CVE-2021-23840 - HIGH severity - integer overflow in CipherUpdate vulnerability in libcrypto1.1

CVE-2021-3450 - HIGH severity - openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT vulnerability in libcrypto1.1

CVE-2021-23840 - HIGH severity - integer overflow in CipherUpdate vulnerability in libssl1.1

CVE-2021-3450 - HIGH severity - openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT vulnerability in libssl1.1

Invalid array length

CVE-2023-5363 - HIGH severity - openssl: Incorrect cipher key and IV length processing vulnerability in libcrypto3

CVE-2023-5363 - HIGH severity - openssl: Incorrect cipher key and IV length processing vulnerability in libssl3

CVE-2023-47108 - HIGH severity - otelgrpc DoS vulnerability due to unbound cardinality metrics vulnerability in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc

CVE-2023-39325 - HIGH severity - golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) vulnerability in golang.org/x/net

CVE-2023-47108 - HIGH severity - otelgrpc DoS vulnerability due to unbound cardinality metrics vulnerability in go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc

CVE-2023-45142 - HIGH severity - opentelemetry: DoS vulnerability in otelhttp vulnerability in go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace

CVE-2023-45142 - HIGH severity - opentelemetry: DoS vulnerability in otelhttp vulnerability in go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp

CVE-2023-5363 - HIGH severity - openssl: Incorrect cipher key and IV length processing vulnerability in libcrypto3

CVE-2023-5363 - HIGH severity - openssl: Incorrect cipher key and IV length processing vulnerability in libssl3

Container image is unhealthy. Following your desired severity threshold (HIGH), the job has been marked as failed.

Container image is unhealthy. Following your desired severity threshold (HIGH), the job has been marked as failed.

Container image is unhealthy. Following your desired severity threshold (HIGH), the job has been marked as failed.

Dockerfile not provided. Skipping sarif scan result.

CVE-2020-1971 - MEDIUM severity - openssl: EDIPARTYNAME NULL pointer de-reference vulnerability in libcrypto1.1

CVE-2021-23841 - MEDIUM severity - openssl: NULL pointer dereference in X509_issuer_and_serial_hash() vulnerability in libcrypto1.1

CVE-2021-3449 - MEDIUM severity - openssl: NULL pointer dereference in signature_algorithms processing vulnerability in libcrypto1.1

CVE-2020-1971 - MEDIUM severity - openssl: EDIPARTYNAME NULL pointer de-reference vulnerability in libssl1.1

CVE-2021-23841 - MEDIUM severity - openssl: NULL pointer dereference in X509_issuer_and_serial_hash() vulnerability in libssl1.1

CVE-2021-3449 - MEDIUM severity - openssl: NULL pointer dereference in signature_algorithms processing vulnerability in libssl1.1

CVE-2020-28928 - MEDIUM severity - In musl libc through 1.2.1, wcsnrtombs mishandles particular combinati ... vulnerability in musl

CVE-2020-28928 - MEDIUM severity - In musl libc through 1.2.1, wcsnrtombs mishandles particular combinati ... vulnerability in musl-utils

Dockerfile not provided. Skipping sarif scan result.

Dockerfile not provided. Skipping sarif scan result.

Dockerfile not provided. Skipping sarif scan result.

Dockerfile not provided. Skipping sarif scan result.

CVE-2023-5678 - MEDIUM severity - openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow vulnerability in libcrypto3

CVE-2023-5678 - MEDIUM severity - openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow vulnerability in libssl3

GHSA-6xv5-86q9-7xr8 - MEDIUM severity - SecureJoin: on windows, paths outside of the rootfs could be inadvertently produced vulnerability in github.com/cyphar/filepath-securejoin

CVE-2023-3978 - MEDIUM severity - golang.org/x/net/html: Cross site scripting vulnerability in golang.org/x/net

CVE-2023-44487 - MEDIUM severity - HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) vulnerability in golang.org/x/net

Dockerfile not provided. Skipping sarif scan result.

CVE-2023-5678 - MEDIUM severity - openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow vulnerability in libcrypto3

CVE-2023-5678 - MEDIUM severity - openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow vulnerability in libssl3

Dockerfile not provided. Skipping sarif scan result.

Dockerfile not provided. Skipping sarif scan result.

Dockerfile not provided. Skipping sarif scan result.

Dockerfile not provided. Skipping sarif scan result.

Dockerfile not provided. Skipping sarif scan result.

CVE-2021-23839 - LOW severity - openssl: incorrect SSLv2 rollback protection vulnerability in libcrypto1.1