Scanner: Docker Scout
Critical vulnerabilities: 0
High vulnerabilities: 1
Medium vulnerabilities: 9
Critical
No critical vulnerabilities found.
High
| CVE | Package | Installed | Fixed | Description |
|---|---|---|---|---|
| CVE-2024-23342 | ecdsa | 0.19.1 | not fixed | CVE-2024-23342: Observable Discrepancy |
Medium
| CVE | Package | Installed | Fixed | Description |
|---|---|---|---|---|
| CVE-2026-3219 | pip | 26.0.1 | not fixed | CVE-2026-3219: Unrestricted Upload of File with Dangerous Type |
| CVE-2025-69872 | diskcache | 5.6.3 | not fixed | CVE-2025-69872: Deserialization of Untrusted Data |
| CVE-2022-42969 | py | 1.11.0 | not fixed | CVE-2022-42969 |
| CVE-2026-33936 | ecdsa | 0.19.1 | 0.19.2 | CVE-2026-33936: Improper Handling of Length Parameter Inconsistency |
| CVE-2026-6357 | pip | 26.0.1 | 26.1 | CVE-2026-6357: Inclusion of Functionality from Untrusted Control Sphere |
| CVE-2026-41425 | authlib | 1.6.9 | 1.6.11 | CVE-2026-41425: Cross-Site Request Forgery (CSRF) |
| CVE-2023-49092 | rsa | 0.9.10 | not fixed | CVE-2023-49092 |
| GHSA-fp55-jw48-c537 | astral-tokio-tar | 0.6.0 | 0.6.1 | GHSA-fp55-jw48-c537: Improper Input Validation |
| CVE-2025-71176 | pytest | 9.0.2 | 9.0.3 | CVE-2025-71176: Creation of Temporary File in Directory with Insecure Permissions |