Scanner: Docker Scout
Critical vulnerabilities: 0
High vulnerabilities: 1
Medium vulnerabilities: 11
Critical
No critical vulnerabilities found.
High
| CVE | Package | Installed | Fixed | Description |
|---|---|---|---|---|
| CVE-2026-34040 | docker | 28.5.2%2Bincompatible | not fixed | CVE-2026-34040: Authentication Bypass Using an Alternate Path or Channel |
Medium
| CVE | Package | Installed | Fixed | Description |
|---|---|---|---|---|
| CVE-2025-45582 | tar | 1.35%2Bdfsg-3build1 | not fixed | CVE-2025-45582 |
| CVE-2026-2219 | dpkg | 1.22.6ubuntu6.5 | not fixed | CVE-2026-2219 |
| CVE-2026-27456 | util-linux | 2.39.3-9ubuntu6.5 | not fixed | CVE-2026-27456 |
| CVE-2026-4046 | glibc | 2.39-0ubuntu8.7 | not fixed | CVE-2026-4046 |
| CVE-2026-4437 | glibc | 2.39-0ubuntu8.7 | not fixed | CVE-2026-4437 |
| CVE-2026-4438 | glibc | 2.39-0ubuntu8.7 | not fixed | CVE-2026-4438 |
| CVE-2026-4878 | libcap2 | 1%3A2.66-5ubuntu2.2 | 1:2.66-5ubuntu2.4 | CVE-2026-4878 |
| CVE-2026-39882 | otlploghttp | 0.16.0 | 0.19.0 | CVE-2026-39882: Memory Allocation with Excessive Size Value |
| CVE-2026-40179 | prometheus | 0.309.2-0.20260113170727-c7bc56cf6c8f | 0.311.2-0.20260410083055-07c6232d159b | CVE-2026-40179: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') |
| CVE-2026-5704 | tar | 1.35%2Bdfsg-3build1 | not fixed | CVE-2026-5704 |
| CVE-2026-33997 | docker | 28.5.2%2Bincompatible | not fixed | CVE-2026-33997: Off-by-one Error |