Skip to content

dockerhub.hi.inet evolved 5g validation umacsicnetapp umacsicnetapp services_redis_1

Evolved5G edited this page Sep 20, 2023 · 3 revisions

Scan of image: dockerhub.hi.inet/evolved-5g/validation/umacsicnetapp/umacsicnetapp-services_redis_1


Summary

Severity Number of vulnerabilities
CRITICAL 3
MEDIUM 6

Vulnerabilities

Severity ID Title PkgName InstalledVersion FixedVersion
CRITICAL CVE-2022-48174 stack overflow vulnerability in ash.c leads to arbitrary code execution busybox 1.36.1-r0 1.36.1-r1
CRITICAL CVE-2022-48174 stack overflow vulnerability in ash.c leads to arbitrary code execution busybox-binsh 1.36.1-r0 1.36.1-r1
CRITICAL CVE-2022-48174 stack overflow vulnerability in ash.c leads to arbitrary code execution ssl_client 1.36.1-r0 1.36.1-r1
MEDIUM CVE-2023-2975 AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries libcrypto3 3.1.1-r1 3.1.1-r2
MEDIUM CVE-2023-3446 Excessive time spent checking DH keys and parameters libcrypto3 3.1.1-r1 3.1.1-r3
MEDIUM CVE-2023-3817 Excessive time spent checking DH q parameter value libcrypto3 3.1.1-r1 3.1.2-r0
MEDIUM CVE-2023-2975 AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries libssl3 3.1.1-r1 3.1.1-r2
MEDIUM CVE-2023-3446 Excessive time spent checking DH keys and parameters libssl3 3.1.1-r1 3.1.1-r3
MEDIUM CVE-2023-3817 Excessive time spent checking DH q parameter value libssl3 3.1.1-r1 3.1.2-r0

Date: 2023-09-20