This knowledge article demonstrates how to debug and verify if the violations under the
Fixable CVSS >= 7 system policy are false positives. In this article, we will use the
istio/kubectl:1.2.4 image as an example to demonstrate how to verify if the CVEs found in the image layers are false positives or not.
A running depl...
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.