u4 | 0.00560 | false | ||
| CVE-2018-18064 | Anchore CVE | Low | libcairo2-1.16.0-5 | 0.00510 | false | ||
| CVE-2018-18064 | Anchore CVE | Low | libcairo-gobject2-1.16.0-5 | 0.00510 | false | ||
| CVE-2018-18064 | Twistlock CVE | Low | cairo-1.16.0-5 | 0.00510 | false | ||
| CVE-2023-45853 | Anchore CVE | Critical | zlib1g-dev-1:1.2.11.dfsg-2+deb11u2 | 0.00509 | false | ||
| CVE-2012-0039 | Anchore CVE | Low | libglib2.0-dev-bin-2.66.8-1+deb11u6 | 0.00492 | false | ||
| CVE-2012-0039 | Anchore CVE | Low | libglib2.0-data-2.66.8-1+deb11u6 | 0.00492 | false | ||
| CVE-2012-0039 | Anchore CVE | Low | libglib2.0-dev-2.66.8-1+deb11u6 | 0.00492 | false | ||
| CVE-2012-0039 | Anchore CVE | Low | libglib2.0-0-2.66.8-1+deb11u6 | 0.00492 | false | ||
| CVE-2012-0039 | Anchore CVE | Low | libglib2.0-bin-2.66.8-1+deb11u6 | 0.00492 | false | ||
| CVE-2016-9114 | Anchore CVE | Low | libopenjp2-7-2.4.0-3+deb11u1 | 0.00478 | false | ||
| CVE-2016-9114 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00478 | false | ||
| CVE-2025-0725 | Twistlock CVE | Low | curl-7.74.0-1.3+deb11u15 | 0.00460 | false | ||
| CVE-2025-0725 | Anchore CVE | Low | curl-7.74.0-1.3+deb11u15 | 0.00460 | false | ||
| CVE-2025-0725 | Anchore CVE | Low | libcurl4-7.74.0-1.3+deb11u15 | 0.00460 | false | ||
| CVE-2018-10126 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00459 | false | ||
| CVE-2018-10126 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00459 | false | ||
| CVE-2016-9113 | Anchore CVE | Low | libopenjp2-7-2.4.0-3+deb11u1 | 0.00448 | false | ||
| CVE-2016-9113 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00448 | false | ||
| CVE-2017-7245 | Anchore CVE | Low | libpcre16-3-2:8.39-13 | 0.00436 | false | ||
| CVE-2017-7245 | Anchore CVE | Low | libpcre32-3-2:8.39-13 | 0.00436 | false | ||
| CVE-2017-7245 | Anchore CVE | Low | libpcre3-dev-2:8.39-13 | 0.00436 | false | ||
| CVE-2017-7245 | Anchore CVE | Low | libpcrecpp0v5-2:8.39-13 | 0.00436 | false | ||
| CVE-2019-6129 | Anchore CVE | Low | libpng16-16-1.6.37-3 | 0.00433 | false | ||
| CVE-2023-6277 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00418 | false | ||
| CVE-2023-6277 | Anchore CVE | Medium | libtiff5-4.2.0-1+deb11u7 | 0.00418 | false | ||
| CVE-2016-9580 | Anchore CVE | Low | libopenjp2-7-2.4.0-3+deb11u1 | 0.00396 | false | ||
| CVE-2016-9580 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00396 | false | ||
| CVE-2019-1010024 | Anchore CVE | Low | libc6-dev-2.31-13+deb11u13 | 0.00375 | false | ||
| CVE-2019-1010024 | Anchore CVE | Low | libc-dev-bin-2.31-13+deb11u13 | 0.00375 | false | ||
| CVE-2016-9115 | Anchore CVE | Low | libopenjp2-7-2.4.0-3+deb11u1 | 0.00374 | false | ||
| CVE-2016-9115 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00374 | false | ||
| CVE-2010-4756 | Anchore CVE | Low | libc-dev-bin-2.31-13+deb11u13 | 0.00373 | false | ||
| CVE-2010-4756 | Anchore CVE | Low | libc6-dev-2.31-13+deb11u13 | 0.00373 | false | ||
| CVE-2017-7246 | Anchore CVE | Low | libpcre16-3-2:8.39-13 | 0.00357 | false | ||
| CVE-2017-7246 | Anchore CVE | Low | libpcre32-3-2:8.39-13 | 0.00357 | false | ||
| CVE-2017-7246 | Anchore CVE | Low | libpcre3-dev-2:8.39-13 | 0.00357 | false | ||
| CVE-2017-7246 | Anchore CVE | Low | libpcrecpp0v5-2:8.39-13 | 0.00357 | false | ||
| CVE-2016-9117 | Anchore CVE | Low | libopenjp2-7-2.4.0-3+deb11u1 | 0.00357 | false | ||
| CVE-2016-9117 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00357 | false | ||
| CVE-2016-9116 | Anchore CVE | Low | libopenjp2-7-2.4.0-3+deb11u1 | 0.00357 | false | ||
| CVE-2016-9116 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00357 | false | ||
| CVE-2017-9937 | Twistlock CVE | Low | jbigkit-2.1-3.1 | 0.00354 | false | ||
| CVE-2017-9937 | Anchore CVE | Low | libjbig0-2.1-3.1+b2 | 0.00354 | false | ||
| CVE-2019-9192 | Anchore CVE | Low | libc-dev-bin-2.31-13+deb11u13 | 0.00353 | false | ||
| CVE-2019-9192 | Anchore CVE | Low | libc6-dev-2.31-13+deb11u13 | 0.00353 | false | ||
| CVE-2016-9581 | Anchore CVE | Low | libopenjp2-7-2.4.0-3+deb11u1 | 0.00352 | false | ||
| CVE-2016-9581 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00352 | false | ||
| CVE-2025-9951 | Twistlock CVE | Low | ffmpeg-7:4.3.9-0+deb11u1 | 0.00344 | false | ||
| CVE-2025-9951 | Anchore CVE | High | libavformat58-7:4.3.9-0+deb11u1 | 0.00344 | false | ||
| CVE-2025-9951 | Anchore CVE | High | libswresample3-7:4.3.9-0+deb11u1 | 0.00344 | false | ||
| CVE-2025-9951 | Anchore CVE | High | libavcodec58-7:4.3.9-0+deb11u1 | 0.00344 | false | ||
| CVE-2025-9951 | Anchore CVE | High | libavutil56-7:4.3.9-0+deb11u1 | 0.00344 | false | ||
| CVE-2025-9951 | Anchore CVE | High | libswscale5-7:4.3.9-0+deb11u1 | 0.00344 | false | ||
| CVE-2017-7475 | Anchore CVE | Low | libcairo2-1.16.0-5 | 0.00344 | false | ||
| CVE-2017-7475 | Anchore CVE | Low | libcairo-gobject2-1.16.0-5 | 0.00344 | false | ||
| CVE-2017-7475 | Twistlock CVE | Low | cairo-1.16.0-5 | 0.00344 | false | ||
| CVE-2019-15680 | Twistlock CVE | Low | libvncserver-0.9.13+dfsg-2+deb11u1 | 0.00337 | false | ||
| CVE-2019-15680 | Anchore CVE | Low | libvncclient1-0.9.13+dfsg-2+deb11u1 | 0.00337 | false | ||
| CVE-2019-6988 | Anchore CVE | Low | libopenjp2-7-2.4.0-3+deb11u1 | 0.00327 | false | ||
| CVE-2019-6988 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00327 | false | ||
| CVE-2022-31782 | Anchore CVE | Low | libfreetype6-2.10.4+dfsg-1+deb11u2 | 0.00309 | false | ||
| CVE-2022-31782 | Twistlock CVE | Low | freetype-2.10.4+dfsg-1+deb11u2 | 0.00309 | false | ||
| CVE-2019-20838 | Anchore CVE | Low | libpcre3-dev-2:8.39-13 | 0.00306 | false | ||
| CVE-2019-20838 | Anchore CVE | Low | libpcre32-3-2:8.39-13 | 0.00306 | false | ||
| CVE-2019-20838 | Anchore CVE | Low | libpcre16-3-2:8.39-13 | 0.00306 | false | ||
| CVE-2019-20838 | Anchore CVE | Low | libpcrecpp0v5-2:8.39-13 | 0.00306 | false | ||
| CVE-2022-1350 | Twistlock CVE | Low | ghostscript-9.53.3~dfsg-7+deb11u11 | 0.00305 | false | ||
| CVE-2022-1350 | Anchore CVE | Low | libgs9-9.53.3~dfsg-7+deb11u11 | 0.00305 | false | ||
| CVE-2022-1350 | Anchore CVE | Low | libgs9-common-9.53.3~dfsg-7+deb11u11 | 0.00305 | false | ||
| CVE-2022-1350 | Anchore CVE | Low | ghostscript-9.53.3~dfsg-7+deb11u11 | 0.00305 | false | ||
| CVE-2023-4813 | Anchore CVE | Medium | libc6-dev-2.31-13+deb11u13 | 0.00304 | false | ||
| CVE-2023-4813 | Anchore CVE | Medium | libc-dev-bin-2.31-13+deb11u13 | 0.00304 | false | ||
| CVE-2017-11164 | Anchore CVE | Low | libpcre3-dev-2:8.39-13 | 0.00274 | false | ||
| CVE-2017-11164 | Anchore CVE | Low | libpcre16-3-2:8.39-13 | 0.00274 | false | ||
| CVE-2017-11164 | Anchore CVE | Low | libpcrecpp0v5-2:8.39-13 | 0.00274 | false | ||
| CVE-2017-11164 | Anchore CVE | Low | libpcre32-3-2:8.39-13 | 0.00274 | false | ||
| CVE-2023-6603 | Twistlock CVE | Low | ffmpeg-7:4.3.9-0+deb11u1 | 0.00272 | false | ||
| CVE-2023-6603 | Anchore CVE | High | libavformat58-7:4.3.9-0+deb11u1 | 0.00272 | false | ||
| CVE-2023-6603 | Anchore CVE | High | libavcodec58-7:4.3.9-0+deb11u1 | 0.00272 | false | ||
| CVE-2023-6603 | Anchore CVE | High | libswresample3-7:4.3.9-0+deb11u1 | 0.00272 | false | ||
| CVE-2023-6603 | Anchore CVE | High | libswscale5-7:4.3.9-0+deb11u1 | 0.00272 | false | ||
| CVE-2023-6603 | Anchore CVE | High | libavutil56-7:4.3.9-0+deb11u1 | 0.00272 | false | ||
| CVE-2025-2174 | Anchore CVE | High | libzvbi-common-0.2.35-18 | 0.00270 | false | ||
| CVE-2025-2174 | Anchore CVE | High | libzvbi0-0.2.35-18 | 0.00270 | false | ||
| CVE-2025-2174 | Twistlock CVE | Low | zvbi-0.2.35-18 | 0.00270 | false | ||
| CVE-2021-45346 | Anchore CVE | Low | libsqlite3-0-3.34.1-3+deb11u1 | 0.00242 | false | ||
| CVE-2025-25467 | Anchore CVE | Low | libx264-160-2:0.160.3011+gitcde9a93-2.1 | 0.00238 | false | ||
| CVE-2025-25467 | Twistlock CVE | Low | x264-2:0.160.3011+gitcde9a93-2.1 | 0.00238 | false | ||
| CVE-2021-4214 | Twistlock CVE | Low | libpng1.6-1.6.37-3 | 0.00233 | false | ||
| CVE-2021-4214 | Anchore CVE | Low | libpng16-16-1.6.37-3 | 0.00233 | false | ||
| CVE-2019-1010025 | Anchore CVE | Low | libc-dev-bin-2.31-13+deb11u13 | 0.00228 | false | ||
| CVE-2019-1010025 | Anchore CVE | Low | libc6-dev-2.31-13+deb11u13 | 0.00228 | false | ||
| CVE-2025-2175 | Anchore CVE | Medium | libzvbi0-0.2.35-18 | 0.00210 | false | ||
| CVE-2025-2175 | Anchore CVE | Medium | libzvbi-common-0.2.35-18 | 0.00210 | false | ||
| CVE-2025-2175 | Twistlock CVE | Low | zvbi-0.2.35-18 | 0.00210 | false | ||
| CVE-2025-8194 | Twistlock CVE | Low | python3.9-3.9.2-1+deb11u3 | 0.00207 | false | ||
| CVE-2025-8194 | Anchore CVE | High | libpython3.9-minimal-3.9.2-1+deb11u3 | 0.00207 | false | ||
| CVE-2025-8194 | Anchore CVE | High | python3.9-minimal-3.9.2-1+deb11u3 | 0.00207 | false | ||
| CVE-2025-8194 | Anchore CVE | High | python3.9-3.9.2-1+deb11u3 | 0.00207 | false | ||
| CVE-2025-8194 | Anchore CVE | High | libpython3.9-stdlib-3.9.2-1+deb11u3 | 0.00207 | false | ||
| CVE-2024-2379 | Twistlock CVE | Low | curl-7.74.0-1.3+deb11u15 | 0.00205 | false | ||
| CVE-2024-2379 | Anchore CVE | Low | curl-7.74.0-1.3+deb11u15 | 0.00205 | false | ||
| CVE-2024-2379 | Anchore CVE | Low | libcurl4-7.74.0-1.3+deb11u15 | 0.00205 | false | ||
| CVE-2024-52616 | Twistlock CVE | Low | avahi-0.8-5+deb11u3 | 0.00204 | false | ||
| CVE-2024-52616 | Anchore CVE | Medium | libavahi-client3-0.8-5+deb11u3 | 0.00204 | false | ||
| CVE-2024-52616 | Anchore CVE | Medium | libavahi-common-data-0.8-5+deb11u3 | 0.00204 | false | ||
| CVE-2024-52616 | Anchore CVE | Medium | libavahi-common3-0.8-5+deb11u3 | 0.00204 | false | ||
| CVE-2024-52615 | Twistlock CVE | Low | avahi-0.8-5+deb11u3 | 0.00201 | false | ||
| CVE-2024-52615 | Anchore CVE | Medium | libavahi-client3-0.8-5+deb11u3 | 0.00201 | false | ||
| CVE-2024-52615 | Anchore CVE | Medium | libavahi-common3-0.8-5+deb11u3 | 0.00201 | false | ||
| CVE-2024-52615 | Anchore CVE | Medium | libavahi-common-data-0.8-5+deb11u3 | 0.00201 | false | ||
| CVE-2011-4116 | Anchore CVE | Low | libperl5.32-5.32.1-4+deb11u4 | 0.00200 | false | ||
| CVE-2011-4116 | Anchore CVE | Low | perl-5.32.1-4+deb11u4 | 0.00200 | false | ||
| CVE-2011-4116 | Anchore CVE | Low | perl-modules-5.32-5.32.1-4+deb11u4 | 0.00200 | false | ||
| CVE-2023-46219 | Twistlock CVE | Medium | curl-7.74.0-1.3+deb11u15 | 0.00193 | false | ||
| CVE-2023-46219 | Anchore CVE | Medium | curl-7.74.0-1.3+deb11u15 | 0.00193 | false | ||
| CVE-2023-46219 | Anchore CVE | Medium | libcurl4-7.74.0-1.3+deb11u15 | 0.00193 | false | ||
| CVE-2020-22038 | Twistlock CVE | Low | ffmpeg-7:4.3.9-0+deb11u1 | 0.00193 | false | ||
| CVE-2020-22038 | Anchore CVE | Low | libavformat58-7:4.3.9-0+deb11u1 | 0.00193 | false | ||
| CVE-2020-22038 | Anchore CVE | Low | libswresample3-7:4.3.9-0+deb11u1 | 0.00193 | false | ||
| CVE-2020-22038 | Anchore CVE | Low | libavutil56-7:4.3.9-0+deb11u1 | 0.00193 | false | ||
| CVE-2020-22038 | Anchore CVE | Low | libswscale5-7:4.3.9-0+deb11u1 | 0.00193 | false | ||
| CVE-2020-22038 | Anchore CVE | Low | libavcodec58-7:4.3.9-0+deb11u1 | 0.00193 | false | ||
| CVE-2023-4039 | Anchore CVE | Low | libgomp1-10.2.1-6 | 0.00181 | false | ||
| CVE-2021-22922 | Twistlock CVE | Low | curl-7.74.0-1.3+deb11u15 | 0.00180 | false | ||
| CVE-2021-22922 | Anchore CVE | Low | curl-7.74.0-1.3+deb11u15 | 0.00180 | false | ||
| CVE-2021-22922 | Anchore CVE | Low | libcurl4-7.74.0-1.3+deb11u15 | 0.00180 | false | ||
| CVE-2023-23914 | Twistlock CVE | Critical | curl-7.74.0-1.3+deb11u15 | 0.00175 | false | ||
| CVE-2023-23914 | Anchore CVE | Critical | libcurl4-7.74.0-1.3+deb11u15 | 0.00175 | false | ||
| CVE-2023-23914 | Anchore CVE | Critical | curl-7.74.0-1.3+deb11u15 | 0.00175 | false | ||
| CVE-2025-1352 | Anchore CVE | Low | libelf1-0.183-1 | 0.00173 | false | ||
| CVE-2025-1352 | Twistlock CVE | Low | elfutils-0.183-1 | 0.00173 | false | ||
| CVE-2025-29070 | Anchore CVE | Low | liblcms2-2-2.12~rc1-2 | 0.00168 | false | ||
| CVE-2025-1594 | Twistlock CVE | Low | ffmpeg-7:4.3.9-0+deb11u1 | 0.00163 | false | ||
| CVE-2025-1594 | Anchore CVE | High | libavutil56-7:4.3.9-0+deb11u1 | 0.00163 | false | ||
| CVE-2025-1594 | Anchore CVE | High | libavcodec58-7:4.3.9-0+deb11u1 | 0.00163 | false | ||
| CVE-2025-1594 | Anchore CVE | High | libswresample3-7:4.3.9-0+deb11u1 | 0.00163 | false | ||
| CVE-2025-1594 | Anchore CVE | High | libswscale5-7:4.3.9-0+deb11u1 | 0.00163 | false | ||
| CVE-2025-1594 | Anchore CVE | High | libavformat58-7:4.3.9-0+deb11u1 | 0.00163 | false | ||
| CVE-2025-2176 | Anchore CVE | High | libzvbi-common-0.2.35-18 | 0.00162 | false | ||
| CVE-2025-2176 | Anchore CVE | High | libzvbi0-0.2.35-18 | 0.00162 | false | ||
| CVE-2025-2176 | Twistlock CVE | Low | zvbi-0.2.35-18 | 0.00162 | false | ||
| CVE-2025-2177 | Anchore CVE | Medium | libzvbi-common-0.2.35-18 | 0.00158 | false | ||
| CVE-2025-2177 | Anchore CVE | Medium | libzvbi0-0.2.35-18 | 0.00158 | false | ||
| CVE-2025-2177 | Twistlock CVE | Low | zvbi-0.2.35-18 | 0.00158 | false | ||
| CVE-2023-6879 | Anchore CVE | Critical | libaom0-1.0.0.errata1-3+deb11u2 | 0.00155 | false | ||
| CVE-2023-6879 | Twistlock CVE | Low | aom-1.0.0.errata1-3+deb11u2 | 0.00155 | false | ||
| CVE-2019-1010022 | Anchore CVE | Low | libc6-dev-2.31-13+deb11u13 | 0.00145 | false | ||
| CVE-2019-1010022 | Anchore CVE | Low | libc-dev-bin-2.31-13+deb11u13 | 0.00145 | false | ||
| CVE-2024-5642 | Anchore CVE | Medium | python3.9-minimal-3.9.2-1+deb11u3 | 0.00142 | false | ||
| CVE-2024-5642 | Anchore CVE | Medium | python3.9-3.9.2-1+deb11u3 | 0.00142 | false | ||
| CVE-2024-5642 | Anchore CVE | Medium | libpython3.9-stdlib-3.9.2-1+deb11u3 | 0.00142 | false | ||
| CVE-2024-5642 | Anchore CVE | Medium | libpython3.9-minimal-3.9.2-1+deb11u3 | 0.00142 | false | ||
| CVE-2024-5642 | Twistlock CVE | Low | python3.9-3.9.2-1+deb11u3 | 0.00142 | false | ||
| CVE-2019-6461 | Anchore CVE | Low | libcairo-gobject2-1.16.0-5 | 0.00137 | false | ||
| CVE-2019-6461 | Anchore CVE | Low | libcairo2-1.16.0-5 | 0.00137 | false | ||
| CVE-2019-6461 | Twistlock CVE | Low | cairo-1.16.0-5 | 0.00137 | false | ||
| CVE-2020-15719 | Twistlock CVE | Low | openldap-2.4.57+dfsg-3+deb11u1 | 0.00135 | false | ||
| CVE-2020-15719 | Anchore CVE | Low | libldap-2.4-2-2.4.57+dfsg-3+deb11u1 | 0.00135 | false | ||
| CVE-2019-6462 | Anchore CVE | Low | libcairo-gobject2-1.16.0-5 | 0.00133 | false | ||
| CVE-2019-6462 | Anchore CVE | Low | libcairo2-1.16.0-5 | 0.00133 | false | ||
| CVE-2019-6462 | Twistlock CVE | Low | cairo-1.16.0-5 | 0.00133 | false | ||
| CVE-2024-36615 | Twistlock CVE | Low | ffmpeg-7:4.3.9-0+deb11u1 | 0.00124 | false | ||
| CVE-2024-36615 | Anchore CVE | Medium | libswscale5-7:4.3.9-0+deb11u1 | 0.00124 | false | ||
| CVE-2024-36615 | Anchore CVE | Medium | libavcodec58-7:4.3.9-0+deb11u1 | 0.00124 | false | ||
| CVE-2024-36615 | Anchore CVE | Medium | libavformat58-7:4.3.9-0+deb11u1 | 0.00124 | false | ||
| CVE-2024-36615 | Anchore CVE | Medium | libavutil56-7:4.3.9-0+deb11u1 | 0.00124 | false | ||
| CVE-2024-36615 | Anchore CVE | Medium | libswresample3-7:4.3.9-0+deb11u1 | 0.00124 | false | ||
| CVE-2020-23903 | Twistlock CVE | Low | speex-1.2~rc1.2-1.1 | 0.00123 | false | ||
| CVE-2020-23903 | Anchore CVE | Medium | libspeex1-1.2~rc1.2-1.1 | 0.00123 | false | ||
| CVE-2023-39329 | Anchore CVE | Medium | libopenjp2-7-2.4.0-3+deb11u1 | 0.00122 | false | ||
| CVE-2023-39329 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00122 | false | ||
| CVE-2021-22923 | Twistlock CVE | Low | curl-7.74.0-1.3+deb11u15 | 0.00122 | false | ||
| CVE-2021-22923 | Anchore CVE | Low | libcurl4-7.74.0-1.3+deb11u15 | 0.00122 | false | ||
| CVE-2021-22923 | Anchore CVE | Low | curl-7.74.0-1.3+deb11u15 | 0.00122 | false | ||
| CVE-2023-52355 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00119 | false | ||
| CVE-2023-52355 | Anchore CVE | High | libtiff5-4.2.0-1+deb11u7 | 0.00119 | false | ||
| CVE-2025-6069 | Twistlock CVE | Low | python3.9-3.9.2-1+deb11u3 | 0.00116 | false | ||
| CVE-2025-6069 | Anchore CVE | Medium | python3.9-3.9.2-1+deb11u3 | 0.00116 | false | ||
| CVE-2025-6069 | Anchore CVE | Medium | libpython3.9-minimal-3.9.2-1+deb11u3 | 0.00116 | false | ||
| CVE-2025-6069 | Anchore CVE | Medium | libpython3.9-stdlib-3.9.2-1+deb11u3 | 0.00116 | false | ||
| CVE-2025-6069 | Anchore CVE | Medium | python3.9-minimal-3.9.2-1+deb11u3 | 0.00116 | false | ||
| CVE-2025-2173 | Anchore CVE | High | libzvbi0-0.2.35-18 | 0.00116 | false | ||
| CVE-2025-2173 | Anchore CVE | High | libzvbi-common-0.2.35-18 | 0.00116 | false | ||
| CVE-2025-2173 | Twistlock CVE | Low | zvbi-0.2.35-18 | 0.00116 | false | ||
| CVE-2025-52194 | Anchore CVE | High | libsndfile1-1.0.31-2+deb11u1 | 0.00114 | false | ||
| CVE-2025-52194 | Twistlock CVE | Low | libsndfile-1.0.31-2+deb11u1 | 0.00114 | false | ||
| CVE-2017-14159 | Twistlock CVE | Low | openldap-2.4.57+dfsg-3+deb11u1 | 0.00113 | false | ||
| CVE-2017-14159 | Anchore CVE | Low | libldap-2.4-2-2.4.57+dfsg-3+deb11u1 | 0.00113 | false | ||
| CVE-2025-4373 | Twistlock CVE | Low | glib2.0-2.66.8-1+deb11u6 | 0.00109 | false | ||
| CVE-2025-4373 | Anchore CVE | Medium | libglib2.0-data-2.66.8-1+deb11u6 | 0.00109 | false | ||
| CVE-2025-4373 | Anchore CVE | Medium | libglib2.0-dev-bin-2.66.8-1+deb11u6 | 0.00109 | false | ||
| CVE-2025-4373 | Anchore CVE | Medium | libglib2.0-bin-2.66.8-1+deb11u6 | 0.00109 | false | ||
| CVE-2025-4373 | Anchore CVE | Medium | libglib2.0-dev-2.66.8-1+deb11u6 | 0.00109 | false | ||
| CVE-2025-4373 | Anchore CVE | Medium | libglib2.0-0-2.66.8-1+deb11u6 | 0.00109 | false | ||
| CVE-2021-4156 | Anchore CVE | High | libsndfile1-1.0.31-2+deb11u1 | 0.00103 | false | ||
| CVE-2021-4156 | Twistlock CVE | Low | libsndfile-1.0.31-2+deb11u1 | 0.00103 | false | ||
| CVE-2021-46822 | Twistlock CVE | Low | libjpeg-turbo-1:2.0.6-4 | 0.00099 | false | ||
| CVE-2021-46822 | Anchore CVE | Medium | libjpeg62-turbo-1:2.0.6-4 | 0.00099 | false | ||
| CVE-2017-16231 | Anchore CVE | Low | libpcrecpp0v5-2:8.39-13 | 0.00096 | false | ||
| CVE-2017-16231 | Anchore CVE | Low | libpcre3-dev-2:8.39-13 | 0.00096 | false | ||
| CVE-2017-16231 | Anchore CVE | Low | libpcre32-3-2:8.39-13 | 0.00096 | false | ||
| CVE-2017-16231 | Anchore CVE | Low | libpcre16-3-2:8.39-13 | 0.00096 | false | ||
| CVE-2025-7039 | Twistlock CVE | Low | glib2.0-2.66.8-1+deb11u6 | 0.00089 | false | ||
| CVE-2025-7039 | Anchore CVE | Low | libglib2.0-dev-bin-2.66.8-1+deb11u6 | 0.00089 | false | ||
| CVE-2025-7039 | Anchore CVE | Low | libglib2.0-0-2.66.8-1+deb11u6 | 0.00089 | false | ||
| CVE-2025-7039 | Anchore CVE | Low | libglib2.0-data-2.66.8-1+deb11u6 | 0.00089 | false | ||
| CVE-2025-7039 | Anchore CVE | Low | libglib2.0-dev-2.66.8-1+deb11u6 | 0.00089 | false | ||
| CVE-2025-7039 | Anchore CVE | Low | libglib2.0-bin-2.66.8-1+deb11u6 | 0.00089 | false | ||
| CVE-2025-6297 | Anchore CVE | High | libdpkg-perl-1.20.13 | 0.00086 | false | ||
| CVE-2024-52798 | Twistlock CVE | High | path-to-regexp-0.1.10 | 0.00086 | false | ||
| CVE-2022-34346 | Twistlock CVE | High | intel-mediasdk-21.1.0-1 | 0.00080 | false | ||
| CVE-2022-34346 | Anchore CVE | High | libmfx1-21.1.0-1 | 0.00080 | false | ||
| CVE-2022-34841 | Twistlock CVE | High | intel-mediasdk-21.1.0-1 | 0.00079 | false | ||
| CVE-2022-34841 | Anchore CVE | High | libmfx1-21.1.0-1 | 0.00079 | false | ||
| CVE-2022-27170 | Twistlock CVE | High | intel-mediasdk-21.1.0-1 | 0.00079 | false | ||
| CVE-2022-27170 | Anchore CVE | High | libmfx1-21.1.0-1 | 0.00079 | false | ||
| CVE-2025-9086 | Twistlock CVE | Low | curl-7.74.0-1.3+deb11u15 | 0.00077 | false | ||
| CVE-2025-9086 | Anchore CVE | High | libcurl4-7.74.0-1.3+deb11u15 | 0.00077 | false | ||
| CVE-2025-9086 | Anchore CVE | High | curl-7.74.0-1.3+deb11u15 | 0.00077 | false | ||
| CVE-2021-44269 | Twistlock CVE | Low | wavpack-5.4.0-1 | 0.00076 | false | ||
| CVE-2021-44269 | Anchore CVE | Low | libwavpack1-5.4.0-1 | 0.00076 | false | ||
| CVE-2025-59375 | Twistlock CVE | Low | expat-2.2.10-2+deb11u7 | 0.00075 | false | ||
| CVE-2025-59375 | Anchore CVE | High | libexpat1-2.2.10-2+deb11u7 | 0.00075 | false | ||
| CVE-2025-5318 | Twistlock CVE | Low | libssh-0.9.8-0+deb11u1 | 0.00074 | false | ||
| CVE-2025-5318 | Anchore CVE | High | libssh-gcrypt-4-0.9.8-0+deb11u1 | 0.00074 | false | ||
| CVE-2025-1377 | Anchore CVE | Low | libelf1-0.183-1 | 0.00074 | false | ||
| CVE-2025-1377 | Twistlock CVE | Low | elfutils-0.183-1 | 0.00074 | false | ||
| CVE-2022-33068 | Twistlock CVE | Low | harfbuzz-2.7.4-1 | 0.00074 | false | ||
| CVE-2022-33068 | Anchore CVE | Medium | libharfbuzz0b-2.7.4-1 | 0.00074 | false | ||
| CVE-2022-1056 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00074 | false | ||
| CVE-2022-1056 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00074 | false | ||
| CVE-2025-8291 | Twistlock CVE | Low | python3.9-3.9.2-1+deb11u3 | 0.00073 | false | ||
| CVE-2025-8291 | Anchore CVE | Medium | python3.9-3.9.2-1+deb11u3 | 0.00073 | false | ||
| CVE-2025-8291 | Anchore CVE | Medium | libpython3.9-stdlib-3.9.2-1+deb11u3 | 0.00073 | false | ||
| CVE-2025-8291 | Anchore CVE | Medium | python3.9-minimal-3.9.2-1+deb11u3 | 0.00073 | false | ||
| CVE-2025-8291 | Anchore CVE | Medium | libpython3.9-minimal-3.9.2-1+deb11u3 | 0.00073 | false | ||
| CVE-2023-32570 | Anchore CVE | Medium | libdav1d4-0.7.1-3+deb11u1 | 0.00070 | false | ||
| CVE-2023-32570 | Twistlock CVE | Low | dav1d-0.7.1-3+deb11u1 | 0.00070 | false | ||
| CVE-2024-50613 | Anchore CVE | Medium | libsndfile1-1.0.31-2+deb11u1 | 0.00067 | false | ||
| CVE-2024-50613 | Twistlock CVE | Medium | libsndfile-1.0.31-2+deb11u1 | 0.00067 | false | ||
| CVE-2022-39317 | Anchore CVE | Medium | libfreerdp2-2-2.3.0+dfsg1-2+deb11u3 | 0.00062 | false | ||
| CVE-2022-39317 | Anchore CVE | Medium | libfreerdp-client2-2-2.3.0+dfsg1-2+deb11u3 | 0.00062 | false | ||
| CVE-2022-39317 | Anchore CVE | Medium | libwinpr2-2-2.3.0+dfsg1-2+deb11u3 | 0.00062 | false | ||
| CVE-2022-39317 | Twistlock CVE | Low | freerdp2-2.3.0+dfsg1-2+deb11u3 | 0.00062 | false | ||
| CVE-2022-41409 | Anchore CVE | Low | libpcre2-32-0-10.36-2+deb11u1 | 0.00061 | false | ||
| CVE-2022-41409 | Anchore CVE | Low | libpcre2-16-0-10.36-2+deb11u1 | 0.00061 | false | ||
| CVE-2022-41409 | Anchore CVE | Low | libpcre2-posix2-10.36-2+deb11u1 | 0.00061 | false | ||
| CVE-2022-41409 | Anchore CVE | Low | libpcre2-dev-10.36-2+deb11u1 | 0.00061 | false | ||
| CVE-2025-5987 | Twistlock CVE | Low | libssh-0.9.8-0+deb11u1 | 0.00058 | false | ||
| CVE-2025-5987 | Anchore CVE | High | libssh-gcrypt-4-0.9.8-0+deb11u1 | 0.00058 | false | ||
| CVE-2021-41159 | Anchore CVE | High | libfreerdp-client2-2-2.3.0+dfsg1-2+deb11u3 | 0.00057 | false | ||
| CVE-2021-41159 | Anchore CVE | High | libfreerdp2-2-2.3.0+dfsg1-2+deb11u3 | 0.00057 | false | ||
| CVE-2021-41159 | Anchore CVE | High | libwinpr2-2-2.3.0+dfsg1-2+deb11u3 | 0.00057 | false | ||
| CVE-2021-41159 | Twistlock CVE | High | freerdp2-2.3.0+dfsg1-2+deb11u3 | 0.00057 | false | ||
| CVE-2025-5372 | Twistlock CVE | Low | libssh-0.9.8-0+deb11u1 | 0.00056 | false | ||
| CVE-2025-5372 | Anchore CVE | High | libssh-gcrypt-4-0.9.8-0+deb11u1 | 0.00056 | false | ||
| CVE-2020-0478 | Anchore CVE | High | libaom0-1.0.0.errata1-3+deb11u2 | 0.00056 | false | ||
| CVE-2020-0478 | Twistlock CVE | Low | aom-1.0.0.errata1-3+deb11u2 | 0.00056 | false | ||
| CVE-2025-1376 | Anchore CVE | Low | libelf1-0.183-1 | 0.00055 | false | ||
| CVE-2025-1376 | Twistlock CVE | Low | elfutils-0.183-1 | 0.00055 | false | ||
| CVE-2023-46361 | Anchore CVE | Low | libjbig2dec0-0.19-2 | 0.00054 | false | ||
| CVE-2023-46361 | Twistlock CVE | Low | jbig2dec-0.19-2 | 0.00054 | false | ||
| CVE-2023-30775 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00053 | false | ||
| CVE-2023-30775 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00053 | false | ||
| CVE-2025-7783 | Twistlock CVE | Critical | form-data-4.0.1 | See the impact section in the attached GHSA. | 0.00052 | false | |
| CVE-2023-23915 | Twistlock CVE | Medium | curl-7.74.0-1.3+deb11u15 | 0.00052 | false | ||
| CVE-2023-23915 | Anchore CVE | Medium | curl-7.74.0-1.3+deb11u15 | 0.00052 | false | ||
| CVE-2023-23915 | Anchore CVE | Medium | libcurl4-7.74.0-1.3+deb11u15 | 0.00052 | false | ||
| CVE-2023-25193 | Anchore CVE | High | libharfbuzz0b-2.7.4-1 | 0.00051 | false | ||
| CVE-2023-25193 | Twistlock CVE | Low | harfbuzz-2.7.4-1 | 0.00051 | false | ||
| CVE-2025-8277 | Twistlock CVE | Low | libssh-0.9.8-0+deb11u1 | 0.00050 | false | ||
| CVE-2025-8277 | Anchore CVE | Low | libssh-gcrypt-4-0.9.8-0+deb11u1 | 0.00050 | false | ||
| CVE-2023-50495 | Anchore CVE | Medium | libncursesw6-6.2+20201114-2+deb11u2 | 0.00050 | false | ||
| CVE-2022-1210 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00050 | false | ||
| CVE-2022-1210 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00050 | false | ||
| CVE-2022-42916 | Twistlock CVE | High | curl-7.74.0-1.3+deb11u15 | 0.00049 | false | ||
| CVE-2022-42916 | Anchore CVE | High | curl-7.74.0-1.3+deb11u15 | 0.00049 | false | ||
| CVE-2022-42916 | Anchore CVE | High | libcurl4-7.74.0-1.3+deb11u15 | 0.00049 | false | ||
| CVE-2022-36289 | Twistlock CVE | Medium | intel-mediasdk-21.1.0-1 | 0.00049 | false | ||
| CVE-2022-36289 | Anchore CVE | Medium | libmfx1-21.1.0-1 | 0.00049 | false | ||
| CVE-2022-35883 | Twistlock CVE | Medium | intel-mediasdk-21.1.0-1 | 0.00049 | false | ||
| CVE-2022-35883 | Anchore CVE | Medium | libmfx1-21.1.0-1 | 0.00049 | false | ||
| CVE-2023-39327 | Anchore CVE | Medium | libopenjp2-7-2.4.0-3+deb11u1 | 0.00048 | false | ||
| CVE-2023-39327 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00048 | false | ||
| CVE-2025-27152 | Twistlock CVE | High | axios-1.7.7 | 0.00045 | false | ||
| CVE-2025-11677 | Anchore CVE | Medium | libwebsockets16-4.0.20-2 | 0.00042 | false | ||
| CVE-2025-11677 | Twistlock CVE | Low | libwebsockets-4.0.20-2 | 0.00042 | false | ||
| CVE-2025-50952 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00040 | false | ||
| CVE-2025-50952 | Anchore CVE | Medium | libopenjp2-7-2.4.0-3+deb11u1 | 0.00040 | false | ||
| CVE-2025-5351 | Twistlock CVE | Low | libssh-0.9.8-0+deb11u1 | 0.00039 | false | ||
| CVE-2025-5351 | Anchore CVE | Medium | libssh-gcrypt-4-0.9.8-0+deb11u1 | 0.00039 | false | ||
| CVE-2013-0340 | Twistlock CVE | Low | expat-2.2.10-2+deb11u7 | 0.00037 | false | ||
| CVE-2013-0340 | Anchore CVE | Low | libexpat1-2.2.10-2+deb11u7 | 0.00037 | false | ||
| CVE-2025-1372 | Anchore CVE | Low | libelf1-0.183-1 | 0.00035 | false | ||
| CVE-2025-1372 | Twistlock CVE | Low | elfutils-0.183-1 | 0.00035 | false | ||
| CVE-2025-8961 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00034 | false | ||
| CVE-2025-8961 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00034 | false | ||
| CVE-2023-45221 | Anchore CVE | High | libmfx1-21.1.0-1 | 0.00034 | false | ||
| CVE-2023-45221 | Twistlock CVE | High | intel-mediasdk-21.1.0-1 | 0.00034 | false | ||
| CVE-2022-2476 | Twistlock CVE | Low | wavpack-5.4.0-1 | 0.00034 | false | ||
| CVE-2022-2476 | Anchore CVE | Medium | libwavpack1-5.4.0-1 | 0.00034 | false | ||
| CVE-2025-1371 | Anchore CVE | Low | libelf1-0.183-1 | 0.00033 | false | ||
| CVE-2025-1371 | Twistlock CVE | Low | elfutils-0.183-1 | 0.00033 | false | ||
| CVE-2025-1365 | Anchore CVE | Low | libelf1-0.183-1 | 0.00031 | false | ||
| CVE-2025-1365 | Twistlock CVE | Low | elfutils-0.183-1 | 0.00031 | false | ||
| CVE-2025-8534 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00030 | false | ||
| CVE-2025-8534 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00030 | false | ||
| CVE-2022-43551 | Twistlock CVE | High | curl-7.74.0-1.3+deb11u15 | 0.00030 | false | ||
| CVE-2022-43551 | Anchore CVE | High | libcurl4-7.74.0-1.3+deb11u15 | 0.00030 | false | ||
| CVE-2022-43551 | Anchore CVE | High | curl-7.74.0-1.3+deb11u15 | 0.00030 | false | ||
| CVE-2023-37769 | Anchore CVE | Low | libpixman-1-0-0.40.0-1.1~deb11u1 | 0.00029 | false | ||
| CVE-2023-37769 | Twistlock CVE | Low | pixman-0.40.0-1.1~deb11u1 | 0.00029 | false | ||
| CVE-2025-58754 | Twistlock CVE | Low | axios-1.7.7 | 0.00028 | false | ||
| CVE-2023-48727 | Anchore CVE | Low | libmfx1-21.1.0-1 | 0.00028 | false | ||
| CVE-2023-48727 | Twistlock CVE | Low | intel-mediasdk-21.1.0-1 | 0.00028 | false | ||
| CVE-2024-21808 | Anchore CVE | Low | libmfx1-21.1.0-1 | 0.00027 | false | ||
| CVE-2024-21808 | Twistlock CVE | Low | intel-mediasdk-21.1.0-1 | 0.00027 | false | ||
| CVE-2024-21783 | Anchore CVE | Low | libmfx1-21.1.0-1 | 0.00027 | false | ||
| CVE-2024-21783 | Twistlock CVE | Low | intel-mediasdk-21.1.0-1 | 0.00027 | false | ||
| CVE-2023-48368 | Anchore CVE | Medium | libmfx1-21.1.0-1 | 0.00027 | false | ||
| CVE-2023-48368 | Twistlock CVE | Medium | intel-mediasdk-21.1.0-1 | 0.00027 | false | ||
| CVE-2025-59731 | Twistlock CVE | Low | ffmpeg-7:4.3.9-0+deb11u1 | 0.00026 | false | ||
| CVE-2025-59731 | Anchore CVE | Medium | libavcodec58-7:4.3.9-0+deb11u1 | 0.00026 | false | ||
| CVE-2025-59731 | Anchore CVE | Medium | libavutil56-7:4.3.9-0+deb11u1 | 0.00026 | false | ||
| CVE-2025-59731 | Anchore CVE | Medium | libswresample3-7:4.3.9-0+deb11u1 | 0.00026 | false | ||
| CVE-2025-59731 | Anchore CVE | Medium | libswscale5-7:4.3.9-0+deb11u1 | 0.00026 | false | ||
| CVE-2025-59731 | Anchore CVE | Medium | libavformat58-7:4.3.9-0+deb11u1 | 0.00026 | false | ||
| CVE-2025-5889 | Twistlock CVE | Low | brace-expansion-1.1.11 | Im mirroring the CVE severity assessment here. | Sanitize strings being passed to the function so that they dont contain many , in a row. | 0.00026 | false |
| CVE-2025-5889 | Twistlock CVE | Low | brace-expansion-2.0.1 | Im mirroring the CVE severity assessment here. | Sanitize strings being passed to the function so that they dont contain many , in a row. | 0.00026 | false |
| CVE-2025-6141 | Anchore CVE | Low | libncursesw6-6.2+20201114-2+deb11u2 | 0.00025 | false | ||
| CVE-2024-28051 | Anchore CVE | Low | libmfx1-21.1.0-1 | 0.00025 | false | ||
| CVE-2024-28051 | Twistlock CVE | Low | intel-mediasdk-21.1.0-1 | 0.00025 | false | ||
| CVE-2023-22656 | Anchore CVE | Low | libmfx1-21.1.0-1 | 0.00025 | false | ||
| CVE-2023-22656 | Twistlock CVE | Low | intel-mediasdk-21.1.0-1 | 0.00025 | false | ||
| CVE-2025-9165 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00024 | false | ||
| CVE-2025-6965 | Twistlock CVE | Low | sqlite3-3.34.1-3+deb11u1 | 0.00024 | false | ||
| CVE-2025-6965 | Anchore CVE | Critical | libsqlite3-0-3.34.1-3+deb11u1 | 0.00024 | false | ||
| CVE-2022-33064 | Anchore CVE | High | libsndfile1-1.0.31-2+deb11u1 | 0.00023 | false | ||
| CVE-2022-33064 | Twistlock CVE | Low | libsndfile-1.0.31-2+deb11u1 | 0.00023 | false | ||
| CVE-2025-59733 | Twistlock CVE | Low | ffmpeg-7:4.3.9-0+deb11u1 | 0.00022 | false | ||
| CVE-2025-59733 | Anchore CVE | High | libavcodec58-7:4.3.9-0+deb11u1 | 0.00022 | false | ||
| CVE-2025-59733 | Anchore CVE | High | libswresample3-7:4.3.9-0+deb11u1 | 0.00022 | false | ||
| CVE-2025-59733 | Anchore CVE | High | libavformat58-7:4.3.9-0+deb11u1 | 0.00022 | false | ||
| CVE-2025-59733 | Anchore CVE | High | libavutil56-7:4.3.9-0+deb11u1 | 0.00022 | false | ||
| CVE-2025-59733 | Anchore CVE | High | libswscale5-7:4.3.9-0+deb11u1 | 0.00022 | false | ||
| CVE-2025-8851 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00021 | false | ||
| CVE-2025-8851 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00021 | false | ||
| CVE-2025-59734 | Twistlock CVE | Low | ffmpeg-7:4.3.9-0+deb11u1 | 0.00020 | false | ||
| CVE-2025-59734 | Anchore CVE | High | libavformat58-7:4.3.9-0+deb11u1 | 0.00020 | false | ||
| CVE-2025-59734 | Anchore CVE | High | libswresample3-7:4.3.9-0+deb11u1 | 0.00020 | false | ||
| CVE-2025-59734 | Anchore CVE | High | libavcodec58-7:4.3.9-0+deb11u1 | 0.00020 | false | ||
| CVE-2025-59734 | Anchore CVE | High | libavutil56-7:4.3.9-0+deb11u1 | 0.00020 | false | ||
| CVE-2025-59734 | Anchore CVE | High | libswscale5-7:4.3.9-0+deb11u1 | 0.00020 | false | ||
| CVE-2025-59732 | Twistlock CVE | Low | ffmpeg-7:4.3.9-0+deb11u1 | 0.00020 | false | ||
| CVE-2025-59732 | Anchore CVE | High | libavcodec58-7:4.3.9-0+deb11u1 | 0.00020 | false | ||
| CVE-2025-59732 | Anchore CVE | High | libswscale5-7:4.3.9-0+deb11u1 | 0.00020 | false | ||
| CVE-2025-59732 | Anchore CVE | High | libavutil56-7:4.3.9-0+deb11u1 | 0.00020 | false | ||
| CVE-2025-59732 | Anchore CVE | High | libavformat58-7:4.3.9-0+deb11u1 | 0.00020 | false | ||
| CVE-2025-59732 | Anchore CVE | High | libswresample3-7:4.3.9-0+deb11u1 | 0.00020 | false | ||
| CVE-2025-29088 | Anchore CVE | Low | libsqlite3-0-3.34.1-3+deb11u1 | 0.00020 | false | ||
| CVE-2025-29088 | Twistlock CVE | Low | sqlite3-3.34.1-3+deb11u1 | 0.00020 | false | ||
| CVE-2023-47169 | Anchore CVE | Medium | libmfx1-21.1.0-1 | 0.00020 | false | ||
| CVE-2023-47169 | Twistlock CVE | Medium | intel-mediasdk-21.1.0-1 | 0.00020 | false | ||
| CVE-2022-0563 | Anchore CVE | Low | libmount-dev-2.36.1-8+deb11u2 | 0.00020 | false | ||
| CVE-2022-0563 | Anchore CVE | Low | uuid-dev-2.36.1-8+deb11u2 | 0.00020 | false | ||
| CVE-2022-0563 | Anchore CVE | Low | libblkid-dev-2.36.1-8+deb11u2 | 0.00020 | false | ||
| CVE-2025-50422 | Twistlock CVE | Low | cairo-1.16.0-5 | 0.00019 | false | ||
| CVE-2025-50422 | Anchore CVE | Low | libcairo2-1.16.0-5 | 0.00019 | false | ||
| CVE-2025-50422 | Anchore CVE | Low | libcairo-gobject2-1.16.0-5 | 0.00019 | false | ||
| CVE-2023-52426 | Twistlock CVE | Low | expat-2.2.10-2+deb11u7 | 0.00019 | false | ||
| CVE-2023-52426 | Anchore CVE | Low | libexpat1-2.2.10-2+deb11u7 | 0.00019 | false | ||
| CVE-2023-38560 | Twistlock CVE | Low | ghostscript-9.53.3~dfsg-7+deb11u11 | 0.00019 | false | ||
| CVE-2023-38560 | Anchore CVE | Low | libgs9-9.53.3~dfsg-7+deb11u11 | 0.00019 | false | ||
| CVE-2023-38560 | Anchore CVE | Low | ghostscript-9.53.3~dfsg-7+deb11u11 | 0.00019 | false | ||
| CVE-2023-38560 | Anchore CVE | Low | libgs9-common-9.53.3~dfsg-7+deb11u11 | 0.00019 | false | ||
| CVE-2021-33294 | Twistlock CVE | Low | elfutils-0.183-1 | 0.00019 | false | ||
| CVE-2021-33294 | Anchore CVE | Low | libelf1-0.183-1 | 0.00019 | false | ||
| CVE-2025-8114 | Anchore CVE | Medium | libssh-gcrypt-4-0.9.8-0+deb11u1 | 0.00018 | false | ||
| CVE-2025-8114 | Twistlock CVE | Low | libssh-0.9.8-0+deb11u1 | 0.00018 | false | ||
| CVE-2025-4878 | Twistlock CVE | Low | libssh-0.9.8-0+deb11u1 | 0.00018 | false | ||
| CVE-2025-4878 | Anchore CVE | Low | libssh-gcrypt-4-0.9.8-0+deb11u1 | 0.00018 | false | ||
| CVE-2025-8177 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00017 | false | ||
| CVE-2025-8177 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00017 | false | ||
| CVE-2025-8176 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00017 | false | ||
| CVE-2025-8176 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00017 | false | ||
| CVE-2023-1916 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00017 | false | ||
| CVE-2023-1916 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00017 | false | ||
| CVE-2025-59801 | Twistlock CVE | Low | ghostscript-9.53.3~dfsg-7+deb11u11 | 0.00016 | false | ||
| CVE-2025-59801 | Anchore CVE | Low | libgs9-9.53.3~dfsg-7+deb11u11 | 0.00016 | false | ||
| CVE-2025-59801 | Anchore CVE | Low | libgs9-common-9.53.3~dfsg-7+deb11u11 | 0.00016 | false | ||
| CVE-2025-59801 | Anchore CVE | Low | ghostscript-9.53.3~dfsg-7+deb11u11 | 0.00016 | false | ||
| CVE-2025-4877 | Twistlock CVE | Low | libssh-0.9.8-0+deb11u1 | 0.00016 | false | ||
| CVE-2025-4877 | Anchore CVE | Medium | libssh-gcrypt-4-0.9.8-0+deb11u1 | 0.00016 | false | ||
| CVE-2025-11678 | Anchore CVE | High | libwebsockets16-4.0.20-2 | 0.00016 | false | ||
| CVE-2025-11678 | Twistlock CVE | Low | libwebsockets-4.0.20-2 | 0.00016 | false | ||
| CVE-2023-6228 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00016 | false | ||
| CVE-2023-6228 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00016 | false | ||
| CVE-2023-47282 | Anchore CVE | Low | libmfx1-21.1.0-1 | 0.00016 | false | ||
| CVE-2023-47282 | Twistlock CVE | Low | intel-mediasdk-21.1.0-1 | 0.00016 | false | ||
| CVE-2024-28030 | Anchore CVE | Low | libmfx1-21.1.0-1 | 0.00015 | false | ||
| CVE-2024-28030 | Twistlock CVE | Low | intel-mediasdk-21.1.0-1 | 0.00015 | false | ||
| CVE-2024-25260 | Anchore CVE | Low | libelf1-0.183-1 | 0.00014 | false | ||
| CVE-2024-25260 | Twistlock CVE | Low | elfutils-0.183-1 | 0.00014 | false | ||
| CVE-2025-59800 | Twistlock CVE | Low | ghostscript-9.53.3~dfsg-7+deb11u11 | 0.00013 | false | ||
| CVE-2025-59800 | Anchore CVE | Low | libgs9-common-9.53.3~dfsg-7+deb11u11 | 0.00013 | false | ||
| CVE-2025-59800 | Anchore CVE | Low | ghostscript-9.53.3~dfsg-7+deb11u11 | 0.00013 | false | ||
| CVE-2025-59800 | Anchore CVE | Low | libgs9-9.53.3~dfsg-7+deb11u11 | 0.00013 | false | ||
| CVE-2025-4516 | Twistlock CVE | Low | python3.9-3.9.2-1+deb11u3 | 0.00013 | false | ||
| CVE-2025-4516 | Anchore CVE | Low | python3.9-3.9.2-1+deb11u3 | 0.00013 | false | ||
| CVE-2025-4516 | Anchore CVE | Low | libpython3.9-minimal-3.9.2-1+deb11u3 | 0.00013 | false | ||
| CVE-2025-4516 | Anchore CVE | Low | libpython3.9-stdlib-3.9.2-1+deb11u3 | 0.00013 | false | ||
| CVE-2025-4516 | Anchore CVE | Low | python3.9-minimal-3.9.2-1+deb11u3 | 0.00013 | false | ||
| CVE-2023-39328 | Anchore CVE | Medium | libopenjp2-7-2.4.0-3+deb11u1 | 0.00013 | false | ||
| CVE-2023-39328 | Twistlock CVE | Low | openjpeg2-2.4.0-3+deb11u1 | 0.00013 | false | ||
| CVE-2022-40090 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00012 | false | ||
| CVE-2022-40090 | Anchore CVE | Medium | libtiff5-4.2.0-1+deb11u7 | 0.00012 | false | ||
| CVE-2025-8058 | Anchore CVE | Medium | libc6-dev-2.31-13+deb11u13 | 0.00010 | false | ||
| CVE-2025-8058 | Anchore CVE | Medium | libc-dev-bin-2.31-13+deb11u13 | 0.00010 | false | ||
| CVE-2023-3164 | Twistlock CVE | Low | tiff-4.2.0-1+deb11u7 | 0.00010 | false | ||
| CVE-2023-3164 | Anchore CVE | Low | libtiff5-4.2.0-1+deb11u7 | 0.00010 | false | ||
| CVE-2025-40909 | Anchore CVE | Medium | perl-modules-5.32-5.32.1-4+deb11u4 | 0.00009 | false | ||
| CVE-2025-40909 | Anchore CVE | Medium | perl-5.32.1-4+deb11u4 | 0.00009 | false | ||
| CVE-2025-40909 | Anchore CVE | Medium | libperl5.32-5.32.1-4+deb11u4 | 0.00009 | false | ||
| CVE-2025-8732 | Anchore CVE | Low | libxml2-2.9.10+dfsg-6.7+deb11u9 | 0.00008 | false | ||
| CVE-2025-48708 | Twistlock CVE | Low | ghostscript-9.53.3~dfsg-7+deb11u11 | 0.00004 | false | ||
| CVE-2025-48708 | Anchore CVE | Low | libgs9-9.53.3~dfsg-7+deb11u11 | 0.00004 | false | ||
| CVE-2025-48708 | Anchore CVE | Low | ghostscript-9.53.3~dfsg-7+deb11u11 | 0.00004 | false | ||
| CVE-2025-48708 | Anchore CVE | Low | libgs9-common-9.53.3~dfsg-7+deb11u11 | 0.00004 | false | ||
| CVE-2025-7700 | Twistlock CVE | Low | ffmpeg-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-7700 | Anchore CVE | Low | libswscale5-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-7700 | Anchore CVE | Low | libswresample3-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-7700 | Anchore CVE | Low | libavutil56-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-7700 | Anchore CVE | Low | libavcodec58-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-7700 | Anchore CVE | Low | libavformat58-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-6075 | Anchore CVE | Low | libpython3.9-stdlib-3.9.2-1+deb11u3 | N/A | false | ||
| CVE-2025-6075 | Anchore CVE | Low | python3.9-3.9.2-1+deb11u3 | N/A | false | ||
| CVE-2025-6075 | Anchore CVE | Low | libpython3.9-minimal-3.9.2-1+deb11u3 | N/A | false | ||
| CVE-2025-6075 | Anchore CVE | Low | python3.9-minimal-3.9.2-1+deb11u3 | N/A | false | ||
| CVE-2025-6075 | Twistlock CVE | Low | python3.9-3.9.2-1+deb11u3 | N/A | false | ||
| CVE-2025-52099 | Twistlock CVE | Low | sqlite3-3.34.1-3+deb11u1 | N/A | false | ||
| CVE-2025-52099 | Anchore CVE | Low | libsqlite3-0-3.34.1-3+deb11u1 | N/A | false | ||
| CVE-2025-12343 | Twistlock CVE | Low | ffmpeg-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-12343 | Anchore CVE | Low | libswscale5-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-12343 | Anchore CVE | Low | libavformat58-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-12343 | Anchore CVE | Low | libavutil56-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-12343 | Anchore CVE | Low | libavcodec58-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-12343 | Anchore CVE | Low | libswresample3-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-10256 | Twistlock CVE | Low | ffmpeg-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-10256 | Anchore CVE | Low | libavcodec58-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-10256 | Anchore CVE | Low | libavformat58-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-10256 | Anchore CVE | Low | libswscale5-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-10256 | Anchore CVE | Low | libswresample3-7:4.3.9-0+deb11u1 | N/A | false | ||
| CVE-2025-10256 | Anchore CVE | Low | libavutil56-7:4.3.9-0+deb11u1 | N/A | false | ||
| GHSA-v6h2-p8h4-qcjw | Anchore CVE | Low | brace-expansion-2.0.1 | N/A | N/A | ||
| GHSA-v6h2-p8h4-qcjw | Anchore CVE | Low | brace-expansion-1.1.11 | N/A | N/A | ||
| GHSA-rhx6-c78j-4q9w | Anchore CVE | High | path-to-regexp-0.1.10 | N/A | N/A | ||
| GHSA-jr5f-v2jv-69x6 | Anchore CVE | High | axios-1.7.7 | N/A | N/A | ||
| GHSA-fjxv-7rqg-78g4 | Anchore CVE | Critical | form-data-4.0.1 | N/A | N/A | ||
| GHSA-4hjh-wcwx-xvwj | Anchore CVE | High | axios-1.7.7 | N/A | N/A | ||
| 8e163263cda4bd745af2e34598d058fe | Anchore Compliance | Low | N/A | N/A |
More information can be found in the VAT located here: https://vat.dso.mil/vat/image?imageName=kasm/workspaces/guac&tag=1.16.1&branch=master
Tasks
Contributor:
-
Apply the StatusReview label to this issue for a merge request reviewand wait for feedback
OR
-
Provide justifications for findings in the VAT (docs) -
Apply the StatusVerification label to this issue for a VAT justifications reviewand wait for feedback
Iron Bank:
-
Review findings and justifications
Note: If the above process is rejected for any reason, the
RevieworVerificationlabel will be removed and the issue will be sent back toTo-Do. Any comments will be listed in this issue for you to address. Once they have been addressed, you must re-add theRevieworVerificationlabel.
Questions?
Contact the Iron Bank team by commenting on this issue with your questions or concerns. If you do not receive a response, add /cc @ironbank-notifications/onboarding.
Additionally, Iron Bank hosts an AMA working session every Wednesday from 1630-1730EST to answer questions.
Edited by CHORE_TOKEN