{ "_class" : "io.jenkins.plugins.analysis.core.restapi.ReportApi", "issues" : [ { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-d091cc85", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-13034-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-13034 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-13034**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-13034](https://nvd.nist.gov/vuln/detail/CVE-2025-13034) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-13034-curl: : CVE-2025-13034-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-13034 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-13034**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-13034](https://nvd.nist.gov/vuln/detail/CVE-2025-13034) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2025-13034-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-3cb92521", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-14017-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-14017 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-14017**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-14017](https://nvd.nist.gov/vuln/detail/CVE-2025-14017) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-14017-curl: : CVE-2025-14017-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-14017 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-14017**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-14017](https://nvd.nist.gov/vuln/detail/CVE-2025-14017) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2025-14017-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-2e0cc1f0", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-14524-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-14524 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-14524**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-14524](https://nvd.nist.gov/vuln/detail/CVE-2025-14524) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-14524-curl: : CVE-2025-14524-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-14524 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-14524**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-14524](https://nvd.nist.gov/vuln/detail/CVE-2025-14524) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2025-14524-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-c75afff7", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-14819-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-14819 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-14819**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-14819](https://nvd.nist.gov/vuln/detail/CVE-2025-14819) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-14819-curl: : CVE-2025-14819-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-14819 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-14819**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-14819](https://nvd.nist.gov/vuln/detail/CVE-2025-14819) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2025-14819-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-d3e12996", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-15079-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-15079 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-15079**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-15079](https://nvd.nist.gov/vuln/detail/CVE-2025-15079) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-15079-curl: : CVE-2025-15079-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-15079 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-15079**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-15079](https://nvd.nist.gov/vuln/detail/CVE-2025-15079) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2025-15079-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-85ba89d9", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-15224-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-15224 low vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-15224**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-15224](https://nvd.nist.gov/vuln/detail/CVE-2025-15224) |\u000a\u000a\u000aA low vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "LOW", "toString" : "installed(1,0): CVE-2025-15224-curl: : CVE-2025-15224-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-15224 low vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-15224**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-15224](https://nvd.nist.gov/vuln/detail/CVE-2025-15224) |\u000a\u000a\u000aA low vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2025-15224-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-643fee7a", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-60876-busybox-binsh: ApkMatcherCpeMatch\u000a\u000aCVE-2025-60876 medium vulnerability for busybox-binsh package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-60876**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | busybox-binsh | 1.37.0-r30 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-60876](https://nvd.nist.gov/vuln/detail/CVE-2025-60876) |\u000a\u000a\u000aA medium vulnerability in apk package: busybox-binsh, version 1.37.0-r30 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-60876-busybox-binsh: : CVE-2025-60876-busybox-binsh: ApkMatcherCpeMatch\u000a\u000aCVE-2025-60876 medium vulnerability for busybox-binsh package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-60876**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | busybox-binsh | 1.37.0-r30 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-60876](https://nvd.nist.gov/vuln/detail/CVE-2025-60876) |\u000a\u000a\u000aA medium vulnerability in apk package: busybox-binsh, version 1.37.0-r30 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2025-60876-busybox-binsh" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-c8e3b39b", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-60876-busybox: ApkMatcherCpeMatch\u000a\u000aCVE-2025-60876 medium vulnerability for busybox package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-60876**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | busybox | 1.37.0-r30 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-60876](https://nvd.nist.gov/vuln/detail/CVE-2025-60876) |\u000a\u000a\u000aA medium vulnerability in apk package: busybox, version 1.37.0-r30 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-60876-busybox: : CVE-2025-60876-busybox: ApkMatcherCpeMatch\u000a\u000aCVE-2025-60876 medium vulnerability for busybox package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-60876**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | busybox | 1.37.0-r30 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-60876](https://nvd.nist.gov/vuln/detail/CVE-2025-60876) |\u000a\u000a\u000aA medium vulnerability in apk package: busybox, version 1.37.0-r30 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2025-60876-busybox" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-cc599489", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-60876-ssl_client: ApkMatcherCpeMatch\u000a\u000aCVE-2025-60876 medium vulnerability for ssl_client package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-60876**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | ssl_client | 1.37.0-r30 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-60876](https://nvd.nist.gov/vuln/detail/CVE-2025-60876) |\u000a\u000a\u000aA medium vulnerability in apk package: ssl_client, version 1.37.0-r30 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-60876-ssl_client: : CVE-2025-60876-ssl_client: ApkMatcherCpeMatch\u000a\u000aCVE-2025-60876 medium vulnerability for ssl_client package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-60876**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | ssl_client | 1.37.0-r30 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-60876](https://nvd.nist.gov/vuln/detail/CVE-2025-60876) |\u000a\u000a\u000aA medium vulnerability in apk package: ssl_client, version 1.37.0-r30 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2025-60876-ssl_client" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-78a1a79c", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-1965-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-1965 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-1965**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-1965](https://nvd.nist.gov/vuln/detail/CVE-2026-1965) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2026-1965-curl: : CVE-2026-1965-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-1965 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-1965**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-1965](https://nvd.nist.gov/vuln/detail/CVE-2026-1965) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-1965-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-ea13ad07", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-2673-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-2673 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-2673**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-2673](https://security.alpinelinux.org/vuln/CVE-2026-2673) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-2673-libcrypto3: : CVE-2026-2673-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-2673 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-2673**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-2673](https://security.alpinelinux.org/vuln/CVE-2026-2673) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-2673-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-41f20f9c", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-2673-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-2673 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-2673**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-2673](https://security.alpinelinux.org/vuln/CVE-2026-2673) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-2673-libssl3: : CVE-2026-2673-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-2673 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-2673**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-2673](https://security.alpinelinux.org/vuln/CVE-2026-2673) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-2673-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-4050e3c6", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-27135-nghttp2-libs: ApkMatcherCpeMatch\u000a\u000aCVE-2026-27135 high vulnerability for nghttp2-libs package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-27135**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | nghttp2-libs | 1.68.0-r0 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-27135](https://nvd.nist.gov/vuln/detail/CVE-2026-27135) |\u000a\u000a\u000aA high vulnerability in apk package: nghttp2-libs, version 1.68.0-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-27135-nghttp2-libs: : CVE-2026-27135-nghttp2-libs: ApkMatcherCpeMatch\u000a\u000aCVE-2026-27135 high vulnerability for nghttp2-libs package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-27135**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | nghttp2-libs | 1.68.0-r0 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-27135](https://nvd.nist.gov/vuln/detail/CVE-2026-27135) |\u000a\u000a\u000aA high vulnerability in apk package: nghttp2-libs, version 1.68.0-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-27135-nghttp2-libs" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-6e5095dd", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28387-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28387 low vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28387**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28387](https://security.alpinelinux.org/vuln/CVE-2026-28387) |\u000a\u000a\u000aA low vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "LOW", "toString" : "installed(1,0): CVE-2026-28387-libcrypto3: : CVE-2026-28387-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28387 low vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28387**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28387](https://security.alpinelinux.org/vuln/CVE-2026-28387) |\u000a\u000a\u000aA low vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-28387-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-6c9a8aca", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28387-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28387 low vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28387**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28387](https://security.alpinelinux.org/vuln/CVE-2026-28387) |\u000a\u000a\u000aA low vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "LOW", "toString" : "installed(1,0): CVE-2026-28387-libssl3: : CVE-2026-28387-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28387 low vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28387**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28387](https://security.alpinelinux.org/vuln/CVE-2026-28387) |\u000a\u000a\u000aA low vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-28387-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-ebe6768a", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28388-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28388 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28388**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28388](https://security.alpinelinux.org/vuln/CVE-2026-28388) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-28388-libcrypto3: : CVE-2026-28388-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28388 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28388**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28388](https://security.alpinelinux.org/vuln/CVE-2026-28388) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-28388-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-75d06cf9", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28388-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28388 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28388**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28388](https://security.alpinelinux.org/vuln/CVE-2026-28388) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-28388-libssl3: : CVE-2026-28388-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28388 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28388**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28388](https://security.alpinelinux.org/vuln/CVE-2026-28388) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-28388-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-bab78cf9", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28389-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28389 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28389**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28389](https://security.alpinelinux.org/vuln/CVE-2026-28389) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-28389-libcrypto3: : CVE-2026-28389-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28389 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28389**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28389](https://security.alpinelinux.org/vuln/CVE-2026-28389) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-28389-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-d04184ea", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28389-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28389 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28389**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28389](https://security.alpinelinux.org/vuln/CVE-2026-28389) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-28389-libssl3: : CVE-2026-28389-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28389 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28389**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28389](https://security.alpinelinux.org/vuln/CVE-2026-28389) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-28389-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-80af7a83", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28390-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28390 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28390**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28390](https://security.alpinelinux.org/vuln/CVE-2026-28390) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-28390-libcrypto3: : CVE-2026-28390-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28390 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28390**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28390](https://security.alpinelinux.org/vuln/CVE-2026-28390) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-28390-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-95f993a0", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28390-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28390 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28390**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28390](https://security.alpinelinux.org/vuln/CVE-2026-28390) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-28390-libssl3: : CVE-2026-28390-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28390 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28390**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28390](https://security.alpinelinux.org/vuln/CVE-2026-28390) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-28390-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-51ae8a0f", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-31789-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31789 low vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31789**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31789](https://security.alpinelinux.org/vuln/CVE-2026-31789) |\u000a\u000a\u000aA low vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "LOW", "toString" : "installed(1,0): CVE-2026-31789-libcrypto3: : CVE-2026-31789-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31789 low vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31789**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31789](https://security.alpinelinux.org/vuln/CVE-2026-31789) |\u000a\u000a\u000aA low vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-31789-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-8f4253d8", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-31789-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31789 low vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31789**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31789](https://security.alpinelinux.org/vuln/CVE-2026-31789) |\u000a\u000a\u000aA low vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "LOW", "toString" : "installed(1,0): CVE-2026-31789-libssl3: : CVE-2026-31789-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31789 low vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31789**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31789](https://security.alpinelinux.org/vuln/CVE-2026-31789) |\u000a\u000a\u000aA low vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-31789-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-c66b41d7", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-31790-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31790 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31790**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31790](https://security.alpinelinux.org/vuln/CVE-2026-31790) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-31790-libcrypto3: : CVE-2026-31790-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31790 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31790**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31790](https://security.alpinelinux.org/vuln/CVE-2026-31790) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-31790-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-3bf2ccc", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-31790-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31790 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31790**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31790](https://security.alpinelinux.org/vuln/CVE-2026-31790) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-31790-libssl3: : CVE-2026-31790-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31790 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31790**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31790](https://security.alpinelinux.org/vuln/CVE-2026-31790) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-31790-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-d8d472d3", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-34757-libpng: ApkMatcherExactDirectMatch\u000a\u000aCVE-2026-34757 medium vulnerability for libpng package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-34757**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | libpng | 1.6.56-r0 | 1.6.57-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-34757](https://security.alpinelinux.org/vuln/CVE-2026-34757) |\u000a\u000a\u000aA medium vulnerability in apk package: libpng, version 1.6.56-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2026-34757-libpng: : CVE-2026-34757-libpng: ApkMatcherExactDirectMatch\u000a\u000aCVE-2026-34757 medium vulnerability for libpng package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-34757**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | libpng | 1.6.56-r0 | 1.6.57-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-34757](https://security.alpinelinux.org/vuln/CVE-2026-34757) |\u000a\u000a\u000aA medium vulnerability in apk package: libpng, version 1.6.56-r0 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-34757-libpng" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-fd08a0a4", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-3783-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-3783 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-3783**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-3783](https://nvd.nist.gov/vuln/detail/CVE-2026-3783) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2026-3783-curl: : CVE-2026-3783-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-3783 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-3783**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-3783](https://nvd.nist.gov/vuln/detail/CVE-2026-3783) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-3783-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-aa4af653", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-3784-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-3784 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-3784**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-3784](https://nvd.nist.gov/vuln/detail/CVE-2026-3784) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2026-3784-curl: : CVE-2026-3784-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-3784 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-3784**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-3784](https://nvd.nist.gov/vuln/detail/CVE-2026-3784) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-3784-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-c35a5c6c", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-3805-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-3805 high vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-3805**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-3805](https://nvd.nist.gov/vuln/detail/CVE-2026-3805) |\u000a\u000a\u000aA high vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-3805-curl: : CVE-2026-3805-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-3805 high vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-3805**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-3805](https://nvd.nist.gov/vuln/detail/CVE-2026-3805) |\u000a\u000a\u000aA high vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-3805-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-c4a1f229", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-40200-musl-utils: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-40200 high vulnerability for musl-utils package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-40200**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | musl-utils | 1.2.5-r21 | 1.2.5-r23 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-40200](https://security.alpinelinux.org/vuln/CVE-2026-40200) |\u000a\u000a\u000aA high vulnerability in apk package: musl-utils, version 1.2.5-r21 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-40200-musl-utils: : CVE-2026-40200-musl-utils: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-40200 high vulnerability for musl-utils package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-40200**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | musl-utils | 1.2.5-r21 | 1.2.5-r23 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-40200](https://security.alpinelinux.org/vuln/CVE-2026-40200) |\u000a\u000a\u000aA high vulnerability in apk package: musl-utils, version 1.2.5-r21 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-40200-musl-utils" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-71b0a9c5", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-40200-musl: ApkMatcherExactDirectMatch\u000a\u000aCVE-2026-40200 high vulnerability for musl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-40200**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | musl | 1.2.5-r21 | 1.2.5-r23 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-40200](https://security.alpinelinux.org/vuln/CVE-2026-40200) |\u000a\u000a\u000aA high vulnerability in apk package: musl, version 1.2.5-r21 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-40200-musl: : CVE-2026-40200-musl: ApkMatcherExactDirectMatch\u000a\u000aCVE-2026-40200 high vulnerability for musl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-40200**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | musl | 1.2.5-r21 | 1.2.5-r23 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-40200](https://security.alpinelinux.org/vuln/CVE-2026-40200) |\u000a\u000a\u000aA high vulnerability in apk package: musl, version 1.2.5-r21 was found in image linkitaly/govway:master_batch at: /lib/apk/db/installed", "type" : "CVE-2026-40200-musl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "commons-lang-2.6.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//var/govway/batch/generatoreStatistiche/lib/commons-lang-2.6.jar", "fingerprint" : "FALLBACK-7016d195", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | commons-lang | 2.6 | | java-archive | /var/govway/batch/generatoreStatistiche/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master_batch at: /var/govway/batch/generatoreStatistiche/lib/commons-lang-2.6.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "commons-lang-2.6.jar(1,0): GHSA-j288-q9x7-2f5v-commons-lang: : GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | commons-lang | 2.6 | | java-archive | /var/govway/batch/generatoreStatistiche/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master_batch at: /var/govway/batch/generatoreStatistiche/lib/commons-lang-2.6.jar", "type" : "GHSA-j288-q9x7-2f5v-commons-lang" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.3.jar", "fingerprint" : "FALLBACK-ef08f755", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.3 | 2.25.4 | java-archive | /var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.3.jar | github:language:java | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master_batch at: /var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "log4j-core-2.25.3.jar(1,0): GHSA-3pxv-7cmr-fjr4-log4j-core: : GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.3 | 2.25.4 | java-archive | /var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.3.jar | github:language:java | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master_batch at: /var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.3.jar", "type" : "GHSA-3pxv-7cmr-fjr4-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-layout-template-json-2.25.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//var/govway/batch/generatoreStatistiche/lib/log4j-layout-template-json-2.25.3.jar", "fingerprint" : "FALLBACK-f3d2e779", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: JavaMatcherExactDirectMatch\u000a\u000aGHSA-w35j-pv5h-q9q9 medium vulnerability for log4j-layout-template-json package\u000a\u000aFor additional help see: **Vulnerability GHSA-w35j-pv5h-q9q9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-layout-template-json | 2.25.3 | 2.25.4 | java-archive | /var/govway/batch/generatoreStatistiche/lib/log4j-layout-template-json-2.25.3.jar | github:language:java | [GHSA-w35j-pv5h-q9q9](https://github.com/advisories/GHSA-w35j-pv5h-q9q9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-layout-template-json, version 2.25.3 was found in image linkitaly/govway:master_batch at: /var/govway/batch/generatoreStatistiche/lib/log4j-layout-template-json-2.25.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "log4j-layout-template-json-2.25.3.jar(1,0): GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: : GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: JavaMatcherExactDirectMatch\u000a\u000aGHSA-w35j-pv5h-q9q9 medium vulnerability for log4j-layout-template-json package\u000a\u000aFor additional help see: **Vulnerability GHSA-w35j-pv5h-q9q9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-layout-template-json | 2.25.3 | 2.25.4 | java-archive | /var/govway/batch/generatoreStatistiche/lib/log4j-layout-template-json-2.25.3.jar | github:language:java | [GHSA-w35j-pv5h-q9q9](https://github.com/advisories/GHSA-w35j-pv5h-q9q9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-layout-template-json, version 2.25.3 was found in image linkitaly/govway:master_batch at: /var/govway/batch/generatoreStatistiche/lib/log4j-layout-template-json-2.25.3.jar", "type" : "GHSA-w35j-pv5h-q9q9-log4j-layout-template-json" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-d091cc85", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-13034-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-13034 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-13034**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-13034](https://nvd.nist.gov/vuln/detail/CVE-2025-13034) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-13034-curl: : CVE-2025-13034-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-13034 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-13034**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-13034](https://nvd.nist.gov/vuln/detail/CVE-2025-13034) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2025-13034-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-3cb92521", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-14017-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-14017 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-14017**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-14017](https://nvd.nist.gov/vuln/detail/CVE-2025-14017) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-14017-curl: : CVE-2025-14017-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-14017 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-14017**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-14017](https://nvd.nist.gov/vuln/detail/CVE-2025-14017) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2025-14017-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-2e0cc1f0", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-14524-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-14524 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-14524**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-14524](https://nvd.nist.gov/vuln/detail/CVE-2025-14524) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-14524-curl: : CVE-2025-14524-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-14524 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-14524**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-14524](https://nvd.nist.gov/vuln/detail/CVE-2025-14524) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2025-14524-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-c75afff7", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-14819-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-14819 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-14819**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-14819](https://nvd.nist.gov/vuln/detail/CVE-2025-14819) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-14819-curl: : CVE-2025-14819-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-14819 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-14819**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-14819](https://nvd.nist.gov/vuln/detail/CVE-2025-14819) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2025-14819-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-d3e12996", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-15079-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-15079 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-15079**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-15079](https://nvd.nist.gov/vuln/detail/CVE-2025-15079) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-15079-curl: : CVE-2025-15079-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-15079 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-15079**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-15079](https://nvd.nist.gov/vuln/detail/CVE-2025-15079) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2025-15079-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-85ba89d9", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-15224-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-15224 low vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-15224**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-15224](https://nvd.nist.gov/vuln/detail/CVE-2025-15224) |\u000a\u000a\u000aA low vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "LOW", "toString" : "installed(1,0): CVE-2025-15224-curl: : CVE-2025-15224-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2025-15224 low vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-15224**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-15224](https://nvd.nist.gov/vuln/detail/CVE-2025-15224) |\u000a\u000a\u000aA low vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2025-15224-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-643fee7a", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-60876-busybox-binsh: ApkMatcherCpeMatch\u000a\u000aCVE-2025-60876 medium vulnerability for busybox-binsh package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-60876**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | busybox-binsh | 1.37.0-r30 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-60876](https://nvd.nist.gov/vuln/detail/CVE-2025-60876) |\u000a\u000a\u000aA medium vulnerability in apk package: busybox-binsh, version 1.37.0-r30 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-60876-busybox-binsh: : CVE-2025-60876-busybox-binsh: ApkMatcherCpeMatch\u000a\u000aCVE-2025-60876 medium vulnerability for busybox-binsh package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-60876**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | busybox-binsh | 1.37.0-r30 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-60876](https://nvd.nist.gov/vuln/detail/CVE-2025-60876) |\u000a\u000a\u000aA medium vulnerability in apk package: busybox-binsh, version 1.37.0-r30 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2025-60876-busybox-binsh" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-c8e3b39b", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-60876-busybox: ApkMatcherCpeMatch\u000a\u000aCVE-2025-60876 medium vulnerability for busybox package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-60876**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | busybox | 1.37.0-r30 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-60876](https://nvd.nist.gov/vuln/detail/CVE-2025-60876) |\u000a\u000a\u000aA medium vulnerability in apk package: busybox, version 1.37.0-r30 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-60876-busybox: : CVE-2025-60876-busybox: ApkMatcherCpeMatch\u000a\u000aCVE-2025-60876 medium vulnerability for busybox package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-60876**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | busybox | 1.37.0-r30 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-60876](https://nvd.nist.gov/vuln/detail/CVE-2025-60876) |\u000a\u000a\u000aA medium vulnerability in apk package: busybox, version 1.37.0-r30 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2025-60876-busybox" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-cc599489", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2025-60876-ssl_client: ApkMatcherCpeMatch\u000a\u000aCVE-2025-60876 medium vulnerability for ssl_client package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-60876**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | ssl_client | 1.37.0-r30 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-60876](https://nvd.nist.gov/vuln/detail/CVE-2025-60876) |\u000a\u000a\u000aA medium vulnerability in apk package: ssl_client, version 1.37.0-r30 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2025-60876-ssl_client: : CVE-2025-60876-ssl_client: ApkMatcherCpeMatch\u000a\u000aCVE-2025-60876 medium vulnerability for ssl_client package\u000a\u000aFor additional help see: **Vulnerability CVE-2025-60876**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | ssl_client | 1.37.0-r30 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2025-60876](https://nvd.nist.gov/vuln/detail/CVE-2025-60876) |\u000a\u000a\u000aA medium vulnerability in apk package: ssl_client, version 1.37.0-r30 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2025-60876-ssl_client" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-78a1a79c", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-1965-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-1965 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-1965**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-1965](https://nvd.nist.gov/vuln/detail/CVE-2026-1965) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2026-1965-curl: : CVE-2026-1965-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-1965 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-1965**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-1965](https://nvd.nist.gov/vuln/detail/CVE-2026-1965) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-1965-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-ea13ad07", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-2673-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-2673 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-2673**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-2673](https://security.alpinelinux.org/vuln/CVE-2026-2673) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-2673-libcrypto3: : CVE-2026-2673-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-2673 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-2673**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-2673](https://security.alpinelinux.org/vuln/CVE-2026-2673) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-2673-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-41f20f9c", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-2673-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-2673 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-2673**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-2673](https://security.alpinelinux.org/vuln/CVE-2026-2673) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-2673-libssl3: : CVE-2026-2673-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-2673 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-2673**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-2673](https://security.alpinelinux.org/vuln/CVE-2026-2673) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-2673-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-4050e3c6", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-27135-nghttp2-libs: ApkMatcherCpeMatch\u000a\u000aCVE-2026-27135 high vulnerability for nghttp2-libs package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-27135**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | nghttp2-libs | 1.68.0-r0 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-27135](https://nvd.nist.gov/vuln/detail/CVE-2026-27135) |\u000a\u000a\u000aA high vulnerability in apk package: nghttp2-libs, version 1.68.0-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-27135-nghttp2-libs: : CVE-2026-27135-nghttp2-libs: ApkMatcherCpeMatch\u000a\u000aCVE-2026-27135 high vulnerability for nghttp2-libs package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-27135**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | nghttp2-libs | 1.68.0-r0 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-27135](https://nvd.nist.gov/vuln/detail/CVE-2026-27135) |\u000a\u000a\u000aA high vulnerability in apk package: nghttp2-libs, version 1.68.0-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-27135-nghttp2-libs" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-6e5095dd", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28387-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28387 low vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28387**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28387](https://security.alpinelinux.org/vuln/CVE-2026-28387) |\u000a\u000a\u000aA low vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "LOW", "toString" : "installed(1,0): CVE-2026-28387-libcrypto3: : CVE-2026-28387-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28387 low vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28387**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28387](https://security.alpinelinux.org/vuln/CVE-2026-28387) |\u000a\u000a\u000aA low vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-28387-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-6c9a8aca", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28387-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28387 low vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28387**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28387](https://security.alpinelinux.org/vuln/CVE-2026-28387) |\u000a\u000a\u000aA low vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "LOW", "toString" : "installed(1,0): CVE-2026-28387-libssl3: : CVE-2026-28387-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28387 low vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28387**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28387](https://security.alpinelinux.org/vuln/CVE-2026-28387) |\u000a\u000a\u000aA low vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-28387-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-ebe6768a", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28388-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28388 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28388**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28388](https://security.alpinelinux.org/vuln/CVE-2026-28388) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-28388-libcrypto3: : CVE-2026-28388-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28388 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28388**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28388](https://security.alpinelinux.org/vuln/CVE-2026-28388) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-28388-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-75d06cf9", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28388-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28388 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28388**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28388](https://security.alpinelinux.org/vuln/CVE-2026-28388) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-28388-libssl3: : CVE-2026-28388-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28388 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28388**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28388](https://security.alpinelinux.org/vuln/CVE-2026-28388) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-28388-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-bab78cf9", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28389-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28389 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28389**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28389](https://security.alpinelinux.org/vuln/CVE-2026-28389) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-28389-libcrypto3: : CVE-2026-28389-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28389 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28389**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28389](https://security.alpinelinux.org/vuln/CVE-2026-28389) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-28389-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-d04184ea", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28389-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28389 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28389**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28389](https://security.alpinelinux.org/vuln/CVE-2026-28389) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-28389-libssl3: : CVE-2026-28389-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28389 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28389**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28389](https://security.alpinelinux.org/vuln/CVE-2026-28389) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-28389-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-80af7a83", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28390-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28390 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28390**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28390](https://security.alpinelinux.org/vuln/CVE-2026-28390) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-28390-libcrypto3: : CVE-2026-28390-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28390 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28390**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28390](https://security.alpinelinux.org/vuln/CVE-2026-28390) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-28390-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-95f993a0", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-28390-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28390 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28390**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28390](https://security.alpinelinux.org/vuln/CVE-2026-28390) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-28390-libssl3: : CVE-2026-28390-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-28390 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-28390**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-28390](https://security.alpinelinux.org/vuln/CVE-2026-28390) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-28390-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-51ae8a0f", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-31789-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31789 low vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31789**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31789](https://security.alpinelinux.org/vuln/CVE-2026-31789) |\u000a\u000a\u000aA low vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "LOW", "toString" : "installed(1,0): CVE-2026-31789-libcrypto3: : CVE-2026-31789-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31789 low vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31789**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31789](https://security.alpinelinux.org/vuln/CVE-2026-31789) |\u000a\u000a\u000aA low vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-31789-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-8f4253d8", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-31789-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31789 low vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31789**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31789](https://security.alpinelinux.org/vuln/CVE-2026-31789) |\u000a\u000a\u000aA low vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "LOW", "toString" : "installed(1,0): CVE-2026-31789-libssl3: : CVE-2026-31789-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31789 low vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31789**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| low | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31789](https://security.alpinelinux.org/vuln/CVE-2026-31789) |\u000a\u000a\u000aA low vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-31789-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-c66b41d7", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-31790-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31790 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31790**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31790](https://security.alpinelinux.org/vuln/CVE-2026-31790) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-31790-libcrypto3: : CVE-2026-31790-libcrypto3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31790 high vulnerability for libcrypto3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31790**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libcrypto3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31790](https://security.alpinelinux.org/vuln/CVE-2026-31790) |\u000a\u000a\u000aA high vulnerability in apk package: libcrypto3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-31790-libcrypto3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-3bf2ccc", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-31790-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31790 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31790**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31790](https://security.alpinelinux.org/vuln/CVE-2026-31790) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-31790-libssl3: : CVE-2026-31790-libssl3: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-31790 high vulnerability for libssl3 package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-31790**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | libssl3 | 3.5.5-r0 | 3.5.6-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-31790](https://security.alpinelinux.org/vuln/CVE-2026-31790) |\u000a\u000a\u000aA high vulnerability in apk package: libssl3, version 3.5.5-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-31790-libssl3" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-d8d472d3", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-34757-libpng: ApkMatcherExactDirectMatch\u000a\u000aCVE-2026-34757 medium vulnerability for libpng package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-34757**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | libpng | 1.6.56-r0 | 1.6.57-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-34757](https://security.alpinelinux.org/vuln/CVE-2026-34757) |\u000a\u000a\u000aA medium vulnerability in apk package: libpng, version 1.6.56-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2026-34757-libpng: : CVE-2026-34757-libpng: ApkMatcherExactDirectMatch\u000a\u000aCVE-2026-34757 medium vulnerability for libpng package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-34757**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | libpng | 1.6.56-r0 | 1.6.57-r0 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-34757](https://security.alpinelinux.org/vuln/CVE-2026-34757) |\u000a\u000a\u000aA medium vulnerability in apk package: libpng, version 1.6.56-r0 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-34757-libpng" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-fd08a0a4", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-3783-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-3783 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-3783**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-3783](https://nvd.nist.gov/vuln/detail/CVE-2026-3783) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2026-3783-curl: : CVE-2026-3783-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-3783 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-3783**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-3783](https://nvd.nist.gov/vuln/detail/CVE-2026-3783) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-3783-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-aa4af653", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-3784-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-3784 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-3784**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-3784](https://nvd.nist.gov/vuln/detail/CVE-2026-3784) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "installed(1,0): CVE-2026-3784-curl: : CVE-2026-3784-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-3784 medium vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-3784**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-3784](https://nvd.nist.gov/vuln/detail/CVE-2026-3784) |\u000a\u000a\u000aA medium vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-3784-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-c35a5c6c", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-3805-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-3805 high vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-3805**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-3805](https://nvd.nist.gov/vuln/detail/CVE-2026-3805) |\u000a\u000a\u000aA high vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-3805-curl: : CVE-2026-3805-curl: ApkMatcherCpeMatch\u000a\u000aCVE-2026-3805 high vulnerability for curl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-3805**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | curl | 8.17.0-r1 | | apk | /lib/apk/db/installed | nvd:cpe | [CVE-2026-3805](https://nvd.nist.gov/vuln/detail/CVE-2026-3805) |\u000a\u000a\u000aA high vulnerability in apk package: curl, version 8.17.0-r1 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-3805-curl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-c4a1f229", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-40200-musl-utils: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-40200 high vulnerability for musl-utils package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-40200**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | musl-utils | 1.2.5-r21 | 1.2.5-r23 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-40200](https://security.alpinelinux.org/vuln/CVE-2026-40200) |\u000a\u000a\u000aA high vulnerability in apk package: musl-utils, version 1.2.5-r21 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-40200-musl-utils: : CVE-2026-40200-musl-utils: ApkMatcherExactIndirectMatch\u000a\u000aCVE-2026-40200 high vulnerability for musl-utils package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-40200**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | musl-utils | 1.2.5-r21 | 1.2.5-r23 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-40200](https://security.alpinelinux.org/vuln/CVE-2026-40200) |\u000a\u000a\u000aA high vulnerability in apk package: musl-utils, version 1.2.5-r21 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-40200-musl-utils" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "installed", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//lib/apk/db/installed", "fingerprint" : "FALLBACK-71b0a9c5", "lineEnd" : 1, "lineStart" : 1, "message" : "CVE-2026-40200-musl: ApkMatcherExactDirectMatch\u000a\u000aCVE-2026-40200 high vulnerability for musl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-40200**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | musl | 1.2.5-r21 | 1.2.5-r23 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-40200](https://security.alpinelinux.org/vuln/CVE-2026-40200) |\u000a\u000a\u000aA high vulnerability in apk package: musl, version 1.2.5-r21 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "installed(1,0): CVE-2026-40200-musl: : CVE-2026-40200-musl: ApkMatcherExactDirectMatch\u000a\u000aCVE-2026-40200 high vulnerability for musl package\u000a\u000aFor additional help see: **Vulnerability CVE-2026-40200**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | musl | 1.2.5-r21 | 1.2.5-r23 | apk | /lib/apk/db/installed | alpine:distro:alpine:3.23 | [CVE-2026-40200](https://security.alpinelinux.org/vuln/CVE-2026-40200) |\u000a\u000a\u000aA high vulnerability in apk package: musl, version 1.2.5-r21 was found in image linkitaly/govway:master at: /lib/apk/db/installed", "type" : "CVE-2026-40200-musl" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "commons-lang-2.6.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govway.war:WEB-INF/lib/commons-lang-2.6.jar", "fingerprint" : "FALLBACK-7016d195", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | commons-lang | 2.6 | | java-archive | /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/commons-lang-2.6.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "commons-lang-2.6.jar(1,0): GHSA-j288-q9x7-2f5v-commons-lang: : GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | commons-lang | 2.6 | | java-archive | /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/commons-lang-2.6.jar", "type" : "GHSA-j288-q9x7-2f5v-commons-lang" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "hazelcast-5.3.8.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govway.war:WEB-INF/lib/hazelcast-5.3.8.jar", "fingerprint" : "FALLBACK-764e83c4", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-72hv-8253-57qq-jackson-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-72hv-8253-57qq medium vulnerability for jackson-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-72hv-8253-57qq**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | jackson-core | 2.15.2 | 2.18.6 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/hazelcast-5.3.8.jar | github:language:java | [GHSA-72hv-8253-57qq](https://github.com/advisories/GHSA-72hv-8253-57qq) |\u000a\u000a\u000aA medium vulnerability in java-archive package: jackson-core, version 2.15.2 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/hazelcast-5.3.8.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "hazelcast-5.3.8.jar(1,0): GHSA-72hv-8253-57qq-jackson-core: : GHSA-72hv-8253-57qq-jackson-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-72hv-8253-57qq medium vulnerability for jackson-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-72hv-8253-57qq**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | jackson-core | 2.15.2 | 2.18.6 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/hazelcast-5.3.8.jar | github:language:java | [GHSA-72hv-8253-57qq](https://github.com/advisories/GHSA-72hv-8253-57qq) |\u000a\u000a\u000aA medium vulnerability in java-archive package: jackson-core, version 2.15.2 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/hazelcast-5.3.8.jar", "type" : "GHSA-72hv-8253-57qq-jackson-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.3.jar", "fingerprint" : "FALLBACK-ef08f755", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar | github:language:java | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "log4j-core-2.25.3.jar(1,0): GHSA-3pxv-7cmr-fjr4-log4j-core: : GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar | github:language:java | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.3.jar", "type" : "GHSA-3pxv-7cmr-fjr4-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-layout-template-json-2.25.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "fingerprint" : "FALLBACK-f3d2e779", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: JavaMatcherExactDirectMatch\u000a\u000aGHSA-w35j-pv5h-q9q9 medium vulnerability for log4j-layout-template-json package\u000a\u000aFor additional help see: **Vulnerability GHSA-w35j-pv5h-q9q9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-layout-template-json | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar | github:language:java | [GHSA-w35j-pv5h-q9q9](https://github.com/advisories/GHSA-w35j-pv5h-q9q9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-layout-template-json, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "log4j-layout-template-json-2.25.3.jar(1,0): GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: : GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: JavaMatcherExactDirectMatch\u000a\u000aGHSA-w35j-pv5h-q9q9 medium vulnerability for log4j-layout-template-json package\u000a\u000aFor additional help see: **Vulnerability GHSA-w35j-pv5h-q9q9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-layout-template-json | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar | github:language:java | [GHSA-w35j-pv5h-q9q9](https://github.com/advisories/GHSA-w35j-pv5h-q9q9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-layout-template-json, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "type" : "GHSA-w35j-pv5h-q9q9-log4j-layout-template-json" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "spring-security-web-5.8.16.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govway.war:WEB-INF/lib/spring-security-web-5.8.16.jar", "fingerprint" : "FALLBACK-c16a9732", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-mf92-479x-3373-spring-security-web: JavaMatcherExactDirectMatch\u000a\u000aGHSA-mf92-479x-3373 critical vulnerability for spring-security-web package\u000a\u000aFor additional help see: **Vulnerability GHSA-mf92-479x-3373**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| critical | spring-security-web | 5.8.16 | | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/spring-security-web-5.8.16.jar | github:language:java | [GHSA-mf92-479x-3373](https://github.com/advisories/GHSA-mf92-479x-3373) |\u000a\u000a\u000aA critical vulnerability in java-archive package: spring-security-web, version 5.8.16 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/spring-security-web-5.8.16.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "spring-security-web-5.8.16.jar(1,0): GHSA-mf92-479x-3373-spring-security-web: : GHSA-mf92-479x-3373-spring-security-web: JavaMatcherExactDirectMatch\u000a\u000aGHSA-mf92-479x-3373 critical vulnerability for spring-security-web package\u000a\u000aFor additional help see: **Vulnerability GHSA-mf92-479x-3373**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| critical | spring-security-web | 5.8.16 | | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/spring-security-web-5.8.16.jar | github:language:java | [GHSA-mf92-479x-3373](https://github.com/advisories/GHSA-mf92-479x-3373) |\u000a\u000a\u000aA critical vulnerability in java-archive package: spring-security-web, version 5.8.16 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/spring-security-web-5.8.16.jar", "type" : "GHSA-mf92-479x-3373-spring-security-web" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "commons-lang-2.6.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/commons-lang-2.6.jar", "fingerprint" : "FALLBACK-7016d195", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | commons-lang | 2.6 | | java-archive | /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/commons-lang-2.6.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "commons-lang-2.6.jar(1,0): GHSA-j288-q9x7-2f5v-commons-lang: : GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | commons-lang | 2.6 | | java-archive | /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/commons-lang-2.6.jar", "type" : "GHSA-j288-q9x7-2f5v-commons-lang" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar", "fingerprint" : "FALLBACK-ef08f755", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar | github:language:java | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "log4j-core-2.25.3.jar(1,0): GHSA-3pxv-7cmr-fjr4-log4j-core: : GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar | github:language:java | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar", "type" : "GHSA-3pxv-7cmr-fjr4-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-layout-template-json-2.25.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "fingerprint" : "FALLBACK-f3d2e779", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: JavaMatcherExactDirectMatch\u000a\u000aGHSA-w35j-pv5h-q9q9 medium vulnerability for log4j-layout-template-json package\u000a\u000aFor additional help see: **Vulnerability GHSA-w35j-pv5h-q9q9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-layout-template-json | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar | github:language:java | [GHSA-w35j-pv5h-q9q9](https://github.com/advisories/GHSA-w35j-pv5h-q9q9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-layout-template-json, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "log4j-layout-template-json-2.25.3.jar(1,0): GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: : GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: JavaMatcherExactDirectMatch\u000a\u000aGHSA-w35j-pv5h-q9q9 medium vulnerability for log4j-layout-template-json package\u000a\u000aFor additional help see: **Vulnerability GHSA-w35j-pv5h-q9q9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-layout-template-json | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar | github:language:java | [GHSA-w35j-pv5h-q9q9](https://github.com/advisories/GHSA-w35j-pv5h-q9q9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-layout-template-json, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "type" : "GHSA-w35j-pv5h-q9q9-log4j-layout-template-json" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "spring-security-web-5.8.16.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/spring-security-web-5.8.16.jar", "fingerprint" : "FALLBACK-c16a9732", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-mf92-479x-3373-spring-security-web: JavaMatcherExactDirectMatch\u000a\u000aGHSA-mf92-479x-3373 critical vulnerability for spring-security-web package\u000a\u000aFor additional help see: **Vulnerability GHSA-mf92-479x-3373**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| critical | spring-security-web | 5.8.16 | | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/spring-security-web-5.8.16.jar | github:language:java | [GHSA-mf92-479x-3373](https://github.com/advisories/GHSA-mf92-479x-3373) |\u000a\u000a\u000aA critical vulnerability in java-archive package: spring-security-web, version 5.8.16 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/spring-security-web-5.8.16.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "spring-security-web-5.8.16.jar(1,0): GHSA-mf92-479x-3373-spring-security-web: : GHSA-mf92-479x-3373-spring-security-web: JavaMatcherExactDirectMatch\u000a\u000aGHSA-mf92-479x-3373 critical vulnerability for spring-security-web package\u000a\u000aFor additional help see: **Vulnerability GHSA-mf92-479x-3373**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| critical | spring-security-web | 5.8.16 | | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/spring-security-web-5.8.16.jar | github:language:java | [GHSA-mf92-479x-3373](https://github.com/advisories/GHSA-mf92-479x-3373) |\u000a\u000a\u000aA critical vulnerability in java-archive package: spring-security-web, version 5.8.16 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/spring-security-web-5.8.16.jar", "type" : "GHSA-mf92-479x-3373-spring-security-web" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "commons-lang-2.6.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar", "fingerprint" : "FALLBACK-7016d195", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | commons-lang | 2.6 | | java-archive | /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "commons-lang-2.6.jar(1,0): GHSA-j288-q9x7-2f5v-commons-lang: : GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | commons-lang | 2.6 | | java-archive | /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar", "type" : "GHSA-j288-q9x7-2f5v-commons-lang" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "jasperreports-6.20.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jar", "fingerprint" : "FALLBACK-c94c81d2", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-7c3f-cg9x-f3gr-jasperreports: JavaMatcherExactDirectMatch\u000a\u000aGHSA-7c3f-cg9x-f3gr high vulnerability for jasperreports package\u000a\u000aFor additional help see: **Vulnerability GHSA-7c3f-cg9x-f3gr**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | jasperreports | 6.20.0 | 7.0.4 | java-archive | /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jar | github:language:java | [GHSA-7c3f-cg9x-f3gr](https://github.com/advisories/GHSA-7c3f-cg9x-f3gr) |\u000a\u000a\u000aA high vulnerability in java-archive package: jasperreports, version 6.20.0 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "jasperreports-6.20.0.jar(1,0): GHSA-7c3f-cg9x-f3gr-jasperreports: : GHSA-7c3f-cg9x-f3gr-jasperreports: JavaMatcherExactDirectMatch\u000a\u000aGHSA-7c3f-cg9x-f3gr high vulnerability for jasperreports package\u000a\u000aFor additional help see: **Vulnerability GHSA-7c3f-cg9x-f3gr**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | jasperreports | 6.20.0 | 7.0.4 | java-archive | /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jar | github:language:java | [GHSA-7c3f-cg9x-f3gr](https://github.com/advisories/GHSA-7c3f-cg9x-f3gr) |\u000a\u000a\u000aA high vulnerability in java-archive package: jasperreports, version 6.20.0 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jar", "type" : "GHSA-7c3f-cg9x-f3gr-jasperreports" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-core-2.25.3.jar", "fingerprint" : "FALLBACK-ef08f755", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar | github:language:java | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-core-2.25.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "log4j-core-2.25.3.jar(1,0): GHSA-3pxv-7cmr-fjr4-log4j-core: : GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar | github:language:java | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-core-2.25.3.jar", "type" : "GHSA-3pxv-7cmr-fjr4-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-layout-template-json-2.25.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "fingerprint" : "FALLBACK-f3d2e779", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: JavaMatcherExactDirectMatch\u000a\u000aGHSA-w35j-pv5h-q9q9 medium vulnerability for log4j-layout-template-json package\u000a\u000aFor additional help see: **Vulnerability GHSA-w35j-pv5h-q9q9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-layout-template-json | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar | github:language:java | [GHSA-w35j-pv5h-q9q9](https://github.com/advisories/GHSA-w35j-pv5h-q9q9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-layout-template-json, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "log4j-layout-template-json-2.25.3.jar(1,0): GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: : GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: JavaMatcherExactDirectMatch\u000a\u000aGHSA-w35j-pv5h-q9q9 medium vulnerability for log4j-layout-template-json package\u000a\u000aFor additional help see: **Vulnerability GHSA-w35j-pv5h-q9q9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-layout-template-json | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar | github:language:java | [GHSA-w35j-pv5h-q9q9](https://github.com/advisories/GHSA-w35j-pv5h-q9q9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-layout-template-json, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "type" : "GHSA-w35j-pv5h-q9q9-log4j-layout-template-json" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "spring-security-web-5.8.16.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/spring-security-web-5.8.16.jar", "fingerprint" : "FALLBACK-c16a9732", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-mf92-479x-3373-spring-security-web: JavaMatcherExactDirectMatch\u000a\u000aGHSA-mf92-479x-3373 critical vulnerability for spring-security-web package\u000a\u000aFor additional help see: **Vulnerability GHSA-mf92-479x-3373**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| critical | spring-security-web | 5.8.16 | | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/spring-security-web-5.8.16.jar | github:language:java | [GHSA-mf92-479x-3373](https://github.com/advisories/GHSA-mf92-479x-3373) |\u000a\u000a\u000aA critical vulnerability in java-archive package: spring-security-web, version 5.8.16 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/spring-security-web-5.8.16.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "spring-security-web-5.8.16.jar(1,0): GHSA-mf92-479x-3373-spring-security-web: : GHSA-mf92-479x-3373-spring-security-web: JavaMatcherExactDirectMatch\u000a\u000aGHSA-mf92-479x-3373 critical vulnerability for spring-security-web package\u000a\u000aFor additional help see: **Vulnerability GHSA-mf92-479x-3373**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| critical | spring-security-web | 5.8.16 | | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/spring-security-web-5.8.16.jar | github:language:java | [GHSA-mf92-479x-3373](https://github.com/advisories/GHSA-mf92-479x-3373) |\u000a\u000a\u000aA critical vulnerability in java-archive package: spring-security-web, version 5.8.16 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/spring-security-web-5.8.16.jar", "type" : "GHSA-mf92-479x-3373-spring-security-web" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "commons-lang-2.6.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/commons-lang-2.6.jar", "fingerprint" : "FALLBACK-7016d195", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | commons-lang | 2.6 | | java-archive | /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/commons-lang-2.6.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "commons-lang-2.6.jar(1,0): GHSA-j288-q9x7-2f5v-commons-lang: : GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | commons-lang | 2.6 | | java-archive | /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/commons-lang-2.6.jar", "type" : "GHSA-j288-q9x7-2f5v-commons-lang" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/log4j-core-2.25.3.jar", "fingerprint" : "FALLBACK-ef08f755", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar | github:language:java | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/log4j-core-2.25.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "log4j-core-2.25.3.jar(1,0): GHSA-3pxv-7cmr-fjr4-log4j-core: : GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar | github:language:java | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/log4j-core-2.25.3.jar", "type" : "GHSA-3pxv-7cmr-fjr4-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-layout-template-json-2.25.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "fingerprint" : "FALLBACK-f3d2e779", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: JavaMatcherExactDirectMatch\u000a\u000aGHSA-w35j-pv5h-q9q9 medium vulnerability for log4j-layout-template-json package\u000a\u000aFor additional help see: **Vulnerability GHSA-w35j-pv5h-q9q9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-layout-template-json | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar | github:language:java | [GHSA-w35j-pv5h-q9q9](https://github.com/advisories/GHSA-w35j-pv5h-q9q9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-layout-template-json, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "log4j-layout-template-json-2.25.3.jar(1,0): GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: : GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: JavaMatcherExactDirectMatch\u000a\u000aGHSA-w35j-pv5h-q9q9 medium vulnerability for log4j-layout-template-json package\u000a\u000aFor additional help see: **Vulnerability GHSA-w35j-pv5h-q9q9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-layout-template-json | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar | github:language:java | [GHSA-w35j-pv5h-q9q9](https://github.com/advisories/GHSA-w35j-pv5h-q9q9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-layout-template-json, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "type" : "GHSA-w35j-pv5h-q9q9-log4j-layout-template-json" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "commons-lang-2.6.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/commons-lang-2.6.jar", "fingerprint" : "FALLBACK-7016d195", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | commons-lang | 2.6 | | java-archive | /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/commons-lang-2.6.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "commons-lang-2.6.jar(1,0): GHSA-j288-q9x7-2f5v-commons-lang: : GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | commons-lang | 2.6 | | java-archive | /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/commons-lang-2.6.jar", "type" : "GHSA-j288-q9x7-2f5v-commons-lang" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "jasperreports-6.20.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jar", "fingerprint" : "FALLBACK-c94c81d2", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-7c3f-cg9x-f3gr-jasperreports: JavaMatcherExactDirectMatch\u000a\u000aGHSA-7c3f-cg9x-f3gr high vulnerability for jasperreports package\u000a\u000aFor additional help see: **Vulnerability GHSA-7c3f-cg9x-f3gr**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | jasperreports | 6.20.0 | 7.0.4 | java-archive | /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jar | github:language:java | [GHSA-7c3f-cg9x-f3gr](https://github.com/advisories/GHSA-7c3f-cg9x-f3gr) |\u000a\u000a\u000aA high vulnerability in java-archive package: jasperreports, version 6.20.0 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "HIGH", "toString" : "jasperreports-6.20.0.jar(1,0): GHSA-7c3f-cg9x-f3gr-jasperreports: : GHSA-7c3f-cg9x-f3gr-jasperreports: JavaMatcherExactDirectMatch\u000a\u000aGHSA-7c3f-cg9x-f3gr high vulnerability for jasperreports package\u000a\u000aFor additional help see: **Vulnerability GHSA-7c3f-cg9x-f3gr**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high | jasperreports | 6.20.0 | 7.0.4 | java-archive | /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jar | github:language:java | [GHSA-7c3f-cg9x-f3gr](https://github.com/advisories/GHSA-7c3f-cg9x-f3gr) |\u000a\u000a\u000aA high vulnerability in java-archive package: jasperreports, version 6.20.0 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jar", "type" : "GHSA-7c3f-cg9x-f3gr-jasperreports" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-core-2.25.3.jar", "fingerprint" : "FALLBACK-ef08f755", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar | github:language:java | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-core-2.25.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "log4j-core-2.25.3.jar(1,0): GHSA-3pxv-7cmr-fjr4-log4j-core: : GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar | github:language:java | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-core-2.25.3.jar", "type" : "GHSA-3pxv-7cmr-fjr4-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-layout-template-json-2.25.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "fingerprint" : "FALLBACK-f3d2e779", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: JavaMatcherExactDirectMatch\u000a\u000aGHSA-w35j-pv5h-q9q9 medium vulnerability for log4j-layout-template-json package\u000a\u000aFor additional help see: **Vulnerability GHSA-w35j-pv5h-q9q9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-layout-template-json | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar | github:language:java | [GHSA-w35j-pv5h-q9q9](https://github.com/advisories/GHSA-w35j-pv5h-q9q9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-layout-template-json, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1398", "severity" : "NORMAL", "toString" : "log4j-layout-template-json-2.25.3.jar(1,0): GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: : GHSA-w35j-pv5h-q9q9-log4j-layout-template-json: JavaMatcherExactDirectMatch\u000a\u000aGHSA-w35j-pv5h-q9q9 medium vulnerability for log4j-layout-template-json package\u000a\u000aFor additional help see: **Vulnerability GHSA-w35j-pv5h-q9q9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-layout-template-json | 2.25.3 | 2.25.4 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar | github:language:java | [GHSA-w35j-pv5h-q9q9](https://github.com/advisories/GHSA-w35j-pv5h-q9q9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-layout-template-json, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-layout-template-json-2.25.3.jar", "type" : "GHSA-w35j-pv5h-q9q9-log4j-layout-template-json" } ], "size" : 86, "toString" : "86 warnings (high: 33, normal: 43, low: 10)" }