Navigation :

Gloo Open Source

Gloo container images are scanned using Trivy for HIGH and CRITICAL vulnerabilities.

Latest 1.13.x Gloo Open Source Release: 1.13.11

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.13.11 (alpine 3.17.2)

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.13.11 (alpine 3.17.2)

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.13.11 (alpine 3.17.2)

No Vulnerabilities Found for usr/local/bin/discovery

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.13.11 (alpine 3.17.2)

No Vulnerabilities Found for usr/local/bin/gloo

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.13.11 (alpine 3.17.2)

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.13.11 (alpine 3.17.2)

No Vulnerabilities Found for usr/local/bin/ingress

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.13.11 (alpine 3.17.2)

No Vulnerabilities Found for usr/local/bin/sds

Gloo kubectl image

No Vulnerabilities Found for quay.io/solo-io/kubectl:1.13.11 (alpine 3.17.2)

Release 1.13.10

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.13.10 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.13.10 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.13.10 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.13.10 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.13.10 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.13.10 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.13.10 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

No Vulnerabilities Found for quay.io/solo-io/kubectl:1.13.10 (alpine 3.17.2)

Release 1.13.9

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.13.9 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.13.9 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.13.9 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.13.9 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.13.9 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.13.9 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.13.9 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

No Vulnerabilities Found for quay.io/solo-io/kubectl:1.13.9 (alpine 3.17.2)

Release 1.13.8

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.13.8 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.13.8 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.13.8 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.13.8 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.13.8 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.13.8 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.13.8 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

No Vulnerabilities Found for quay.io/solo-io/kubectl:1.13.8 (alpine 3.17.2)

Release 1.13.7

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.13.7 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.13.7 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.13.7 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.13.7 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.13.7 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.13.7 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.13.7 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.13.7 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.13.6

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.13.6 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.13.6 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.13.6 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.13.6 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.13.6 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.13.6 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.13.6 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.13.6 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.13.5

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.13.5 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.13.5 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.13.5 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.13.5 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.13.5 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.13.5 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.13.5 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.13.5 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.13.4

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.13.4 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.13.4 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.13.4 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.13.4 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.13.4 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.13.4 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.13.4 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.13.4 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.13.3

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.13.3 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.13.3 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.13.3 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.13.3 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.13.3 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.13.3 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.13.3 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.13.3 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.13.2

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.13.2 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.13.2 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.13.2 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.13.2 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.13.2 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.13.2 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.13.2 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.13.2 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.13.1

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.13.1 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.13.1 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.13.1 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.13.1 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.13.1 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.13.1 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.13.1 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.13.1 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.13.0

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.13.0 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.13.0 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.13.0 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.13.0 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.13.0 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.13.0 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.13.0 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.2.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.13.0 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Latest 1.12.x Gloo Open Source Release: 1.12.49

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.12.49 (alpine 3.17.2)

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.12.49 (alpine 3.17.2)

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.12.49 (alpine 3.17.2)

No Vulnerabilities Found for usr/local/bin/discovery

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.12.49 (alpine 3.15.0)

No Vulnerabilities Found for usr/local/bin/gloo

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.12.49 (alpine 3.15.0)

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.12.49 (alpine 3.17.2)

No Vulnerabilities Found for usr/local/bin/ingress

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.12.49 (alpine 3.17.2)

No Vulnerabilities Found for usr/local/bin/sds

Gloo kubectl image

No Vulnerabilities Found for quay.io/solo-io/kubectl:1.12.49 (alpine 3.17.2)

Release 1.12.48

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.12.48 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.12.48 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.12.48 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.12.48 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.12.48 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.12.48 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.12.48 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

No Vulnerabilities Found for quay.io/solo-io/kubectl:1.12.48 (alpine 3.17.2)

Release 1.12.47

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.12.47 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.12.47 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.12.47 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.12.47 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.12.47 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.12.47 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.12.47 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

No Vulnerabilities Found for quay.io/solo-io/kubectl:1.12.47 (alpine 3.17.2)

Release 1.12.46

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.12.46 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.12.46 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.12.46 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.12.46 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.12.46 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.12.46 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.12.46 (alpine 3.17.2)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

No Vulnerabilities Found for quay.io/solo-io/kubectl:1.12.46 (alpine 3.17.2)

Release 1.12.45

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.12.45 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.12.45 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.12.45 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.12.45 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.12.45 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.12.45 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.12.45 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.45 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.44

Gloo access-logger image

No Vulnerabilities Found for quay.io/solo-io/access-logger:1.12.44 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

No Vulnerabilities Found for quay.io/solo-io/certgen:1.12.44 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

No Vulnerabilities Found for quay.io/solo-io/discovery:1.12.44 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

No Vulnerabilities Found for quay.io/solo-io/gloo:1.12.44 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

No Vulnerabilities Found for quay.io/solo-io/gloo-envoy-wrapper:1.12.44 (alpine 3.15.0)

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

No Vulnerabilities Found for quay.io/solo-io/ingress:1.12.44 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

No Vulnerabilities Found for quay.io/solo-io/sds:1.12.44 (alpine 3.15.6)

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.44 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.43

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.43 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.43 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.43 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.43 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.43 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.43 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.43 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.5.0	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.43 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.42

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.42 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.42 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.42 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.42 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.42 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.42 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.42 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.42 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.41

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.41 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.41 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.41 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.41 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.41 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.41 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.41 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.41 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.40

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.40 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.40 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.40 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.40 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.40 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.40 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.40 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.40 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.39

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.39 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.39 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.39 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.39 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.39 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.39 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.39 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.39 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.38

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.38 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.38 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.38 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.38 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.38 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.38 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.38 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.38 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.37

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.37 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.37 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.37 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.37 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.37 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.37 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.37 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.37 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.36

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.36 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.36 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.36 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.36 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.36 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.36 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.36 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.36 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.35

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.35 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.35 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.35 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.35 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.35 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.35 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.35 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.35 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.34

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.34 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.34 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.34 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.34 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.34 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.34 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.34 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1s-r1	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.34 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.33

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.33 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.33 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.33 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.33 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.33 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.33 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.33 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.33 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.32

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.32 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.32 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.32 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.32 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.32 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.32 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.32 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.32 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.31

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.31 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.31 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.31 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.31 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.31 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.31 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.31 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.31 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.30

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.30 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.30 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.30 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.30 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.30 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.30 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.30 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.30 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.29

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.29 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.29 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.29 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.29 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.29 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.29 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.29 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.29 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.28

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.28 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.28 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.28 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.28 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.28 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.28 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.28 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.28 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.27

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.27 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.27 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.27 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.27 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.27 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.27 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.27 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.27 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.26

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.26 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.26 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.26 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.26 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.26 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.26 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.26 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.26 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.25

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.25 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.25 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.25 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.25 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.25 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.25 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.25 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.25 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.24

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.24 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.24 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.24 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.24 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.24 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.24 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.24 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.24 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.23

Gloo access-logger image

No scan found

Gloo certgen image

No scan found

Gloo discovery image

No scan found

Gloo gloo image

No scan found

Gloo gloo-envoy-wrapper image

No scan found

Gloo ingress image

No scan found

Gloo sds image

No scan found

Gloo kubectl image

No scan found

Release 1.12.22

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.22 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.22 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.22 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.22 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.22 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.22 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.22 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.22 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.21

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.21 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.21 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.21 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.21 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.21 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.21 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.21 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20220906165146-f3363e06e74c	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.21 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.20

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.20 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.20 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.20 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.20 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.20 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.20 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.20 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.20 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.19

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.19 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.19 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.19 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.19 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.19 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.19 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.19 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.19 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.18

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.18 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.18 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.18 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.18 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.18 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.18 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.18 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.18 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.17

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.17 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.17 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.17 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.17 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.17 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.17 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.17 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.17 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.16

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.16 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.16 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.16 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.16 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.16 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.16 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.16 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.16 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.15

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.15 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.15 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.15 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.15 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.15 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.15 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.15 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.15 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.14

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.14 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.14 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.14 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.14 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.14 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.14 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.14 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.14 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.13

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.13 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.13 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.13 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.13 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.13 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.13 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.13 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.13 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.12

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.12 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.12 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.12 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.12 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.12 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.12 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.12 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.12 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.11

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.11 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.11 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.11 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.11 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.11 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.11 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.11 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.11 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.10

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.10 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.10 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.10 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.10 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.10 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.10 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.10 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.10 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.9

Gloo access-logger image

No scan found

Gloo certgen image

No scan found

Gloo discovery image

No scan found

Gloo gloo image

No scan found

Gloo gloo-envoy-wrapper image

No scan found

Gloo ingress image

No scan found

Gloo sds image

No scan found

Gloo kubectl image

No scan found

Release 1.12.8

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.8 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.8 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.8 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.8 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.8 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.8 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.8 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.8 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.7

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.7 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.7 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.7 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.7 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.7 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.7 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.7 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.7 (alpine 3.15.6)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Release 1.12.6

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.6 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.6 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.6 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.6 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.6 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.6 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.6 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.6 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-37434	zlib	CRITICAL	1.2.12-r1	1.2.12-r2	https://avd.aquasec.com/nvd/cve-2022-37434

Release 1.12.5

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.5 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.5 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.5 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.5 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.5 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.5 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.5 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.5 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-37434	zlib	CRITICAL	1.2.12-r1	1.2.12-r2	https://avd.aquasec.com/nvd/cve-2022-37434

Release 1.12.4

Gloo access-logger image

No scan found

Gloo certgen image

No scan found

Gloo discovery image

No scan found

Gloo gloo image

No scan found

Gloo gloo-envoy-wrapper image

No scan found

Gloo ingress image

No scan found

Gloo sds image

No scan found

Gloo kubectl image

No scan found

Release 1.12.3

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.3 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.3 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.3 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.3 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.3 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.3 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.3 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo kubectl image

Vulnerabilities Listed for quay.io/solo-io/kubectl:1.12.3 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-37434	zlib	CRITICAL	1.2.12-r1	1.2.12-r2	https://avd.aquasec.com/nvd/cve-2022-37434

Release 1.12.2

Gloo access-logger image

Vulnerabilities Listed for quay.io/solo-io/access-logger:1.12.2 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-37434	zlib	CRITICAL	1.2.12-r1	1.2.12-r2	https://avd.aquasec.com/nvd/cve-2022-37434

Vulnerabilities Listed for usr/local/bin/access-logger

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo certgen image

Vulnerabilities Listed for quay.io/solo-io/certgen:1.12.2 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-37434	zlib	CRITICAL	1.2.12-r1	1.2.12-r2	https://avd.aquasec.com/nvd/cve-2022-37434

Vulnerabilities Listed for usr/local/bin/certgen

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo discovery image

Vulnerabilities Listed for quay.io/solo-io/discovery:1.12.2 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-37434	zlib	CRITICAL	1.2.12-r1	1.2.12-r2	https://avd.aquasec.com/nvd/cve-2022-37434

Vulnerabilities Listed for usr/local/bin/discovery

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo image

Vulnerabilities Listed for quay.io/solo-io/gloo:1.12.2 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-37434	zlib	CRITICAL	1.2.12-r1	1.2.12-r2	https://avd.aquasec.com/nvd/cve-2022-37434

Vulnerabilities Listed for usr/local/bin/gloo

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo gloo-envoy-wrapper image

Vulnerabilities Listed for quay.io/solo-io/gloo-envoy-wrapper:1.12.2 (alpine 3.15.0)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-37434	zlib	CRITICAL	1.2.12-r1	1.2.12-r2	https://avd.aquasec.com/nvd/cve-2022-37434

Vulnerabilities Listed for usr/local/bin/envoyinit

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149

Gloo ingress image

Vulnerabilities Listed for quay.io/solo-io/ingress:1.12.2 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-37434	zlib	CRITICAL	1.2.12-r1	1.2.12-r2	https://avd.aquasec.com/nvd/cve-2022-37434

Vulnerabilities Listed for usr/local/bin/ingress

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8	https://avd.aquasec.com/nvd/cve-2022-32149
CVE-2022-28948	gopkg.in/yaml.v3	HIGH	v3.0.0-20210107192922-496545a6307b	3.0.0-20220521103104-8f96da9f5d5e	https://avd.aquasec.com/nvd/cve-2022-28948

Gloo sds image

Vulnerabilities Listed for quay.io/solo-io/sds:1.12.2 (alpine 3.15.5)

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-4450	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libcrypto1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-4450	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2022-4450
CVE-2023-0215	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0215
CVE-2023-0286	libssl1.1	HIGH	1.1.1q-r0	1.1.1t-r0	https://avd.aquasec.com/nvd/cve-2023-0286
CVE-2022-37434	zlib	CRITICAL	1.2.12-r1	1.2.12-r2	https://avd.aquasec.com/nvd/cve-2022-37434

Vulnerabilities Listed for usr/local/bin/sds

Vulnerability ID	Package	Severity	Installed Version	Fixed Version	Reference
CVE-2022-27664	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.0.0-20220906165146-f3363e06e74c	https://avd.aquasec.com/nvd/cve-2022-27664
CVE-2022-41723	golang.org/x/net	HIGH	v0.0.0-20211209124913-491a49abca63	0.7.0	https://avd.aquasec.com/nvd/cve-2022-41723
CVE-2022-32149	golang.org/x/text	HIGH	v0.3.7	0.3.8