crtical, high and medium Vulnerabilities in new version image #526
Description
Image: sig-storage/csi-node-driver-registrar:v2.13.0
golang.org/x/net resource ->
| Name | Severity | Score | Fix Version |
|---|---|---|---|
| CVE-2025-22870 | medium | 4.4 | 0.36.0 |
| CVE-2025-22872 | medium | 6.5 | 0.38.0 |
stdlib resource ->
| Name | Severity | Score | Fix Version |
|---|---|---|---|
| CVE-2025-22871 | critical | 9.1 | 1.23.8, 1.24.2 |
| CVE-2025-22866 | medium | 4 | 1.22.12, 1.23.6, 1.24.0-rc.3 |
| CVE-2025-4673 | medium | 6.8 | 1.23.10, 1.24.4 |
| CVE-2024-45336 | medium | 6.1 | 1.22.11, 1.23.5, 1.24.0-rc.2 |
| CVE-2024-45341 | medium | 6.1 | 1.22.11, 1.23.5, 1.24.0-rc.2 |
| CVE-2025-0913 | medium | 5.5 | 1.23.10, 1.24.4 |
Description: Our security scans detected a critical, high and medium vulnerability in these above mentioned image.
Could we have an estimate on the plan to fix these vulnerabilities? Thanks in advance!