pkg:Go/github.com/chainguard-dev/malcontent

共 6 筆 CVEMEDIUM4

✅ 檢查你的版本

所有已知漏洞

  • MEDIUM6.5CVE-2026-24845malcontent OCI image pull credential exfiltration via malicious registry token realm in github.com/chainguard-dev/malcontent
    >= 0.10.0, < 1.20.3
  • MEDIUM6.5CVE-2026-24845malcontent OCI image pull credential exfiltration via malicious registry token realm in github.com/chainguard-dev/malcontent
    from 0, < 1.20.3
  • MEDIUM5.5CVE-2026-24846malcontent vulnerable to symlink Path Traversal via handleSymlink argument confusion in archive extraction in github.com/chainguard-dev/malcontent
    >= 1.8.0, < 1.20.3
  • MEDIUM5.5CVE-2026-24846malcontent vulnerable to symlink Path Traversal via handleSymlink argument confusion in archive extraction in github.com/chainguard-dev/malcontent
    >= 1.8.0, < 1.20.3
  • CVE-2026-28407malcontent: Nested archive extraction failure can drop content from scan inputs
    from 0, < 1.21.0
  • CVE-2026-28407malcontent: Nested archive extraction failure can drop content from scan inputs
    from 0, < 1.21.0