N/A

CVSS Score

-

CVSS Score

Basic Information

CVE ID

CVE-2025-65965

GHSA ID

GHSA-6gxw-85q2-q646

EPSS Score

CWE

CWE-212

Published

11/25/2025

Updated

11/25/2025

KEV Status

Technology

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-65965

CVE-2025-65965: Grype has a credential disclosure vulnerability in its JSON output

A credential disclosure vulnerability was found in Grype, affecting versions v0.68.0 through v0.104.0. If registry credentials are defined and the output of grype is written using the --file or --output json=<file> option, the registry credentials will be included unsanitized in the output file.

Impact

In Grype versions v0.68.0 through v0.104.0, when registry authentication is configured, those credentials can be incorrectly included in the output of a Grype scan (regardless of whether those credentials are actively being used for the current scan). Users that do not have registry authentication configured are not affected by this issue.

Registry credentials can be set via the Grype configuration file (e.g. registry.auth[].username, registry.auth[].password, registry.auth[].token) or environment variables (e.g., GRYPE_REGISTRY_AUTH_USERNAME, GRYPE_REGISTRY_AUTH_PASSWORD, GRYPE_REGISTRY_AUTH_TOKEN).

In order for the authentication details to be improperly included, the Grype file output format must be set to json with output target set to a file. For example --output json=file.json or --output json --file file.json. When these conditions are met, the configured credentials are not sanitized as they should be in the resulting JSON output file.

The authentication details could also be leaked via a malformed Grype Template. A Grype Template that includes the Descriptor.Registry.Auth fields would also include the unsanitized registry credentials. There are no known templates that include these fields.

Patches

The patch has been released in v0.104.1.

Workaround

Users running affected versions of grype can work around this vulnerability by redirecting stdout to a file instead of using the --file or --output options.

For example, replacing the command:

# using `--output json=path` (or `--file`) leaks credentials
grype --output json=test.json alpine:latest

with

# no use of `--output json=path` or `--file`. Output is sanitized...
grype --output json alpine:latest > test.json

...results in the same test.json output, but the credentials will be properly sanitized.

Resources

Patch pull request: https://github.com/anchore/grype/pull/3068

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2025-65965

CVE-2025-65965:

N/A

CVSS Score

-

CVSS Score

Basic Information

CVE ID

CVE-2025-65965

GHSA ID

GHSA-6gxw-85q2-q646

EPSS Score

CWE

CWE-212

Published

11/25/2025

Updated

11/25/2025

KEV Status

Technology

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
github.com/anchore/grype	go	>= 0.68.0, < 0.104.1	0.104.1

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability lies in the improper handling of sensitive registry credentials during the generation of JSON reports. The analysis of the patch commit c99f79de49a58dc16d7fd8f35160b169b87db9de reveals two key functions involved in the vulnerability.

First, the options.secret.String() method in cmd/grype/cli/options/secret.go was the root cause of the credential disclosure. This method, intended to provide a string representation of a secret type, was implemented to return the raw, unredacted secret. Go's standard JSON library, when encoding a struct, will use the String() method for fields that implement the fmt.Stringer interface if a MarshalText method is not present. This resulted in sensitive credentials being serialized directly into the JSON output.

Second, the commands.runGrype function in cmd/grype/cli/commands/root.go was the high-level orchestrator of this vulnerable process. It gathered all the configuration, including the registry credentials, and passed it down for report generation via models.NewDocument. The patch adds a line to explicitly nullify the credentials (opts.Registry.Auth = nil) before this step, confirming that this function was part of the chain that passed sensitive data to the serialization process.

Therefore, an attacker could trigger this vulnerability by configuring registry credentials and running a Grype scan with the output directed to a JSON file using --file or --output json=<file>. During exploitation, a runtime profile would show commands.runGrype initiating the process and options.secret.String being called during the JSON serialization phase, leaking the credentials.

Vulnerable functions

commands.runGrype

cmd/grype/cli/commands/root.go

The `runGrype` function orchestrates the scanning and reporting process. Before the patch, it passed the application options (`opts`), which contained the unsanitized registry credentials, directly to the `models.NewDocument` function. This function then used these options to generate the final report. The patch mitigates this by explicitly setting `opts.Registry.Auth = nil` before the report is created, thus preventing the credentials from being included. This indicates that `runGrype` was the high-level function responsible for the vulnerable data flow.

options.secret.String

cmd/grype/cli/options/secret.go

The `secret.String()` method is a `fmt.Stringer` implementation for the `secret` type, which is used to hold sensitive data like passwords and tokens. The JSON encoder in Go can use the `String()` method to serialize a value. The vulnerable version of this function returned the raw secret as a string (`return string(r)`). When the report object containing registry credentials was marshalled to JSON, this method was called, causing the credentials to be written in plain text to the output file. The patch changes this method to return a redacted string (`*******`) and adds a `MarshalText` method to ensure this redaction happens during JSON serialization.

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

N/A

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2025-65965: Grype has a credential disclosure vulnerability in its JSON output

Impact

Patches

Workaround

Resources

CVE-2025-65965:

N/A

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Technical Details

N/A

N/A

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

CVE-2025-65965: Grype has a credential disclosure vulnerability in its JSON output

Impact

Patches

Workaround

Resources

Basic Information

Basic Information

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI