Lucene search

ChainguardCHAINGUARD:CVE-2024-28122

HistoryMay 15, 2024 - 9:07 a.m.

CVE-2024-28122 vulnerabilities

2024-05-1509:07:00

Chainguard

packages.cgr.dev

cve-2024-28122

vulnerabilities

packages

software

istio-pilot-agent

istio-operator

falcoctl

spire-server

falco

boring-registry

kyverno

external-secrets

istio-cni

minio

6.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

6.7 Medium

AI Score

Confidence

High

3.3 Low

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

MULTIPLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:M/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

14.6%

JSON

Vulnerabilities for packages: minio-fips, falcoctl, istio-pilot-discovery, external-secrets-fips, kyverno, boring-registry-fips, mc-fips, istio-operator, mc, minio, istio-pilot-agent, spire-server, istio-operator-fips, boring-registry, spire-server-fips, istio-pilot-discovery-fips, external-secrets, istio-cni, falco, falcoctl-fips, istio-fips, istio-cni-fips, istio-pilot-agent-fips, external-secrets-operator

CPENameOperatorVersion
boring-registry-fipsle0.13.2-r2
external-secretsle0.7.3-r1
external-secrets-fipsle0.9.13-r2
falcoctl-fipsle0.7.3-r3
istio-cnile1.19.7-r3
istio-cni-fipsle1.19.7-r2
istio-fipsle1.20.3-r4
istio-operatorle1.19.8-r1
istio-operator-fipsle1.19.8-r1
istio-pilot-agentle1.19.8-r1

Name	Operator	Version
boring-registry-fips	le	0.13.2-r2
external-secrets	le	0.7.3-r1
external-secrets-fips	le	0.9.13-r2
falcoctl-fips	le	0.7.3-r3
istio-cni	le	1.19.7-r3
istio-cni-fips	le	1.19.7-r2
istio-fips	le	1.20.3-r4
istio-operator	le	1.19.8-r1
istio-operator-fips	le	1.19.8-r1
istio-pilot-agent	le	1.19.8-r1