Skip to content

registry.hub.docker.com/governmentpaas/cf-cli (alpine 3.16.5)

Trivy Image Scan

  • Image: registry.hub.docker.com/governmentpaas/cf-cli (alpine 3.16.5)
  • Scan date: 2024-07-25

registry.hub.docker.com/governmentpaas/cf-cli (alpine 3.16.5) (alpine)

Package Vulnerability ID Severity Installed Version Fixed Version Links
busybox CVE-2023-42366 MEDIUM 1.35.0-r17 1.35.0-r18
expat CVE-2024-28757 HIGH 2.6.0-r0 2.6.2-r0
libproc CVE-2023-4016 LOW 3.3.17-r1 3.3.17-r2
ncurses-libs CVE-2023-29491 HIGH 6.3_p20220521-r0 6.3_p20220521-r1
ncurses-terminfo-base CVE-2023-29491 HIGH 6.3_p20220521-r0 6.3_p20220521-r1
procps CVE-2023-4016 LOW 3.3.17-r1 3.3.17-r2
ssl_client CVE-2023-42366 MEDIUM 1.35.0-r17 1.35.0-r18
No Misconfigurations found

Ruby (gemspec)

Package Vulnerability ID Severity Installed Version Fixed Version Links
rdoc CVE-2024-27281 MEDIUM 6.4.0 ~> 6.3.4, >= 6.3.4.1, ~> 6.4.1, >= 6.4.1.1, >= 6.5.1.1
rexml CVE-2024-35176 MEDIUM 3.2.5 >= 3.2.7
rexml CVE-2024-39908 MEDIUM 3.2.5 >= 3.3.2
stringio CVE-2024-27280 CRITICAL 3.0.1 >= 3.0.1.1
uri CVE-2023-36617 MEDIUM 0.12.1 ~> 0.10.0.3, ~> 0.10.3, ~> 0.11.2, >= 0.12.2
No Misconfigurations found

usr/local/bin/cf8 (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
github.com/cyphar/filepath-securejoin GHSA-6xv5-86q9-7xr8 MEDIUM v0.2.1 0.2.4
github.com/docker/distribution CVE-2023-2253 HIGH v2.8.0+incompatible 2.8.2-beta.1
golang.org/x/crypto CVE-2023-48795 MEDIUM v0.8.0 0.17.0
golang.org/x/net CVE-2023-39325 HIGH v0.9.0 0.17.0
golang.org/x/net CVE-2023-3978 MEDIUM v0.9.0 0.13.0
golang.org/x/net CVE-2023-44487 MEDIUM v0.9.0 0.17.0
golang.org/x/net CVE-2023-45288 MEDIUM v0.9.0 0.23.0
google.golang.org/grpc GHSA-m425-mq94-257g HIGH v1.41.0 1.56.3, 1.57.1, 1.58.3
google.golang.org/grpc CVE-2023-44487 MEDIUM v1.41.0 1.58.3, 1.57.1, 1.56.3
google.golang.org/protobuf CVE-2024-24786 MEDIUM v1.30.0 1.33.0
stdlib CVE-2024-24790 CRITICAL 1.20.5 1.21.11, 1.22.4
stdlib CVE-2023-39325 HIGH 1.20.5 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.5 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.5 1.21.9, 1.22.2
stdlib CVE-2023-29406 MEDIUM 1.20.5 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM 1.20.5 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.5 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.5 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.5 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.5 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.5 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.5 1.21.12, 1.22.5
No Misconfigurations found

usr/local/bin/spruce (gobinary)

Package Vulnerability ID Severity Installed Version Fixed Version Links
stdlib CVE-2023-24538 CRITICAL 1.20.2 1.19.8, 1.20.3
stdlib CVE-2023-24540 CRITICAL 1.20.2 1.19.9, 1.20.4
stdlib CVE-2024-24790 CRITICAL 1.20.2 1.21.11, 1.22.4
stdlib CVE-2023-24534 HIGH 1.20.2 1.19.8, 1.20.3
stdlib CVE-2023-24536 HIGH 1.20.2 1.19.8, 1.20.3
stdlib CVE-2023-24537 HIGH 1.20.2 1.19.8, 1.20.3
stdlib CVE-2023-24539 HIGH 1.20.2 1.19.9, 1.20.4
stdlib CVE-2023-29400 HIGH 1.20.2 1.19.9, 1.20.4
stdlib CVE-2023-29403 HIGH 1.20.2 1.19.10, 1.20.5
stdlib CVE-2023-39325 HIGH 1.20.2 1.20.10, 1.21.3
stdlib CVE-2023-45283 HIGH 1.20.2 1.20.11, 1.21.4, 1.20.12, 1.21.5
stdlib CVE-2023-45288 HIGH 1.20.2 1.21.9, 1.22.2
stdlib CVE-2023-29406 MEDIUM 1.20.2 1.19.11, 1.20.6
stdlib CVE-2023-29409 MEDIUM 1.20.2 1.19.12, 1.20.7, 1.21.0-rc.4
stdlib CVE-2023-39318 MEDIUM 1.20.2 1.20.8, 1.21.1
stdlib CVE-2023-39319 MEDIUM 1.20.2 1.20.8, 1.21.1
stdlib CVE-2023-39326 MEDIUM 1.20.2 1.20.12, 1.21.5
stdlib CVE-2023-45284 MEDIUM 1.20.2 1.20.11, 1.21.4
stdlib CVE-2023-45289 MEDIUM 1.20.2 1.21.8, 1.22.1
stdlib CVE-2023-45290 MEDIUM 1.20.2 1.21.8, 1.22.1
stdlib CVE-2024-24783 MEDIUM 1.20.2 1.21.8, 1.22.1
stdlib CVE-2024-24784 MEDIUM 1.20.2 1.21.8, 1.22.1
stdlib CVE-2024-24785 MEDIUM 1.20.2 1.21.8, 1.22.1
stdlib CVE-2024-24789 MEDIUM 1.20.2 1.21.11, 1.22.4
stdlib CVE-2024-24791 MEDIUM 1.20.2 1.21.12, 1.22.5
No Misconfigurations found