WolfiWOLFI:CVE-2024-24791CVE-2024-24791 vulnerabilities
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
Vulnerabilities for packages: docker-credential-acr-env, velero, crane, php-fpm_exporter, addon-resizer, cluster-proportional-autoscaler, metallb, policy-controller, kubernetes-csi-external-provisioner, kubevela, grype, metrics-server, nodetaint, secrets-store-csi-driver-provider-azure, authservice, glab, teleport, dynamic-localpv-provisioner, aws-network-policy-agent, flux-source-controller, ollama, gitlab-kas, kots, calico, protoc-gen-go, wireguard-go, eksctl, timoni, crossplane, haproxy-ingress, src-fingerprint, bank-vaults, flyte, pombump, kube-bench, kubernetes-csi-external-attacher, boring-registry, cloudflared, cadvisor, nri-discovery-kubernetes, helm-docs, kube-vip, harbor-scanner-trivy, terragrunt, prometheus-elasticsearch-exporter, nri-mysql, grpcurl, fluent-operator, kwok, ctop, dagger, croc, configmap-reload, conftest, age, step-ca, flux-kustomize-controller, supercronic, cue, multus-cni, certificate-transparency, kyverno, jaeger-agent, bazelisk, kine, fluent-bit-plugin-loki, flannel-cni-plugin, spicedb, opa, nri-nagios, dataplaneapi, neuvector-sigstore-interface, gosu, prometheus-bind-exporter, nri-mssql, harbor-registry, docker-credential-gcr, go-bindata, litefs, hello-world-golang, ferretdb, trillian, newrelic-infrastructure-agent, gobuster, prometheus-stackdriver-exporter, nri-apache, sbom-scorecard, karpenter, prometheus-mysqld-exporter, coredns, istio-operator, wire-go, step, yq, oras, kafka_exporter, buf, prometheus-statsd-exporter, flux-notification-controller, pulumi-language-yaml, k9s, hey, opentelemetry-collector-contrib, rootlesskit, git-lfs, metacontroller, slsa-verifier, pulumi-language-java, influx, prometheus-adapter, aws-load-balancer-controller, cni-plugins, tailscale, xcaddy, mage, nats, external-secrets-operator, stakater-reloader, overmind, grafana-agent-operator, ytt, redka, clusterctl, crossplane-provider-azure, falcoctl, wuzz, dagdotdev, gitleaks, hugo, litestream, grafana, nri-redis, pluto, vertical-pod-autoscaler, contour, consul, sbom-convert, pulumi-language-dotnet, nri-jmx, vt-cli, nri-haproxy, vault-k8s, containerd, step-issuer, spqr, wait-for-port, flux-helm-controller, mods, trust-manager, whereabouts, newrelic-nri-kube-events, mockery, nri-consul, kyverno-policy-reporter-kyverno-plugin, spegel, harbor, octo-sts, restic, wazero, go-licenses, opentofu, golangci-lint, regclient, q, crossplane-provider-aws, helm, nri-postgresql, traefik, paranoia, newrelic-nri-statsd, render-template, gomplate, istio-pilot-discovery, dex, gitsign, cilium, nsc, newrelic-infra-operator, caddy, kyverno-policy-reporter-ui, tekton-chains, dbmate, kaf, kubebuilder, dive, cri-tools, temporal-ui-server, zot, tekton-pipelines, jitsucom-bulker, yam, cert-manager, nri-mongodb, osv-scanner, chartmuseum, fzf, dockerize, gostatsd, gke-gcloud-auth-plugin, pulumi-kubernetes-operator, gops, datadog-agent, terraform-docs, kor, minify, nri-cassandra, telegraf, rclone, influxd, istio-pilot-agent, go, http-echo, terraform-provider-azurerm, hubble, docker-compose, prometheus-postgres-exporter, tflint, buildah, zarf, sonobuoy, hugo-extended, tempo, kubernetes-csi-external-resizer, cluster-api-controller, etcd, go-md2man, nats-server, postgres-operator, kubernetes-dashboard-metrics-scraper, external-dns, kube-rbac-proxy, stern, secrets-store-csi-driver, hubble-ui, thanos-operator, weaviate, delve, extism, cortex, nri-memcached, tctl, cosign, prometheus-mongodb-exporter, tkn, kubeadm-bootstrap-controller, kubernetes-ingress-defaultbackend, mattermost, kyverno-policy-reporter, nri-kafka, atlantis, fulcio, local-path-provisioner, istio-cni, nfs-subdir-external-provisioner, harbor-cli, helm-operator, newrelic-prometheus-configurator, nuclei, flux, confluent-common-docker, keda, k3d, prometheus-blackbox-exporter, protoc-gen-go-grpc, k8sgpt, filebeat, flux-image-reflector-controller, flux-image-automation-controller, neuvector, cloud-sql-proxy, rabbitmq-cluster-operator, prometheus-beat-exporter, kubernetes-event-exporter, docker-credential-ecr-login, k8sgpt-operator, runc, guac, kubernetes-dns-node-cache, hivemind, skaffold, kpt, wolfictl, terraform, neuvector-scanner, prometheus, cloudnative-pg, ko, kubeflow-pipelines, gh, shfmt, govulncheck, ip-masq-agent, thanos, nri-f5, nri-kubernetes, wgcf, kube-logging-operator, cass-operator, gatekeeper, cfssl, pulumi, aws-efs-csi-driver, ingress-nginx-controller, helm-push, volume-modifier-for-k8s, mc, kargo, gitness, minio, aactl, capslock, terraform-provider-aws, goreleaser, rabbitmq-messaging-topology-operator, falcosidekick, k3s, gitlab-runner, aws-flb-cloudwatch, lazygit, dask-gateway, gpu-feature-discovery, kube-state-metrics, swagger, kubewatch, snyk-cli, kubecolor, kaniko, dgraph, s5cmd, kind, amass, prometheus-pushgateway, ipfs, src, nri-nginx, kafka-proxy, bincapz, rekor, velero-plugin-for-aws, actions-runner-controller, k8ssandra-operator, bom, task, smarter-device-manager, aws-flb-kinesis, oauth2-proxy, gitaly, kubernetes, nri-prometheus, nvidia-container-toolkit, up, cluster-autoscaler, kubernetes-dashboard, rabbitmq-default-user-credential-updater, tigera-operator, opentelemetry-collector, esbuild, kubernetes-csi-driver-hostpath, kustomize, fuse-overlayfs-snapshotter, terraform-provider-google, prometheus-alertmanager, vexctl, aws-ebs-csi-driver, ghaudit, kuberay-operator, memcached-exporter, speedtest-go, prometheus-redis-exporter, gobump, doppler-kubernetes-operator, syft, libnvidia-container, kubeadm-controlplane-controller, kubernetes-csi-node-driver-registrar, aws-flb-firehose, logstash-exporter, prometheus-nats-exporter, controller-gen, cert-manager-cmctl, flannel, secrets-store-csi-driver-provider-gcp, logstash, nri-elasticsearch, go-fips, mongo-tools, cert-exporter, scorecard, mkcert, nvidia-device-plugin, grafana-rollout-operator, local-static-provisioner, wave, secrets-store-csi-driver-provider-aws, direnv, cert-manager-webhook-pdns, velero-plugin-for-csi, petname, gcsfuse, nerdctl, kubernetes-csi-livenessprobe, cilium-cli, timestamp-authority, grafana-mimir, prometheus-node-exporter, temporal, skopeo, vault-csi-provider, vcluster
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Wolfi | unknown | x86_64 | aactl | <= 0.4.12-r15 | aactl-0.4.12-r15.apk |
| Wolfi | unknown | aarch64 | aactl | <= 0.4.12-r15 | aactl-0.4.12-r15.apk |
| Wolfi | unknown | x86_64 | actions-runner-controller | <= 0.9.3-r1 | actions-runner-controller-0.9.3-r1.apk |
| Wolfi | unknown | aarch64 | actions-runner-controller | <= 0.9.3-r1 | actions-runner-controller-0.9.3-r1.apk |
| Wolfi | unknown | x86_64 | addon-resizer | <= 1.8.22-r1 | addon-resizer-1.8.22-r1.apk |
| Wolfi | unknown | aarch64 | addon-resizer | <= 1.8.22-r1 | addon-resizer-1.8.22-r1.apk |
| Wolfi | unknown | x86_64 | age | <= 1.2.0-r1 | age-1.2.0-r1.apk |
| Wolfi | unknown | aarch64 | age | <= 1.2.0-r1 | age-1.2.0-r1.apk |
| Wolfi | unknown | x86_64 | amass | <= 4.2.0-r12 | amass-4.2.0-r12.apk |
| Wolfi | unknown | aarch64 | amass | <= 4.2.0-r12 | amass-4.2.0-r12.apk |
Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High