Upon downloading the lts and latest docker images there are currently two critical vulnerabilities in both relating to the packages org.yaml/snakeyaml version 1.33 and org.apache.sshd/sshd-common version 2.8.0.
It looks as if this issue can be resolved by updating the packages to the following versions if possible:
org.yaml/snakeyaml β version 2.0
org.apache.sshd/sshd-common β version 2.9.2
The Docker Image Vulnerability Database can be referenced at the links below.
sonarqube:lts
sonarqube:latest
I also have an open GitHub issue here in the docker-sonarqube repo.