GO-2025-4160 — Vulnetix

GO-2025-4160 PUBLISHED

Grype has a credential disclosure vulnerability in its JSON output in github.com/anchore/grype

Affected Products

Vendor	Product	Versions
github.com	anchore/grype	0.68.0, 0.68.0

Timeline

Nov 25, 2025 CVE Published
Feb 4, 2026 CVE Updated

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›