Lucene search
WolfiWOLFI:CVE-2024-23653HistoryJul 05, 2024 - 9:08 p.m.
CVE-2024-23653 vulnerabilities
2024-07-0521:08:40
packages.wolfi.dev
50
cve-2024-23653
vulnerabilities
packages
guac
zot
datadog-agent
skaffold
buildkitd
kaniko
docker
conftest
trivy
kubescape
scorecard
unix
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
29.9%
Vulnerabilities for packages: guac, datadog-agent, conftest, zot, skaffold, buildkitd, kubescape, scorecard, trivy, kaniko, docker
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Wolfi | unknown | x86_64 | buildkitd | <= 0.12.5-r0 | buildkitd-0.12.5-r0.apk |
| Wolfi | unknown | aarch64 | buildkitd | <= 0.12.5-r0 | buildkitd-0.12.5-r0.apk |
| Wolfi | unknown | x86_64 | conftest | <= 0.49.0-r1 | conftest-0.49.0-r1.apk |
| Wolfi | unknown | aarch64 | conftest | <= 0.49.0-r1 | conftest-0.49.0-r1.apk |
| Wolfi | unknown | x86_64 | datadog-agent | <= 7.50.3-r1 | datadog-agent-7.50.3-r1.apk |
| Wolfi | unknown | aarch64 | datadog-agent | <= 7.50.3-r1 | datadog-agent-7.50.3-r1.apk |
| Wolfi | unknown | x86_64 | docker | <= 25.0.2-r0 | docker-25.0.2-r0.apk |
| Wolfi | unknown | aarch64 | docker | <= 25.0.2-r0 | docker-25.0.2-r0.apk |
| Wolfi | unknown | x86_64 | guac | <= 0.4.0-r1 | guac-0.4.0-r1.apk |
| Wolfi | unknown | aarch64 | guac | <= 0.4.0-r1 | guac-0.4.0-r1.apk |
Related
cbl_mariner
cbl_mariner
cve
cve
CVE-2024-23653
2024-01-31 22:15:54
veracode
veracode
Missing Entitlement Check
2024-02-01 07:42:22
alpinelinux
alpinelinux
CVE-2024-23653
2024-01-31 22:15:54
osv
osv
Buildkit's interactive containers API does not validate entitlements check
2024-01-31 22:43:20
Privilege escalation in github.com/moby/buildkit
2024-02-07 04:19:28
cgr
cgr
CVE-2024-23653 vulnerabilities
2024-05-19 03:07:16
redhatcve
redhatcve
CVE-2024-23653
2024-02-01 14:31:03
ubuntucve
ubuntucve
CVE-2024-23653
2024-01-31 00:00:00
nvd
nvd
CVE-2024-23653
2024-01-31 22:15:54
github
github
Buildkit's interactive containers API does not validate entitlements check
2024-01-31 22:43:20
prion
prion
Design/Logic Flaw
2024-01-31 22:15:00
cvelist
cvelist
nessus
nessus
CBL Mariner 2.0 Security Update: docker-compose / moby-engine / docker-buildx / moby-cli (CVE-2024-23653)
2024-07-03 00:00:00
SUSE SLES12 Security Update : docker (SUSE-SU-2024:0587-1)
2024-02-23 00:00:00
SUSE SLES12 Security Update : docker (SUSE-SU-2024:1469-1)
2024-04-30 00:00:00
f5
f5
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:0586-1)
2024-02-23 00:00:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2024-02-28 17:30:02
thn
thn
RunC Flaws Enable Container Escapes, Granting Attackers Host Access
2024-01-31 20:00:00
gentoo
gentoo
podman: Multiple Vulnerabilities
2024-07-05 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
29.9%
Related for WOLFI:CVE-2024-23653