[StackRox] Debugging potential false positive violations under the "Fixable CVSS >= 7" system policy

Updated -


This knowledge article demonstrates how to debug and verify if the violations under the Fixable CVSS >= 7 system policy are false positives. In this article, we will use the istio/kubectl:1.2.4 image as an example to demonstrate how to verify if the CVEs found in the image layers are false positives or not.


A running depl...

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In