docker (SUSE:Linux Micro 6.0) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Micro 6.0 package docker, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (13)
CVE-2024-23652 — CVSS 10.0 (critical): BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit…
CVE-2024-41110 — CVSS 9.9 (critical): Moby is an open-source project created by Docker for software containerization. A security vulnerability has been detected in certain…
CVE-2024-23653 — CVSS 9.8 (critical): BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. In addition to…
CVE-2024-23651 — CVSS 8.7 (high): BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Two malicious build…
CVE-2023-45142 — CVSS 7.5 (high): OpenTelemetry-Go Contrib is a collection of third-party packages for OpenTelemetry-Go. A handler wrapper out of the box adds labels…
CVE-2023-47108 — CVSS 7.5 (high): OpenTelemetry-Go Contrib is a collection of third-party packages for OpenTelemetry-Go. Starting in version 0.37.0 and prior to version…
CVE-2025-22868 — CVSS 7.5 (high): An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.
CVE-2025-22869 — CVSS 7.5 (high): SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key…
CVE-2025-22872 — CVSS 6.5 (medium): The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character (/) as self-closing. When…
CVE-2024-29018 — CVSS 5.9 (medium): Moby is an open source container framework that is a key component of Docker Engine, Docker Desktop, and other distributions of container…
CVE-2025-58181 — CVSS 5.3 (medium): SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker…
CVE-2025-54388 — CVSS 4.6 (medium): Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container Runtime, and…
CVE-2025-0495: Buildx is a Docker CLI plugin that extends build capabilities using BuildKit. Cache backends support credentials by setting secrets…