5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N
6.2 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.7%
Vulnerabilities for packages: mlflow, reflex, superset, datadog-agent, patroni, kubeflow-pipelines, ggshield, confluent-docker-utils, kubeflow-jupyter-web-app, airflow, kubeflow-volumes-web-app, py3.10-tensorflow-core, py3-cassandra-medusa, kubeflow-katib, k8s-sidecar, jwt-tool, az
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Wolfi | unknown | x86_64 | airflow | <= 2.9.1-r1 | airflow-2.9.1-r1.apk |
Wolfi | unknown | aarch64 | airflow | <= 2.9.1-r1 | airflow-2.9.1-r1.apk |
Wolfi | unknown | x86_64 | az | <= 2.61.0-r0 | az-2.61.0-r0.apk |
Wolfi | unknown | aarch64 | az | <= 2.61.0-r0 | az-2.61.0-r0.apk |
Wolfi | unknown | x86_64 | confluent-docker-utils | <= 0.0.78-r0 | confluent-docker-utils-0.0.78-r0.apk |
Wolfi | unknown | aarch64 | confluent-docker-utils | <= 0.0.78-r0 | confluent-docker-utils-0.0.78-r0.apk |
Wolfi | unknown | x86_64 | datadog-agent | <= 7.54.0-r1 | datadog-agent-7.54.0-r1.apk |
Wolfi | unknown | aarch64 | datadog-agent | <= 7.54.0-r1 | datadog-agent-7.54.0-r1.apk |
Wolfi | unknown | x86_64 | ggshield | <= 1.28.0-r1 | ggshield-1.28.0-r1.apk |
Wolfi | unknown | aarch64 | ggshield | <= 1.28.0-r1 | ggshield-1.28.0-r1.apk |
5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N
6.2 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.7%