VDB

GCVE-110-OSM-2026-682

GCVE-110-OSM-2026-682
Advisory PublishedCVSS 9.6/10
Vulnetix · Advisory published March 22, 2026
Malicious Docker Hub image published by TeamPCP on March 22, 2026 as part of the Trivy supply-chain compromise. Second malicious image release following v0.69.5, containing the same backdoored Trivy binary with credential stealer and persistence dropper. Exfiltrates encrypted bundles to scan.aquasecurtiy.org and Cloudflare tunnel C2. === MALICIOUS CONTAINER IMAGE === Registry: Docker Hub (docker.io) Image: aquasec/trivy:v0.69.6 Published: March 22, 2026 Also distributed via: GHCR, ECR === EMBEDDED PAYLOAD === Identical to v0.69.5 — contains backdoored Trivy binary with: - Memory scraping: /proc/[PID]/mem targeting Runner.Worker - Filesystem sweep: 50+ sensitive credential paths - Encryption: AES-256-CBC + RSA-4096 - Exfil: POST to scan.aquasecurtiy.org and plug-tab-protective-relay.trycloudflare.com (tpcp.tar.gz) - Fallback: Creates tpcp-docs GitHub repo via GITHUB_TOKEN === PERSISTENCE (non-CI) === Dropper: ~/.config/systemd/user/sysmon.py C2: https://tdtqy-oyaaa-aaaae-af2dq-cai.raw.icp0.io/

Weaknesses (CWE)

CWE-506Embedded Malicious Code

Risk Scores

CVSS 3.1
9.6/10
Critical · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
unknownighack* (affected)
unknownv0.69.6 (affected)

References

advisory
vendor
vendor

Browse GCVE Records

73,443 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›