Scan Summary
Assets scanned
633
Issues found
537
Malicious containers
3
Last scan

(2 hours ago)
Current status
Last scan: Ok
Container Images
Among 20 analyzed container images, the following were found to be vulnerable:
nss: Memory corruption in decodeECorDsaSignature with DSA signatures (and RSA-PSS)
openssl: SM2 Decryption Buffer Overflow
gnutls: Use after free in client key_share extension
gnutls: Use after free in client_send_params in lib/ext/pre_shared_key.c
lz4: memory corruption due to an integer overflow bug caused by memmove argument
nettle: Out of bounds memory access in signature verification
nettle: Remote crash in RSA decryption via manipulated ciphertext
openssl: integer overflow in CipherUpdate
libxml2: Heap-based buffer overflow in xmlEncodeEntitiesInternal() in entities.c
systemd: use-after-free when asynchronous polkit queries are performed
glibc: regular-expression match via proceed_next_node in posix/regexec.c leads to heap-based buffer over-read
glibc: iconv when processing invalid multi-byte input sequences fails to advance the input state, which could result in an infinite loop
glibc: Assertion failure in ISO-2022-JP-3 gconv module related to combining characters
glibc: Arbitrary read in wordexp()
rpm: Signature checks bypass via corrupted rpm package
Latest malicious container images:
Repository Image tag Malware
change-detect metal3d-xmrig Unix.Trojan.Generic-9919438-0
kitex33237/ubuntu2 latest Unix.Trojan.Generic-9919438-0
resultui latest Js.Coinminer.Agent-7049519-0
Top malware detections:
Malware Malicious files
Js.Coinminer.Agent-7049519-0 2
Unix.Trojan.Generic-9919438-0 2
Top ports found to be exposed by containers:
Top networking services that match the ports exposed by containers:
Elastic File System
Elastic Beanstalk
Certificate Manager
Systems Manager
API Gateway
Transfer Family
CloudFormation
DynamoDB
Scan Summary
Account name Assets scanned Issues found Malicious containers Last scan Current Status
Total 705 702 3
Container Images
Among 36 analyzed container images across 2 accounts, the following were found to be vulnerable:
Account name Critical High Medium Legend
Total 17 2
Latest malicious container images:
Account name Infected Image(s)
Top malware detections:
Malware Malicious files
Js.Coinminer.Agent-7049519-0 2
Unix.Trojan.Generic-9919438-0 1
Multios.Coinminer.Miner-6781728-2 1
Top ports found to be exposed by containers:
Top networking services that match the ports exposed by containers:
Security Issues
Critical
161
High
75
Medium
276
Low
189
Informational
0
Suppressed
1
Account name Critical High Medium Low Informational Suppressed Legend
Total 161 75 276 189 1