Wolfi is a community Linux OS designed for the container and cloud-native era; it is a Linux distribution based on Alpine.

Wolfi

Chainguard is a Linux distribution based on Alpine. It's the commercial version of the Wolfi distro.

Chainguard

MinimOS is a minimalist operating system designed for simplicity and efficiency. It aims to provide only essential functionalities, making it lightweight and suitable for resource-constrained environments. MinimOS is often used in embedded systems or as a base for custom operating system development.

MinimOS

Alpine Linux is a Linux distribution based on musl and BusyBox, designed for security, simplicity, and resource efficiency.

Linux Alpine

Step CA is an online certificate authority for secure, automated certificate management for DevOps. Prior to 0.29.0, there is an improper authorization check for SSH certificate revocation. This affects deployments configured with the SSHPOP provisioner. This vulnerability is fixed in 0.29.0.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-44005	CRITICAL	10	Wolfi	caddy	No	Yes	Dec 03, 2025
CVE-2025-66416	HIGH	7.6	Wolfi	open-webui	No	Yes	Dec 02, 2025
CVE-2025-66414	HIGH	7.6	Wolfi	@modelcontextprotocol/sdk	No	Yes	Dec 02, 2025
CVE-2025-61729	HIGH	7.5	cAdvisor	loki-fips-3.6	No	Yes	Dec 02, 2025
CVE-2025-66406	MEDIUM	5	Wolfi	github.com/smallstep/certificates	No	Yes	Dec 03, 2025

CVE-2025-66406:
Wolfi vulnerability analysis and mitigation

5

Related Wolfi vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2025-66406: Wolfi vulnerability analysis and mitigation