False positives CVE-2025-58050

### Describe the bug

Hey,

[CVE-2025-58050](https://nvd.nist.gov/vuln/detail/CVE-2025-58050) only affects version 10.45 of PCRE2. Other versions should not report any vulnerability.

### Current behavior

`jf docker scan nginxinc/nginx-unprivileged:1.29.1-alpine-slim` shows:

<img width="648" height="182" alt="Image" src="https://github.com/user-attachments/assets/3c7c8000-9714-4f42-8516-b1bc82561c8f" />

### Reproduction steps

`jf docker scan nginxinc/nginx-unprivileged:1.29.1-alpine-slim`

### Expected behavior

No CVE reported.

### JFrog CLI-Security version

jf version 2.78.10

### JFrog CLI version (if applicable)

jf version 2.78.10

### Operating system type and version

Ubuntu 24.04

### JFrog Xray version

3.118.23

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

False positives CVE-2025-58050 #568

Describe the bug

Current behavior

Reproduction steps

Expected behavior

JFrog CLI-Security version

JFrog CLI version (if applicable)

Operating system type and version

JFrog Xray version

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

False positives CVE-2025-58050 #568

Description

Describe the bug

Current behavior

Reproduction steps

Expected behavior

JFrog CLI-Security version

JFrog CLI version (if applicable)

Operating system type and version

JFrog Xray version

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions