Search:
| Image | Mirrored | Release | Binary/Package | Dependency | Vulnerability ID (CVE) | Severity | Status | Justification (for status not affected) | Type (language or OS) |
|---|---|---|---|---|---|---|---|---|---|
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | stdlib@v1.25.1 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | stdlib@v1.25.1 | CVE-2025-58183 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | stdlib@v1.25.1 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | stdlib@v1.25.1 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | stdlib@v1.25.1 | CVE-2025-47912 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | stdlib@v1.25.1 | CVE-2025-58188 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | stdlib@v1.25.1 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | stdlib@v1.25.1 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | usr/local/bin/supercronic | stdlib@v1.25.3 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | usr/local/bin/supercronic | stdlib@v1.25.3 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | usr/local/bin/supercronic | stdlib@v1.25.3 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | usr/local/bin/supercronic | stdlib@v1.25.3 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | usr/local/bin/supercronic | stdlib@v1.25.3 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | libpython3_6m1_0 | libpython3_6m1_0@3.6.15-150300.10.103.1 | SUSE-SU-2026:0664-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | python3-base | python3-base@3.6.15-150300.10.103.1 | SUSE-SU-2026:0664-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | Python | wheel@0.45.1 | CVE-2026-24049 | HIGH | affected | python-pkg | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/bin/sts-toolbox | github.com/docker/cli@v26.0.1+incompatible | CVE-2025-15558 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61728 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/helm | stdlib@v1.25.6 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/kubectl | stdlib@v1.24.9 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/kubectl | stdlib@v1.24.9 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/kubectl | stdlib@v1.24.9 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/kubectl | stdlib@v1.24.9 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/kubectl | stdlib@v1.24.9 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/mc | stdlib@v1.24.9 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/mc | stdlib@v1.24.9 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/mc | stdlib@v1.24.9 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/mc | stdlib@v1.24.9 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/mc | stdlib@v1.24.9 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/sts | stdlib@v1.24.10 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/sts | stdlib@v1.24.10 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/sts | stdlib@v1.24.10 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/sts | stdlib@v1.24.10 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/sts | stdlib@v1.24.10 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-47912 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-58188 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.2 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.2 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.8.0 | CVE-2025-12183 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/elasticsearch:8.19.4-8eb5c88d-203 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.8.0 | CVE-2025-66566 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hadoop:3.4.2-java21-8-27156f06-354 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hadoop:3.4.2-java21-8-27156f06-354 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.9.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hadoop:3.4.2-java21-8-27156f06-354 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hadoop:3.4.2-java21-8-27156f06-354 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hadoop:3.4.2-java21-8-27156f06-354 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hadoop:3.4.2-java21-8-27156f06-354 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.1 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hadoop:3.4.2-java21-8-27156f06-354 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.1 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hadoop:3.4.2-java21-8-27156f06-354 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.1 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hadoop:3.4.2-java21-8-27156f06-354 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.7.1 | CVE-2025-12183 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hadoop:3.4.2-java21-8-27156f06-354 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.7.1 | CVE-2025-66566 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | glibc | glibc@2.38-150600.14.37.1 | SUSE-SU-2026:0371-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | gpg2 | gpg2@2.4.4-150600.3.12.1 | SUSE-SU-2026:0434-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | java-21-openjdk | java-21-openjdk@21.0.9.0-150600.3.18.2 | SUSE-SU-2026:0363-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | java-21-openjdk-headless | java-21-openjdk-headless@21.0.9.0-150600.3.18.2 | SUSE-SU-2026:0363-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | libglib-2_0-0 | libglib-2_0-0@2.78.6-150600.4.28.1 | SUSE-SU-2026:0373-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.6.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss-sysinit | mozilla-nss-sysinit@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.1 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.19.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.google.protobuf:protobuf-java@2.5.0 | CVE-2021-22569 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.google.protobuf:protobuf-java@2.5.0 | CVE-2024-7254 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | Java | io.netty:netty-codec-http2@4.1.123.Final | CVE-2025-55163 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hbase-master:2.5-7.13.18 | false | Observability v2.8.0 | Java | io.netty:netty-codec-smtp@4.1.123.Final | CVE-2025-59419 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | glibc | glibc@2.38-150600.14.37.1 | SUSE-SU-2026:0371-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | gpg2 | gpg2@2.4.4-150600.3.12.1 | SUSE-SU-2026:0434-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | java-21-openjdk | java-21-openjdk@21.0.9.0-150600.3.18.2 | SUSE-SU-2026:0363-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | java-21-openjdk-headless | java-21-openjdk-headless@21.0.9.0-150600.3.18.2 | SUSE-SU-2026:0363-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | libglib-2_0-0 | libglib-2_0-0@2.78.6-150600.4.28.1 | SUSE-SU-2026:0373-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.6.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss-sysinit | mozilla-nss-sysinit@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.1 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.19.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.google.protobuf:protobuf-java@2.5.0 | CVE-2021-22569 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.google.protobuf:protobuf-java@2.5.0 | CVE-2024-7254 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | Java | io.netty:netty-codec-http2@4.1.123.Final | CVE-2025-55163 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/hbase-regionserver:2.5-7.13.18 | false | Observability v2.8.0 | Java | io.netty:netty-codec-smtp@4.1.123.Final | CVE-2025-59419 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/jmx-exporter:0.20.0-59972f41-263 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/jmx-exporter:0.20.0-59972f41-263 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.9.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/jmx-exporter:0.20.0-59972f41-263 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/jmx-exporter:0.20.0-59972f41-263 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/jmx-exporter:0.20.0-59972f41-263 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/jmx-exporter:0.20.0-59972f41-263 | false | Observability v2.8.0 | mozilla-nss-sysinit | mozilla-nss-sysinit@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/kafka:3.9.1-9dbceaa9-262 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/kafka:3.9.1-9dbceaa9-262 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.9.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/kafka:3.9.1-9dbceaa9-262 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/kafka:3.9.1-9dbceaa9-262 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/kafka:3.9.1-9dbceaa9-262 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/kafka:3.9.1-9dbceaa9-262 | false | Observability v2.8.0 | mozilla-nss-sysinit | mozilla-nss-sysinit@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/kafka:3.9.1-9dbceaa9-262 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.16.2 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/kafka:3.9.1-9dbceaa9-262 | false | Observability v2.8.0 | Java | commons-beanutils:commons-beanutils@1.9.4 | CVE-2025-48734 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/kafka:3.9.1-9dbceaa9-262 | false | Observability v2.8.0 | Java | org.bitbucket.b_c:jose4j@0.9.4 | CVE-2024-29371 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/kafka:3.9.1-9dbceaa9-262 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.8.0 | CVE-2025-12183 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/kafka:3.9.1-9dbceaa9-262 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.8.0 | CVE-2025-66566 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/kafkaup-operator:0.0.6 | false | Observability v2.8.0 | kafkaup-operator | stdlib@v1.25.1 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/kafkaup-operator:0.0.6 | false | Observability v2.8.0 | kafkaup-operator | stdlib@v1.25.1 | CVE-2025-58183 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/kafkaup-operator:0.0.6 | false | Observability v2.8.0 | kafkaup-operator | stdlib@v1.25.1 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/kafkaup-operator:0.0.6 | false | Observability v2.8.0 | kafkaup-operator | stdlib@v1.25.1 | CVE-2025-61728 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/kafkaup-operator:0.0.6 | false | Observability v2.8.0 | kafkaup-operator | stdlib@v1.25.1 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/kafkaup-operator:0.0.6 | false | Observability v2.8.0 | kafkaup-operator | stdlib@v1.25.1 | CVE-2025-47912 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/kafkaup-operator:0.0.6 | false | Observability v2.8.0 | kafkaup-operator | stdlib@v1.25.1 | CVE-2025-58188 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/kafkaup-operator:0.0.6 | false | Observability v2.8.0 | kafkaup-operator | stdlib@v1.25.1 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/kafkaup-operator:0.0.6 | false | Observability v2.8.0 | kafkaup-operator | stdlib@v1.25.1 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | github.com/coredns/coredns@v1.12.4 | CVE-2026-26017 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | github.com/coredns/coredns@v1.12.4 | CVE-2026-26018 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | github.com/coredns/coredns@v1.12.4 | CVE-2025-68151 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | stdlib@v1.24.9 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | stdlib@v1.24.9 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | stdlib@v1.24.9 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | stdlib@v1.24.9 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | stdlib@v1.24.9 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/nginx-prometheus-exporter:1.5.1-65df9700-71 | false | Observability v2.8.0 | usr/bin/nginx-prometheus-exporter | stdlib@v1.25.3 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/nginx-prometheus-exporter:1.5.1-65df9700-71 | false | Observability v2.8.0 | usr/bin/nginx-prometheus-exporter | stdlib@v1.25.3 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/nginx-prometheus-exporter:1.5.1-65df9700-71 | false | Observability v2.8.0 | usr/bin/nginx-prometheus-exporter | stdlib@v1.25.3 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/nginx-prometheus-exporter:1.5.1-65df9700-71 | false | Observability v2.8.0 | usr/bin/nginx-prometheus-exporter | stdlib@v1.25.3 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/nginx-prometheus-exporter:1.5.1-65df9700-71 | false | Observability v2.8.0 | usr/bin/nginx-prometheus-exporter | stdlib@v1.25.3 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | glib2-tools | glib2-tools@2.78.6-150600.4.22.1 | SUSE-SU-2026:0018-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | glib2-tools | glib2-tools@2.78.6-150600.4.22.1 | SUSE-SU-2026:0373-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | glibc | glibc@2.38-150600.14.37.1 | SUSE-SU-2026:0371-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | gpg2 | gpg2@2.4.4-150600.3.9.1 | SUSE-SU-2026:0215-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | gpg2 | gpg2@2.4.4-150600.3.9.1 | SUSE-SU-2026:0434-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | libgio-2_0-0 | libgio-2_0-0@2.78.6-150600.4.22.1 | SUSE-SU-2026:0018-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | libgio-2_0-0 | libgio-2_0-0@2.78.6-150600.4.22.1 | SUSE-SU-2026:0373-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | libglib-2_0-0 | libglib-2_0-0@2.78.6-150600.4.22.1 | SUSE-SU-2026:0018-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | libglib-2_0-0 | libglib-2_0-0@2.78.6-150600.4.22.1 | SUSE-SU-2026:0373-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | libgmodule-2_0-0 | libgmodule-2_0-0@2.78.6-150600.4.22.1 | SUSE-SU-2026:0018-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | libgmodule-2_0-0 | libgmodule-2_0-0@2.78.6-150600.4.22.1 | SUSE-SU-2026:0373-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | libgobject-2_0-0 | libgobject-2_0-0@2.78.6-150600.4.22.1 | SUSE-SU-2026:0018-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | libgobject-2_0-0 | libgobject-2_0-0@2.78.6-150600.4.22.1 | SUSE-SU-2026:0373-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | libopenssl-3-fips-provider | libopenssl-3-fips-provider@3.1.4-150600.5.39.1 | SUSE-SU-2026:0312-1 | CRITICAL | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | libopenssl3 | libopenssl3@3.1.4-150600.5.39.1 | SUSE-SU-2026:0312-1 | CRITICAL | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | libpython3_11-1_0 | libpython3_11-1_0@3.11.14-150600.3.38.1 | SUSE-SU-2026:0767-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | openssl-3 | openssl-3@3.1.4-150600.5.39.1 | SUSE-SU-2026:0312-1 | CRITICAL | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | python311 | python311@3.11.14-150600.3.38.1 | SUSE-SU-2026:0767-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | python311-base | python311-base@3.11.14-150600.3.38.1 | SUSE-SU-2026:0767-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | python311-dbm | python311-dbm@3.11.14-150600.3.38.1 | SUSE-SU-2026:0767-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | python311-devel | python311-devel@3.11.14-150600.3.38.1 | SUSE-SU-2026:0767-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | python311-wheel | python311-wheel@0.42.0-150600.1.2 | SUSE-SU-2026:0424-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | Python | jaraco.context@5.3.0 | CVE-2026-23949 | HIGH | affected | python-pkg | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | Python | urllib3@1.26.19 | CVE-2025-66418 | HIGH | affected | python-pkg | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | Python | urllib3@1.26.19 | CVE-2025-66471 | HIGH | affected | python-pkg | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | Python | urllib3@1.26.19 | CVE-2026-21441 | HIGH | affected | python-pkg | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | Python | wheel@0.40.0 | CVE-2026-24049 | HIGH | affected | python-pkg | |
| registry.rancher.com/suse-observability/spotlight:5.2.0-snapshot.179 | false | Observability v2.8.0 | Python | wheel@0.45.1 | CVE-2026-24049 | HIGH | affected | python-pkg | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | glibc | glibc@2.38-150600.14.37.1 | SUSE-SU-2026:0371-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | gpg2 | gpg2@2.4.4-150600.3.12.1 | SUSE-SU-2026:0434-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | java-21-openjdk | java-21-openjdk@21.0.9.0-150600.3.18.2 | SUSE-SU-2026:0363-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | java-21-openjdk-headless | java-21-openjdk-headless@21.0.9.0-150600.3.18.2 | SUSE-SU-2026:0363-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | libglib-2_0-0 | libglib-2_0-0@2.78.6-150600.4.28.1 | SUSE-SU-2026:0373-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.6.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss-sysinit | mozilla-nss-sysinit@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.2 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.1 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.1 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.google.protobuf:protobuf-java@2.5.0 | CVE-2021-22569 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.google.protobuf:protobuf-java@2.5.0 | CVE-2024-7254 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | Java | io.netty:netty-codec-http2@4.1.121.Final | CVE-2025-55163 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackgraph-console:2.5-7.13.18 | false | Observability v2.8.0 | Java | io.netty:netty-codec-smtp@4.1.121.Final | CVE-2025-59419 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | glibc | glibc@2.38-150600.14.37.1 | SUSE-SU-2026:0371-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | gpg2 | gpg2@2.4.4-150600.3.12.1 | SUSE-SU-2026:0434-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | java-21-openjdk | java-21-openjdk@21.0.9.0-150600.3.18.2 | SUSE-SU-2026:0363-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | java-21-openjdk-headless | java-21-openjdk-headless@21.0.9.0-150600.3.18.2 | SUSE-SU-2026:0363-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | libglib-2_0-0 | libglib-2_0-0@2.78.6-150600.4.28.1 | SUSE-SU-2026:0373-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.6.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss-sysinit | mozilla-nss-sysinit@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.1 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.19.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.google.protobuf:protobuf-java@2.5.0 | CVE-2021-22569 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.google.protobuf:protobuf-java@2.5.0 | CVE-2024-7254 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | Java | io.netty:netty-codec-http2@4.1.123.Final | CVE-2025-55163 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackgraph-hbase:2.5-7.13.18 | false | Observability v2.8.0 | Java | io.netty:netty-codec-smtp@4.1.123.Final | CVE-2025-59419 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | gpg2 | gpg2@2.4.4-150600.3.12.1 | SUSE-SU-2026:0434-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.9.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | mozilla-nss-sysinit | mozilla-nss-sysinit@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.20.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | Java | net.jpountz.lz4:lz4@1.3.0 | CVE-2025-12183 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | Java | net.jpountz.lz4:lz4@1.3.0 | CVE-2025-66566 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.8.0 | CVE-2025-12183 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.8.0 | CVE-2025-66566 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | github.com/docker/cli@v26.0.1+incompatible | CVE-2025-15558 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61728 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-correlate:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | gpg2 | gpg2@2.4.4-150600.3.12.1 | SUSE-SU-2026:0434-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.9.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | mozilla-nss-sysinit | mozilla-nss-sysinit@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.20.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | Java | net.jpountz.lz4:lz4@1.3.0 | CVE-2025-12183 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | Java | net.jpountz.lz4:lz4@1.3.0 | CVE-2025-66566 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.8.0 | CVE-2025-12183 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.8.0 | CVE-2025-66566 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | github.com/docker/cli@v26.0.1+incompatible | CVE-2025-15558 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61728 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-kafka-to-es:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | gpg2 | gpg2@2.4.4-150600.3.12.1 | SUSE-SU-2026:0434-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.9.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | mozilla-nss-sysinit | mozilla-nss-sysinit@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.20.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | Java | net.jpountz.lz4:lz4@1.3.0 | CVE-2025-12183 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | Java | net.jpountz.lz4:lz4@1.3.0 | CVE-2025-66566 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.8.0 | CVE-2025-12183 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.8.0 | CVE-2025-66566 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | github.com/docker/cli@v26.0.1+incompatible | CVE-2025-15558 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61728 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-receiver:2.8.0 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | gpg2 | gpg2@2.4.4-150600.3.12.1 | SUSE-SU-2026:0434-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.9.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | mozilla-nss-sysinit | mozilla-nss-sysinit@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.2 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.1 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.1 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.20.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | com.google.protobuf:protobuf-java@2.5.0 | CVE-2021-22569 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | com.google.protobuf:protobuf-java@2.5.0 | CVE-2024-7254 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | com.squareup.okhttp3:okhttp@3.12.12 | CVE-2021-0341 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | io.netty:netty-codec-http2@4.1.121.Final | CVE-2025-55163 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | io.netty:netty-codec-smtp@4.1.121.Final | CVE-2025-59419 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | net.jpountz.lz4:lz4@1.3.0 | CVE-2025-12183 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | net.jpountz.lz4:lz4@1.3.0 | CVE-2025-66566 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.8.0 | CVE-2025-12183 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | Java | org.lz4:lz4-java@1.8.0 | CVE-2025-66566 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | usr/bin/sts-toolbox | github.com/docker/cli@v26.0.1+incompatible | CVE-2025-15558 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61728 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-server:2.8.0-2.5 | false | Observability v2.8.0 | usr/bin/sts-toolbox | stdlib@v1.24.9 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/stackstate-ui:2.8.0 | false | Observability v2.8.0 | zlib | zlib@1.3.1-r2 | CVE-2026-22184 | CRITICAL | affected | alpine | |
| registry.rancher.com/suse-observability/sts-opentelemetry-collector:v0.0.25 | false | Observability v2.8.0 | usr/bin/sts-opentelemetry-collector | github.com/expr-lang/expr@v1.17.6 | CVE-2025-68156 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/sts-opentelemetry-collector:v0.0.25 | false | Observability v2.8.0 | usr/bin/sts-opentelemetry-collector | stdlib@v1.25.5 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/sts-opentelemetry-collector:v0.0.25 | false | Observability v2.8.0 | usr/bin/sts-opentelemetry-collector | stdlib@v1.25.5 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/sts-opentelemetry-collector:v0.0.25 | false | Observability v2.8.0 | usr/bin/sts-opentelemetry-collector | stdlib@v1.25.5 | CVE-2025-61728 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/sts-opentelemetry-collector:v0.0.25 | false | Observability v2.8.0 | usr/bin/sts-opentelemetry-collector | stdlib@v1.25.5 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | glibc | glibc@2.38-150600.14.37.1 | SUSE-SU-2026:0371-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | gpg2 | gpg2@2.4.4-150600.3.12.1 | SUSE-SU-2026:0434-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | java-21-openjdk | java-21-openjdk@21.0.9.0-150600.3.18.2 | SUSE-SU-2026:0363-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | java-21-openjdk-headless | java-21-openjdk-headless@21.0.9.0-150600.3.18.2 | SUSE-SU-2026:0363-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | libglib-2_0-0 | libglib-2_0-0@2.78.6-150600.4.28.1 | SUSE-SU-2026:0373-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.6.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | mozilla-nss-sysinit | mozilla-nss-sysinit@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.17.1 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.19.0 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.google.protobuf:protobuf-java@2.5.0 | CVE-2021-22569 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | Java | com.google.protobuf:protobuf-java@2.5.0 | CVE-2024-7254 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | Java | io.netty:netty-codec-http2@4.1.123.Final | CVE-2025-55163 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/tephra-server:2.5-7.13.18 | false | Observability v2.8.0 | Java | io.netty:netty-codec-smtp@4.1.123.Final | CVE-2025-59419 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-47912 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-58188 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-47912 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-58188 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | github.com/sirupsen/logrus@v1.6.0 | CVE-2025-65637 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2024-24790 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2023-39325 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2023-45283 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2023-45288 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2023-29409 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2023-39326 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2023-45289 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2023-45290 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2024-24783 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2025-47912 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2025-58188 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-47912 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-58188 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-68121 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-61726 | MEDIUM*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-61729 | HIGH | affected | gobinary | |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-47912 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-58188 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-61727 | HIGH*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-61730 | LOW*Severity modified based on SUSE's CVE database and CVSS rating |
affected | gobinary | |
| registry.rancher.com/suse-observability/zookeeper:3.9.3-33ea3d15-267 | false | Observability v2.8.0 | libfreebl3 | libfreebl3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/zookeeper:3.9.3-33ea3d15-267 | false | Observability v2.8.0 | libpng16-16 | libpng16-16@1.6.40-150600.3.9.1 | SUSE-SU-2026:0597-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/zookeeper:3.9.3-33ea3d15-267 | false | Observability v2.8.0 | libsoftokn3 | libsoftokn3@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/zookeeper:3.9.3-33ea3d15-267 | false | Observability v2.8.0 | mozilla-nss | mozilla-nss@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/zookeeper:3.9.3-33ea3d15-267 | false | Observability v2.8.0 | mozilla-nss-certs | mozilla-nss-certs@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/zookeeper:3.9.3-33ea3d15-267 | false | Observability v2.8.0 | mozilla-nss-sysinit | mozilla-nss-sysinit@3.112.2-150400.3.60.1 | SUSE-SU-2026:0813-1 | HIGH | affected | sles | |
| registry.rancher.com/suse-observability/zookeeper:3.9.3-33ea3d15-267 | false | Observability v2.8.0 | Java | com.fasterxml.jackson.core:jackson-core@2.15.2 | GHSA-72hv-8253-57qq | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/zookeeper:3.9.3-33ea3d15-267 | false | Observability v2.8.0 | Java | io.netty:netty-handler@4.1.113.Final | CVE-2025-24970 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/zookeeper:3.9.3-33ea3d15-267 | false | Observability v2.8.0 | Java | org.eclipse.jetty:jetty-server@9.4.56.v20240826 | CVE-2024-13009 | HIGH | affected | jar | |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | github.com/nwaples/rardecode/v2@v2.1.1 | CVE-2025-11579 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | go.opentelemetry.io/otel/sdk@v1.38.0 | CVE-2026-24051 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | golang.org/x/crypto@v0.42.0 | CVE-2025-47914 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | golang.org/x/crypto@v0.42.0 | CVE-2025-58181 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | stdlib@v1.25.1 | CVE-2025-61728 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | bin/clickhouse-backup | stdlib@v1.25.1 | CVE-2025-61725 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/clickhouse-backup:2.6.39-8b7e3abd-125 | false | Observability v2.8.0 | usr/local/bin/supercronic | stdlib@v1.25.3 | CVE-2025-61728 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/kubectl | stdlib@v1.24.9 | CVE-2025-61728 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/mc | stdlib@v1.24.9 | CVE-2025-61728 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/sts | stdlib@v1.24.10 | CVE-2025-61728 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/yq | stdlib@v1.25.4 | CVE-2025-68121 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/yq | stdlib@v1.25.4 | CVE-2025-61726 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/yq | stdlib@v1.25.4 | CVE-2025-61728 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/yq | stdlib@v1.25.4 | CVE-2025-61729 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/yq | stdlib@v1.25.4 | CVE-2025-61727 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/container-tools:1.8.3-610 | false | Observability v2.8.0 | usr/local/bin/yq | stdlib@v1.25.4 | CVE-2025-61730 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | golang.org/x/crypto@v0.21.0 | CVE-2024-45337 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | golang.org/x/crypto@v0.21.0 | CVE-2025-22869 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | golang.org/x/crypto@v0.21.0 | CVE-2025-47914 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | golang.org/x/crypto@v0.21.0 | CVE-2025-58181 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | golang.org/x/net@v0.23.0 | CVE-2025-22872 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | golang.org/x/oauth2@v0.16.0 | CVE-2025-22868 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-47907 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-58183 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-61728 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-22873 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-61724 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/elasticsearch-exporter:v1.8.0-32d1aeed-154 | false | Observability v2.8.0 | bin/elasticsearch_exporter | stdlib@v1.22.7 | CVE-2025-61725 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | go.opentelemetry.io/otel/sdk@v1.37.0 | CVE-2026-24051 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | golang.org/x/crypto@v0.41.0 | CVE-2025-47914 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | golang.org/x/crypto@v0.41.0 | CVE-2025-58181 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | gopkg.in/square/go-jose.v2@v2.6.0 | CVE-2024-28180 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/minio:RELEASE.2025-11-19T12-41-50Z-58a322fd-180 | false | Observability v2.8.0 | usr/bin/minio | stdlib@v1.24.9 | CVE-2025-61728 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/nginx-prometheus-exporter:1.5.1-65df9700-71 | false | Observability v2.8.0 | usr/bin/nginx-prometheus-exporter | golang.org/x/crypto@v0.42.0 | CVE-2025-47914 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/nginx-prometheus-exporter:1.5.1-65df9700-71 | false | Observability v2.8.0 | usr/bin/nginx-prometheus-exporter | golang.org/x/crypto@v0.42.0 | CVE-2025-58181 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/nginx-prometheus-exporter:1.5.1-65df9700-71 | false | Observability v2.8.0 | usr/bin/nginx-prometheus-exporter | stdlib@v1.25.3 | CVE-2025-61728 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/sts-opentelemetry-collector:v0.0.25 | false | Observability v2.8.0 | usr/bin/sts-opentelemetry-collector | go.opentelemetry.io/otel/sdk@v1.38.0 | CVE-2026-24051 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | golang.org/x/net@v0.34.0 | CVE-2025-22870 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | golang.org/x/net@v0.34.0 | CVE-2025-22872 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | golang.org/x/oauth2@v0.25.0 | CVE-2025-22868 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-47907 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-58183 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-61728 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-22873 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-61724 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/victoria-metrics:v1.109.0-614527d8-140 | false | Observability v2.8.0 | victoria-metrics-prod | stdlib@v1.23.4 | CVE-2025-61725 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | golang.org/x/net@v0.34.0 | CVE-2025-22870 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | golang.org/x/net@v0.34.0 | CVE-2025-22872 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | golang.org/x/oauth2@v0.25.0 | CVE-2025-22868 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-47907 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-58183 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-61728 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-22873 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-61724 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmagent:v1.109.0-305c94e0-133 | false | Observability v2.8.0 | vmagent-prod | stdlib@v1.23.4 | CVE-2025-61725 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | google.golang.org/protobuf@v1.30.0 | CVE-2024-24786 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2024-34156 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2025-47907 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2025-58183 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2025-61728 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2023-39318 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2023-39319 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2023-45284 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2024-24784 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2024-24785 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2024-24789 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2024-34155 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2024-34158 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2025-22873 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | usr/local/bin/supercronic-linux-amd64 | stdlib@v1.20.5 | CVE-2025-61725 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | github.com/golang-jwt/jwt/v5@v5.2.1 | CVE-2025-30204 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | go.opentelemetry.io/otel/sdk@v1.33.0 | CVE-2026-24051 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | golang.org/x/crypto@v0.32.0 | CVE-2025-22869 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | golang.org/x/crypto@v0.32.0 | CVE-2025-47914 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | golang.org/x/crypto@v0.32.0 | CVE-2025-58181 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | golang.org/x/net@v0.34.0 | CVE-2025-22870 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | golang.org/x/net@v0.34.0 | CVE-2025-22872 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | golang.org/x/oauth2@v0.25.0 | CVE-2025-22868 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-47907 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-58183 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-61728 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-22873 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-61724 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmbackup:v1.109.0-6e768a00-50 | false | Observability v2.8.0 | vmbackup-prod | stdlib@v1.23.4 | CVE-2025-61725 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | github.com/golang-jwt/jwt/v5@v5.2.1 | CVE-2025-30204 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | go.opentelemetry.io/otel/sdk@v1.33.0 | CVE-2026-24051 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | golang.org/x/crypto@v0.32.0 | CVE-2025-22869 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | golang.org/x/crypto@v0.32.0 | CVE-2025-47914 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | golang.org/x/crypto@v0.32.0 | CVE-2025-58181 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | golang.org/x/net@v0.34.0 | CVE-2025-22870 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | golang.org/x/net@v0.34.0 | CVE-2025-22872 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | golang.org/x/oauth2@v0.25.0 | CVE-2025-22868 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-47907 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-58183 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-61728 | none | not affected | vulnerable code not present | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-22873 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-61724 | none | not affected | vulnerable code not in execute path | gobinary |
| registry.rancher.com/suse-observability/vmrestore:v1.109.0-3c122dc6-37 | false | Observability v2.8.0 | vmrestore-prod | stdlib@v1.23.4 | CVE-2025-61725 | none | not affected | vulnerable code not present | gobinary |