Lucene search

GO-2024-2494 Host system modification in github.com/moby/buildkit

🗓️ 12 Feb 2024 18:16:45Reported by GoogleType

osv🔗 osv.dev👁 15 Views

GitHub BuildKit host system modification vulnerability

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 72
AlpineLinux	CVE-2024-23652	31 Jan 202422:15	–	alpinelinux
Veracode	Arbitrary File Deletion	1 Feb 202408:03	–	veracode
CVE	CVE-2024-23652	31 Jan 202422:15	–	cve
Github Security Blog	BuildKit vulnerable to possible host system access from mount stub cleaner	31 Jan 202422:43	–	github
OSV	CGA-RPW2-9V92-4G7F	6 Jun 202412:26	–	osv
OSV	CGA-JH3P-VG64-HM2M	6 Jun 202412:28	–	osv
OSV	CGA-9RHV-6X5X-P3WH	6 Jun 202412:25	–	osv
OSV	CGA-X5PW-XWXW-P7JX	6 Jun 202412:29	–	osv
OSV	CGA-4V29-M22X-5M58	6 Jun 202412:22	–	osv
OSV	CGA-2CV7-75Q6-CVRQ	6 Jun 202412:09	–	osv

Source	Link
github	www.github.com/moby/buildkit/security/advisories/GHSA-4v98-7qmw-rqr8
github	www.github.com/moby/buildkit/pull/4603
github	www.github.com/moby/buildkit/releases/tag/v0.12.5

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Feb 2024 18:45Current

8.6High risk

Vulners AI Score8.6

CVSS39.1 - 10

EPSS0.04855