Skip to content

google/puppeteer Vulnerabilities #626

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
kvaghasia opened this issue Apr 7, 2025 · 0 comments
Open

google/puppeteer Vulnerabilities #626

kvaghasia opened this issue Apr 7, 2025 · 0 comments

Comments

@kvaghasia
Copy link

AWS Inspector in GovCloud has reported the following vulnerabilities for the image docker.io/grafana/grafana-image-renderer with tags: 3.12.1, 3.12.2, 3.12.3, 3.12.4. This image is running on AWS ECS services.

The identified vulnerabilities are categorized as Critical, High, and Medium:

Critical Vulnerabilities:

CVE-2024-9369 - google/puppeteer
CVE-2024-7971 - google/puppeteer

High Vulnerabilities:

CVE-2025-0291 - google/puppeteer
CVE-2024-8638 - google/puppeteer
CVE-2024-7025 - google/puppeteer
CVE-2024-9954 - google/puppeteer
CVE-2024-8904 - google/puppeteer
CVE-2024-7534 - google/puppeteer
CVE-2024-12695 - google/puppeteer
CVE-2024-7965 - google/puppeteer
CVE-2024-9959 - google/puppeteer
CVE-2024-7023 - google/puppeteer
CVE-2024-12381 - google/puppeteer
CVE-2025-0437 - google/puppeteer
CVE-2024-8193 - google/puppeteer
CVE-2024-8194 - google/puppeteer
CVE-2024-8198 - google/puppeteer
CVE-2024-9955 - google/puppeteer
CVE-2024-7967 - google/puppeteer
CVE-2024-7532 - google/puppeteer
CVE-2024-12693 - google/puppeteer
CVE-2024-8636 - google/puppeteer
CVE-2024-9602 - google/puppeteer
CVE-2024-9603 - google/puppeteer
CVE-2024-9122 - google/puppeteer
CVE-2024-10488 - google/puppeteer
CVE-2024-7536 - google/puppeteer
CVE-2024-11113 - google/puppeteer
CVE-2025-27113 - libxml2
CVE-2024-12382 - google/puppeteer
CVE-2024-10229 - google/puppeteer
CVE-2024-10230 - google/puppeteer
CVE-2024-10231 - google/puppeteer
CVE-2024-7970 - google/puppeteer
CVE-2024-7974 - google/puppeteer
CVE-2024-7973 - google/puppeteer
CVE-2024-7968 - google/puppeteer
CVE-2024-10487 - google/puppeteer
CVE-2024-10827 - google/puppeteer
CVE-2024-7550 - google/puppeteer
CVE-2024-7969 - google/puppeteer
CVE-2024-9121 - google/puppeteer
CVE-2024-12053 - google/puppeteer
CVE-2024-9123 - google/puppeteer
CVE-2024-12694 - google/puppeteer
CVE-2024-7966 - google/puppeteer
CVE-2024-7535 - google/puppeteer
CVE-2024-8362 - google/puppeteer
CVE-2024-7972 - google/puppeteer
CVE-2024-9960 - google/puppeteer
CVE-2024-12692 - google/puppeteer
CVE-2024-8905 - google/puppeteer

Medium Vulnerabilities:

CVE-2024-8908 - google/puppeteer
CVE-2024-11117 - google/puppeteer
CVE-2024-7976 - google/puppeteer
CVE-2024-8906 - google/puppeteer
CVE-2024-11403 - libjxl
CVE-2024-7981 - google/puppeteer
CVE-2024-7975 - google/puppeteer
CVE-2011-1802 - google/puppeteer
CVE-2024-9964 - google/puppeteer
CVE-2024-7978 - google/puppeteer
CVE-2024-11111 - google/puppeteer
CVE-2024-11498 - libjxl
CVE-2024-9958 - google/puppeteer
CVE-2024-11116 - google/puppeteer
CVE-2024-9962 - google/puppeteer
CVE-2011-1803 - google/puppeteer
CVE-2024-11110 - google/puppeteer
CVE-2024-9963 - google/puppeteer
CVE-2024-9966 - google/puppeteer

Given the number of vulnerabilities reported, could you please provide a timeline for when these issues are expected to be addressed?

Thank you for your attention to this matter, and I appreciate your prompt response.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@kvaghasia