Lucene search

WolfiWOLFI:CVE-2024-28180

HistorySep 28, 2024 - 9:12 p.m.

CVE-2024-28180 vulnerabilities

2024-09-2821:12:41

packages.wolfi.dev

vulnerabilities

packages

istio-pilot

keda

grafana

falco

rekor

vault

bank-vaults

cert-manager

cilium

skaffold

aactl

melange

timestamp-authority

kots

cosign

fulcio

guac

spire-server

skopeo

nerdctl

kubescape

wolfictl

zot

tekton-pipelines

argo-workflows

grpc-health-probe

weaviate

frp

sigstore-scaffolding

oauth2-proxy

step

kyverno

policy-controller

rook

step-ca

tekton-chains

zarf

traefik

dex

rabbitmq-messaging-topology-operator

external-secrets-operator

terragrunt

kargo

argo-cd

gitsign

goreleaser

cloudflared

unix

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

AI Score

6.2

Confidence

Low

EPSS

0.001

Percentile

17.1%

JSON

Vulnerabilities for packages: minio, aactl, dex, tkn, vault, sigstore-scaffolding, grpc-health-probe, cosign, dgraph, falco, goreleaser, kubernetes-dashboard, argo-cd, istio-pilot-discovery, nerdctl, zarf, oauth2-proxy, wolfictl, istio-operator, argo-workflows, istio-pilot-agent, ko, fulcio, step, kube-rbac-proxy, timestamp-authority, cert-manager, rook, step-ca, rekor, weaviate, terragrunt, rabbitmq-messaging-topology-operator, containerd, frp, tekton-chains, tekton-pipelines, external-secrets-operator, gitsign, istio-cni, falcoctl, cilium, gomplate, cloudflared, skopeo, guac, policy-controller, melange, vexctl, grafana, keda, flux-source-controller, flux-kustomize-controller, slsa-verifier, spire-server, kargo, skaffold, apko

OSVersionArchitecturePackageVersionFilename
Wolfiunknownx86_64aactl<= 0.4.12-r7aactl-0.4.12-r7.apk
Wolfiunknownaarch64aactl<= 0.4.12-r7aactl-0.4.12-r7.apk
Wolfiunknownx86_64apko<= 0.14.0-r3apko-0.14.0-r3.apk
Wolfiunknownaarch64apko<= 0.14.0-r3apko-0.14.0-r3.apk
Wolfiunknownx86_64argo-cd<= 2.10.2-r2argo-cd-2.10.2-r2.apk
Wolfiunknownaarch64argo-cd<= 2.10.2-r2argo-cd-2.10.2-r2.apk
Wolfiunknownx86_64argo-workflows<= 3.5.5-r2argo-workflows-3.5.5-r2.apk
Wolfiunknownaarch64argo-workflows<= 3.5.5-r2argo-workflows-3.5.5-r2.apk
Wolfiunknownx86_64cert-manager<= 1.14.4-r1cert-manager-1.14.4-r1.apk
Wolfiunknownaarch64cert-manager<= 1.14.4-r1cert-manager-1.14.4-r1.apk

OS	Version	Architecture	Package	Version	Filename
Wolfi	unknown	x86_64	aactl	<= 0.4.12-r7	aactl-0.4.12-r7.apk
Wolfi	unknown	aarch64	aactl	<= 0.4.12-r7	aactl-0.4.12-r7.apk
Wolfi	unknown	x86_64	apko	<= 0.14.0-r3	apko-0.14.0-r3.apk
Wolfi	unknown	aarch64	apko	<= 0.14.0-r3	apko-0.14.0-r3.apk
Wolfi	unknown	x86_64	argo-cd	<= 2.10.2-r2	argo-cd-2.10.2-r2.apk
Wolfi	unknown	aarch64	argo-cd	<= 2.10.2-r2	argo-cd-2.10.2-r2.apk
Wolfi	unknown	x86_64	argo-workflows	<= 3.5.5-r2	argo-workflows-3.5.5-r2.apk
Wolfi	unknown	aarch64	argo-workflows	<= 3.5.5-r2	argo-workflows-3.5.5-r2.apk
Wolfi	unknown	x86_64	cert-manager	<= 1.14.4-r1	cert-manager-1.14.4-r1.apk
Wolfi	unknown	aarch64	cert-manager	<= 1.14.4-r1	cert-manager-1.14.4-r1.apk