Open source

Review security and CVE scan results for Gloo Gateway open source.

Gloo container images are scanned using Trivy for HIGH and CRITICAL vulnerabilities. To learn more about how Solo.io detects, tracks, and remediates CVEs, see CVE lifecycle handling.

Latest 1.19.x Gloo Open Source Release: 1.19.1

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.19.1 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.19.1 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.19.1 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.19.1 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.19.1 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.19.1 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.19.1 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.19.0

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.19.0 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.19.0 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.19.0 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.19.0 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.19.0 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.19.0 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.19.0 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Latest 1.18.x Gloo Open Source Release: 1.18.21

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.21 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.21 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.21 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.21 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.21 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.21 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.21 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.20

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.20 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.20 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.20 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.20 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.20 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.20 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.20 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.19

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.19 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.19 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.19 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.19 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.19 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.19 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.19 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.18

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.18 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.18 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.18 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.18 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.18 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.18 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.18 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.17

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.17 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.17 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.17 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.17 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.17 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.17 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.17 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.16

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.16 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.16 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.16 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.16 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.16 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.16 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.16 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.15

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.15 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.15 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.15 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.15 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.15 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.15 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.15 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.14

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.14 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.14 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.14 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.14 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.14 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.14 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.14 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.13

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.13 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.13 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.13 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.13 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.13 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.13 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.13 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.12

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.12 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.12 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.12 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.12 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.12 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.12 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.12 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.11

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.11 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.11 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.11 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.11 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.11 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.11 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.11 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.10

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.10 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.10 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.10 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.10 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.10 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.10 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.10 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.9

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.9 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.9 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.9 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.9 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.9 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.9 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.9 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.8

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.8 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.8 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.8 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.8 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.8 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.8 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.8 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.7

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.7 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.7 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.7 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.7 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.7 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.7 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.7 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.6

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.6 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.6 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.6 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.6 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.6 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.6 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.6 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.5

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.5 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.5 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.5 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.5 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.5 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.5 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.5 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.4

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.4 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.4 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.4 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.4 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.4 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.4 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.4 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.3

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.3 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.3 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.3 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.3 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.3 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.3 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.3 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.2

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.2 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.2 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.2 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.2 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.2 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.2 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.2 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.1

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.1 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.1 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.1 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.1 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.1 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.1 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.1 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.18.0

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.18.0 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.28.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.28.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.18.0 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.28.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.28.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.18.0 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.28.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.28.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.18.0 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.28.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.28.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.18.0 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.18.0 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.28.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.28.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.18.0 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.28.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.28.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.3	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Latest 1.17.x Gloo Open Source Release: 1.17.30

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.30 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.30 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.30 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.30 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.30 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.30 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.30 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.29

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.29 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.29 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.29 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.29 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.29 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.29 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.29 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.28

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.28 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.28 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.28 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.28 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.28 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.28 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.28 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.27

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.27 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.27 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.27 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.27 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.27 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.27 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.27 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.26

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.26 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.26 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.26 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.26 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.26 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.26 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.26 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.25

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.25 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.25 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.25 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.25 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.25 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.25 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.25 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.24

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.24 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.24 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.24 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.24 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.24 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.24 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.24 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.23

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.23 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.23 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.23 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.23 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.23 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.23 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.23 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.22

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.22 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.22 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.22 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.22 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.22 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.22 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.22 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.21

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.21 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.21 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.21 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.21 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.21 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.21 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.21 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.20

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.20 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.20 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.20 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.20 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.20 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.20 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.20 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.19

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.19 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.19 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.19 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.19 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.19 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.19 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.19 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.18

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.18 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.18 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.18 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.18 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.18 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.18 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.18 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.17

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.17 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.17 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.17 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.17 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.17 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.17 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.17 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.16

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.16 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.16 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.16 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.16 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.16 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.16 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.16 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.15

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.15 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.15 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.15 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.15 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.15 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.15 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.15 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.14

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.14 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.14 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.14 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.14 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.14 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.14 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.14 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.13

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.13 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.13 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.13 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.13 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.13 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.13 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.13 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.12

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.12 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.12 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.12 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.12 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.12 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.12 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.12 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.11

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.11 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.11 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.11 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.11 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.11 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.11 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.11 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.10

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.10 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.10 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.10 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.10 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.10 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.10 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.10 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.9

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.9 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.9 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.9 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.9 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.9 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.9 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.9 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.8

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.17.8 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.17.8 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.17.8 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.8 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.8 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.17.8 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.17.8 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.7

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.17.7 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.17.7 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.17.7 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.7 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.7 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.17.7 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.17.7 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.6

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.17.6 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.17.6 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.17.6 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.6 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.6 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.17.6 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.17.6 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.5

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.17.5 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.17.5 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.17.5 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.5 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.5 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.17.5 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.17.5 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.4

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.17.4 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.17.4 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.17.4 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.4 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.4 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.17.4 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.17.4 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.3

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.17.3 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.17.3 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.17.3 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.3 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.3 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.17.3 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.17.3 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.2

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.17.2 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.17.2 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.17.2 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.2 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.2 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.17.2 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.17.2 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.1

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.17.1 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.17.1 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.17.1 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.1 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.1 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.17.1 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.17.1 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.17.0

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.17.0 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.17.0 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.17.0 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.17.0 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.17.0 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.17.0 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.17.0 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.18.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.18.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.22.4	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Latest 1.16.x Gloo Open Source Release: 1.16.25

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.16.25 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.16.25 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.16.25 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.25 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.25 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.16.25 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.16.25 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.24.1	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.24

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.16.24 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.16.24 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.16.24 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.24 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.24 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.16.24 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.16.24 (alpine 3.21.3)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.23.7	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.23

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.16.23 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.16.23 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.16.23 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.23 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.23 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.16.23 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.16.23 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.31.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.22

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.16.22 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.16.22 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.16.22 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.22 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.22 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.16.22 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.16.22 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.21

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.16.21 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.16.21 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.16.21 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.21 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.21 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.16.21 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.16.21 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.20

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.16.20 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.16.20 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.16.20 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.20 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.20 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.16.20 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.16.20 (alpine 3.17.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.19

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.19 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.19 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.19 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.19 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.19 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.19 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.19 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.18

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.18 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.18 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.18 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.18 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.18 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.18 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.18 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.14-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.17

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.17 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.17 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.17 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.17 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.17 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.17 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.17 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2025-22874	stdlib	HIGH	v1.21.11	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.16

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.16 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.16 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.16 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.16 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.16 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.16 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.16 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.15

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.15 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.15 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.15 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.15 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.15 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.15 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.15 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.14

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.14 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.14 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.14 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.14 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.14 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.14 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.14 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.13-r0	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.13

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.13 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.13 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.13 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.13 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.13 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.13 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.13 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.12

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.12 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.12 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.12 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.12 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.12 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.12 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.12 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.11

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.11 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.11 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.11 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.11 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.11 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.11 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.11 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.10

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.10 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.10 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.10 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.10 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.10 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.10 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.10 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r5	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.9	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2025-22874	stdlib	HIGH	v1.21.9	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.9

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.9 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.9 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.9 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.9 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.9 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.9 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.9 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.8

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.8 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.8 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.8 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.8 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.8 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.8 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.8 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.7

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.7 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.7 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.7 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.7 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.7 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.7 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.7 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.6

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.6 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.6 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.6 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.6 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.6 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.6 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.6 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.5

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.5 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.5 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.5 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.5 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.5 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.5 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.5 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.4

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.4 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.4 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.4 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.4 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.4 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.4 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.4 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.3

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.3 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.3 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.3 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.3 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.3 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.3 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.3 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r4	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.2

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.2 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.2 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.2 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.2 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.2 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.2 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.2 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.1

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.1 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.1 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.1 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.1 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.1 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.1 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.1 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r3	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Release 1.16.0

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.16.0 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r2	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r2	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.16.0 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r2	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r2	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.16.0 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r2	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r2	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.16.0 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.16.0 (ubuntu 20.04)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.16.0 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r2	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r2	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.16.0 (alpine 3.17.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-6119	libcrypto3	HIGH	3.0.12-r2	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119
CVE-2024-6119	libssl3	HIGH	3.0.12-r2	3.0.15-r0	https://avd.aquasec.com/nvd/cve-2024-6119

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2024-45337	golang.org/x/crypto	CRITICAL	v0.17.0	0.31.0	https://avd.aquasec.com/nvd/cve-2024-45337
CVE-2025-22869	golang.org/x/crypto	HIGH	v0.17.0	0.35.0	https://avd.aquasec.com/nvd/cve-2025-22869
CVE-2024-24790	stdlib	CRITICAL	v1.21.5	1.21.11, 1.22.4	https://avd.aquasec.com/nvd/cve-2024-24790
CVE-2023-45288	stdlib	HIGH	v1.21.5	1.21.9, 1.22.2	https://avd.aquasec.com/nvd/cve-2023-45288
CVE-2025-22874	stdlib	HIGH	v1.21.5	1.23.10, 1.24.4	https://avd.aquasec.com/nvd/cve-2025-22874