Scanner: Docker Scout
Critical vulnerabilities: 0
High vulnerabilities: 0
Medium vulnerabilities: 9
Critical
No critical vulnerabilities found.
High
No high vulnerabilities found.
Medium
| CVE | Package | Installed | Fixed | Description |
|---|---|---|---|---|
| CVE-2026-25934 | v5 | 5.16.2 | 5.16.5 | CVE-2026-25934: Improper Validation of Integrity Check Value |
| CVE-2026-25645 | requests | 2.32.5 | 2.33.0 | CVE-2026-25645: Insecure Temporary File |
| CVE-2026-41506 | v5 | 5.16.2 | 5.18.0 | CVE-2026-41506: Insufficiently Protected Credentials |
| CVE-2026-34165 | v5 | 5.16.2 | 5.17.1 | CVE-2026-34165: Integer Underflow (Wrap or Wraparound) |
| CVE-2023-49092 | rsa | 0.9.10 | not fixed | CVE-2023-49092 |
| CVE-2025-1386 | ch-go | 0.61.5 | 0.65.0 | CVE-2025-1386: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') |
| GHSA-xmrv-pmrh-hhx2 | eventstream | 1.6.10 | 1.7.8 | GHSA-xmrv-pmrh-hhx2: Improper Input Validation |
| GHSA-xmrv-pmrh-hhx2 | eventstream | 1.6.10 | 1.7.8 | GHSA-xmrv-pmrh-hhx2: Improper Input Validation |
| GHSA-fp55-jw48-c537 | astral-tokio-tar | 0.6.0 | 0.6.1 | GHSA-fp55-jw48-c537: Improper Input Validation |