CGA-qfp3-q7c8-w6mc

Source
https://images.chainguard.dev/security/CGA-qfp3-q7c8-w6mc
Import Source
https://advisories.cgr.dev/chainguard/v3/osv/CGA-qfp3-q7c8-w6mc.json
JSON Data
https://api.test.osv.dev/v1/vulns/CGA-qfp3-q7c8-w6mc
Upstream
Published
2026-05-06T13:50:52Z
Modified
2026-07-17T19:18:10.305889290Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details
References

Affected packages

Chainguard / loki-fips-3.6-loki-canary

Package

Name
loki-fips-3.6-loki-canary
Purl
pkg:apk/chainguard/loki-fips-3.6-loki-canary?arch=x86_64

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.6.12-r0

Ecosystem specific

{
    "components": [
        {
            "architecture": "x86_64",
            "latest_event_timestamp": "2026-07-14T14:27:21Z",
            "component_version": "v0.305.1-0.20250806170547-208187eaa19b",
            "component_name": "github.com/prometheus/prometheus",
            "component_type": "go-module",
            "component_location": "/usr/bin/loki-canary",
            "component_purl": "pkg:golang/github.com/prometheus/prometheus@v0.305.1-0.20250806170547-208187eaa19b",
            "latest_event_status": "fixed"
        }
    ]
}

Database specific

source
"https://advisories.cgr.dev/chainguard/v3/osv/CGA-qfp3-q7c8-w6mc.json"