Edition 2: Containers; Q4 2024

Containers: The Fastest Growing — and Weakest — Link in Software Supply Chains.


Today's interconnected world increasingly relies on containerized applications, but these containers are introducing risks that far exceed common understanding.

Our research reveals:

  • An average of 604 vulnerabilities per container, with over 40% ranked as Critical or High CVSS severity.
  • 12.4% of components are manifestless, making traditional scanning tools insufficient.
  • Significant non-CVE risks, including misconfigurations and overly permissive identity controls.

This report underscores the critical need for visibility into containerized software and emphasizes the role of SBOMs in managing software supply chain risks.

 

Eyebrow goes here Headline Goes Here Lorem

Subheadline text goes here lorem ipsum dolor.