Skip to main content

enterpriseCollector Security Scan

View Release Notes
Securityv3.9.2Generated 2026-04-28 05:24:20 UTC
Critical
Clean
High
12 found
Scan Date
Apr 28, 2026

Scanner: Docker Scout

Critical vulnerabilities: 0

High vulnerabilities: 1

Medium vulnerabilities: 11

Critical

No critical vulnerabilities found.

High

CVEPackageInstalledFixedDescription
CVE-2026-34040docker28.5.2%2Bincompatiblenot fixedCVE-2026-34040: Authentication Bypass Using an Alternate Path or Channel

Medium

CVEPackageInstalledFixedDescription
CVE-2025-45582tar1.35%2Bdfsg-3build1not fixedCVE-2025-45582
CVE-2026-2219dpkg1.22.6ubuntu6.5not fixedCVE-2026-2219
CVE-2026-27456util-linux2.39.3-9ubuntu6.5not fixedCVE-2026-27456
CVE-2026-4046glibc2.39-0ubuntu8.7not fixedCVE-2026-4046
CVE-2026-4437glibc2.39-0ubuntu8.7not fixedCVE-2026-4437
CVE-2026-4438glibc2.39-0ubuntu8.7not fixedCVE-2026-4438
CVE-2026-4878libcap21%3A2.66-5ubuntu2.21:2.66-5ubuntu2.4CVE-2026-4878
CVE-2026-39882otlploghttp0.16.00.19.0CVE-2026-39882: Memory Allocation with Excessive Size Value
CVE-2026-40179prometheus0.309.2-0.20260113170727-c7bc56cf6c8f0.311.2-0.20260410083055-07c6232d159bCVE-2026-40179: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2026-5704tar1.35%2Bdfsg-3build1not fixedCVE-2026-5704
CVE-2026-33997docker28.5.2%2Bincompatiblenot fixedCVE-2026-33997: Off-by-one Error
© 2026 Dify All rights reserved.Enterprise release information is confidential. Do not distribute externally.