Every CVE whose affected-product data names Chainguard Apko, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2026-25121 — CVSS 7.5 (high): apko allows users to build and publish OCI container images built from apk packages. From version 0.14.8 to before 1.1.1, a path traversal…
CVE-2026-25140 — CVSS 7.5 (high): apko allows users to build and publish OCI container images built from apk packages. From version 0.14.8 to before 1.1.1, an attacker who…
CVE-2026-25122 — CVSS 5.5 (medium): apko allows users to build and publish OCI container images built from apk packages. From version 0.14.8 to before 1.1.0, expandapk.Split…