High/Critical Vulnerabilities Found on latest build #8
Description
backend-node-service:latest (alpine 3.20.0) - Trivy Report - 2025-01-07 15:39:29.786701178 +0000 UTC m=+8.406781293
| alpine | |||||
|---|---|---|---|---|---|
| No Vulnerabilities found | |||||
| No Misconfigurations found | |||||
| node-pkg | |||||
| Package | Vulnerability ID | Severity | Installed Version | Fixed Version | Links |
| cross-spawn | CVE-2024-21538 | HIGH | 7.0.3 | 7.0.5, 6.0.6 | https://access.redhat.com/security/cve/CVE-2024-21538 https://github.com/moxystudio/node-cross-spawn moxystudio/node-cross-spawn@5ff3a07 moxystudio/node-cross-spawn@640d391 moxystudio/node-cross-spawn@d35c865 moxystudio/node-cross-spawn#165 moxystudio/node-cross-spawn#160 https://nvd.nist.gov/vuln/detail/CVE-2024-21538 https://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-8366349 https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230 https://www.cve.org/CVERecord?id=CVE-2024-21538 |
| No Misconfigurations found | |||||