Vulnerabilities in anchore
9 resultsCVE-2020-11075HIGHShell Escape in Anchore EngineEPSS 1.8%CVE-2023-24827MEDIUMCredential disclosure in syft when SYFT_ATTEST_PASSWORD environment variable set in syftEPSS 0.8%CVE-2026-33481MEDIUMSyft improper temporary file cleanupEPSS 0.4%CVE-2024-24579MEDIUMTar path traversal in stereoscope when processing OCI tar archivesEPSS 0.4%CVE-2026-25076HIGHAnchore Enterprise GraphQL Reports API SQL injectionEPSS 0.3%CVE-2025-65965HIGHGrype has a credential disclosure vulnerability in Grype JSON outputEPSS 0.1%CVE-2026-31961MEDIUMUnbounded memory allocation in Quill via unvalidated size fields in Mach-O binary parsingEPSS 0.1%CVE-2026-31959MEDIUMSSRF in Quill via unvalidated URL from Apple notarization log retrievalEPSS 0.1%CVE-2026-31960MEDIUMDoS in Quill via unbounded read of HTTP response body during notarizationEPSS 0.1%