Uploaded image for project: 'Artifactory Binary Repository'
  1. Artifactory Binary Repository
  2. RTFACT-18737

HIGH vulnerabilities in artifactory-pro docker images

    Details

    • Type: Bug
    • Status: Open
    • Priority: Blocker
    • Resolution: Unresolved
    • Affects Version/s: 6.8.4
    • Fix Version/s: None
    • Component/s: Docker Image

      Description

      docker.bintray.io/jfrog/artifactory-pro:6.8.4 has the following vulnerabilities.
       

      • 23 High-level vulnerabilities.
      • 89 Medium-level vulnerabilities.
      • 52 Low-level vulnerabilities.
      • 71 Negligible-level vulnerabilities.
      • 10 Unknown-level vulnerabilities.
         

      Our company (and I would assume most) has a stance that no images will be brought in with HIGH vulnerabilities.

      Most of them are fixable via updating to newer dependencies.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              kenneth.s.brooks Kenneth Brooks
            • Votes:
              1 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: