WolfiWOLFI:CVE-2024-34156CVE-2024-34156 vulnerabilities
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
Vulnerabilities for packages: docker-credential-acr-env, velero, crane, apko, php-fpm_exporter, addon-resizer, cluster-proportional-autoscaler, metallb, policy-controller, kubernetes-csi-external-provisioner, kubevela, grype, metrics-server, nodetaint, secrets-store-csi-driver-provider-azure, node-feature-discovery, authservice, glab, teleport, gptscript, dynamic-localpv-provisioner, aws-network-policy-agent, flux-source-controller, grpc-health-probe, ollama, gitlab-kas, kots, calico, protoc-gen-go, wireguard-go, eksctl, timoni, crossplane, haproxy-ingress, src-fingerprint, azcopy, bank-vaults, flyte, pombump, kube-bench, kubernetes-csi-external-attacher, boring-registry, cloudflared, cadvisor, nri-discovery-kubernetes, helm-docs, kube-vip, harbor-scanner-trivy, prometheus-elasticsearch-exporter, nri-mysql, grpcurl, gitlab-pages, fluent-operator, kwok, ctop, dagger, croc, configmap-reload, conftest, age, step-ca, flux-kustomize-controller, supercronic, cue, multus-cni, certificate-transparency, kyverno, bazelisk, kine, fluent-bit-plugin-loki, flannel-cni-plugin, spicedb, opa, kube-metrics-adapter, nri-nagios, dataplaneapi, gosu, nri-mssql, harbor-registry, docker-credential-gcr, glow, go-bindata, litefs, hello-world-golang, ferretdb, trillian, newrelic-infrastructure-agent, prometheus-stackdriver-exporter, nri-apache, karpenter, prometheus-mysqld-exporter, coredns, wire-go, step, yq, victoriametrics-operator, kserve, spark-operator, oras, kafka_exporter, buf, prometheus-statsd-exporter, flux-notification-controller, pulumi-language-yaml, k9s, hey, kserve-modelmesh-serving, opentelemetry-collector-contrib, git-lfs, grafana-alloy, pulumi-language-java, influx, prometheus-adapter, victoriametrics, aws-load-balancer-controller, cni-plugins, k6, tailscale, xcaddy, mage, nats, external-secrets-operator, stakater-reloader, overmind, grafana-agent-operator, redka, clusterctl, crossplane-provider-azure, falcoctl, wuzz, dagdotdev, hugo, litestream, yace, nri-redis, hcloud, pluto, vertical-pod-autoscaler, contour, sbom-convert, pulumi-language-dotnet, nri-jmx, vt-cli, nri-haproxy, vault-k8s, containerd, step-issuer, spqr, wait-for-port, flux-helm-controller, mods, trust-manager, whereabouts, newrelic-nri-kube-events, mockery, nri-consul, kyverno-policy-reporter-kyverno-plugin, spegel, harbor, octo-sts, restic, wazero, go-licenses, opentofu, sbomqs, golangci-lint, crossplane-provider-aws, helm, nri-postgresql, traefik, paranoia, chezmoi, newrelic-nri-statsd, render-template, gomplate, dex, gitsign, cilium, caddy, kyverno-policy-reporter-ui, rancher-fleet, tekton-chains, dbmate, kaf, kubebuilder, dive, cri-tools, temporal-ui-server, zot, tekton-pipelines, jitsucom-bulker, yam, cert-manager, nri-mongodb, osv-scanner, chartmuseum, fzf, distribution, dockerize, gostatsd, gke-gcloud-auth-plugin, pulumi-kubernetes-operator, gops, datadog-agent, terraform-docs, kor, minify, nri-cassandra, telegraf, rclone, influxd, go, minio-operator, http-echo, terraform-provider-azurerm, hubble, docker-compose, prometheus-postgres-exporter, mockgen, rook, seaweedfs, buildah, zarf, kubescape, sonobuoy, hugo-extended, kubernetes-csi-external-resizer, cluster-api-controller, etcd, go-md2man, nats-server, postgres-operator, kubernetes-dashboard-metrics-scraper, external-dns, ksops, kube-rbac-proxy, sops, stern, secrets-store-csi-driver, hubble-ui, thanos-operator, weaviate, delve, kube-fluentd-operator, extism, cortex, nri-memcached, tctl, cosign, prometheus-mongodb-exporter, tkn, kubeadm-bootstrap-controller, kubernetes-ingress-defaultbackend, mattermost, kyverno-policy-reporter, nri-couchbase, nri-kafka, atlantis, frp, fulcio, local-path-provisioner, nfs-subdir-external-provisioner, harbor-cli, helm-operator, newrelic-prometheus-configurator, grafana-operator, nuclei, flux, confluent-common-docker, keda, k3d, prometheus-blackbox-exporter, protoc-gen-go-grpc, k8sgpt, filebeat, flux-image-reflector-controller, flux-image-automation-controller, victoriametrics-cluster, cloud-sql-proxy, rabbitmq-cluster-operator, prometheus-beat-exporter, kubernetes-event-exporter, docker-credential-ecr-login, k8sgpt-operator, runc, guac, kubernetes-dns-node-cache, hivemind, skaffold, terraform, neuvector-scanner, prometheus, cloudnative-pg, ko, kubeflow-pipelines, docker, gh, shfmt, argo-cd, govulncheck, ip-masq-agent, thanos, nri-f5, nri-kubernetes, wgcf, kube-logging-operator, cass-operator, gatekeeper, cfssl, pulumi, aws-efs-csi-driver, ingress-nginx-controller, helm-push, volume-modifier-for-k8s, istio, gitea, mc, descheduler, kargo, gitness, aactl, capslock, crossplane-provider-gcp, rancher-webhook, docker-cli, terraform-provider-aws, goreleaser, rabbitmq-messaging-topology-operator, falcosidekick, k3s, aws-flb-cloudwatch, lazygit, dask-gateway, gpu-feature-discovery, kube-state-metrics, swagger, kubewatch, snyk-cli, kubecolor, kaniko, envoy-ratelimit, dgraph, s5cmd, kind, melange, amass, prometheus-pushgateway, ipfs, nri-nginx, kafka-proxy, nri-rabbitmq, bincapz, rekor, velero-plugin-for-aws, actions-runner-controller, k8ssandra-operator, bom, task, smarter-device-manager, aws-flb-kinesis, oauth2-proxy, gitaly, nri-prometheus, fscrypt, sigstore-scaffolding, nvidia-container-toolkit, cluster-autoscaler, kubernetes-dashboard, rabbitmq-default-user-credential-updater, tigera-operator, opentelemetry-collector, esbuild, kubernetes-csi-driver-hostpath, kustomize, fuse-overlayfs-snapshotter, terraform-provider-google, prometheus-alertmanager, vexctl, aws-ebs-csi-driver, ghaudit, kuberay-operator, memcached-exporter, kuma, speedtest-go, prometheus-redis-exporter, gobump, doppler-kubernetes-operator, syft, libnvidia-container, kubeadm-controlplane-controller, kubernetes-csi-node-driver-registrar, aws-flb-firehose, logstash-exporter, prometheus-nats-exporter, controller-gen, cert-manager-cmctl, secrets-store-csi-driver-provider-gcp, logstash, nri-elasticsearch, mongo-tools, cert-exporter, k8ssandra-client, scorecard, mkcert, nvidia-device-plugin, grafana-rollout-operator, local-static-provisioner, wave, direnv, cert-manager-webhook-pdns, petname, gcsfuse, nerdctl, kubernetes-csi-livenessprobe, timestamp-authority, kserve-rest-proxy, grafana-mimir, prometheus-node-exporter, temporal, skopeo, vault-csi-provider
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Wolfi | unknown | x86_64 | aactl | <= 0.4.12-r18 | aactl-0.4.12-r18.apk |
| Wolfi | unknown | aarch64 | aactl | <= 0.4.12-r18 | aactl-0.4.12-r18.apk |
| Wolfi | unknown | x86_64 | actions-runner-controller | <= 0.9.3-r2 | actions-runner-controller-0.9.3-r2.apk |
| Wolfi | unknown | aarch64 | actions-runner-controller | <= 0.9.3-r2 | actions-runner-controller-0.9.3-r2.apk |
| Wolfi | unknown | x86_64 | addon-resizer | <= 1.8.22-r2 | addon-resizer-1.8.22-r2.apk |
| Wolfi | unknown | aarch64 | addon-resizer | <= 1.8.22-r2 | addon-resizer-1.8.22-r2.apk |
| Wolfi | unknown | x86_64 | age | <= 1.2.0-r2 | age-1.2.0-r2.apk |
| Wolfi | unknown | aarch64 | age | <= 1.2.0-r2 | age-1.2.0-r2.apk |
| Wolfi | unknown | x86_64 | amass | <= 4.2.0-r13 | amass-4.2.0-r13.apk |
| Wolfi | unknown | aarch64 | amass | <= 4.2.0-r13 | amass-4.2.0-r13.apk |
Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High