CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Hacker News•added 2024/01/31 8:0 p.m.•121 views

RunC Flaws Enable Container Escapes, Granting Attackers Host Access

Multiple security vulnerabilities have been disclosed in the runC command line tool that could be exploited by threat actors to escape the bounds of the container and stage follow-on attacks. The vulnerabilities, tracked as CVE-2024-21626, CVE-2024-23651, CVE-2024-23652, and CVE-2024-23653, have...

10CVSS9.7AI score0.59178EPSS

Exploits50

Positive Technologies•added 2024/01/31 12:0 a.m.•4 views

PT-2024-1519 · Buildkit +3 · Buildkit +3

Name of the Vulnerable Software and Affected Versions: BuildKit versions prior to 0.12.5 Description: The issue is related to a race condition that can occur when two malicious build steps run in parallel, sharing the same cache mounts with subpaths. This can lead to files from the host system...

10CVSS7.5AI score0.10301EPSS

Exploits20References138

Positive Technologies•added 2024/01/31 12:0 a.m.•2 views

PT-2024-1518 · Buildkit +1 · Buildkit +1

Name of the Vulnerable Software and Affected Versions: BuildKit versions prior to 0.12.5 Description: The issue is related to improper authorization in BuildKit, allowing a remote attacker to run containers with elevated privileges. BuildKit provides APIs for running interactive containers based ...

10CVSS6.8AI score0.10301EPSS

Exploits19References136

CNNVD•added 2024/01/31 12:0 a.m.•2 views

BuildKit 安全漏洞

BuildKit is concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit. A security vulnerability exists in BuildKit version v0.12.4 and earlier. An attacker could exploit this vulnerability to use the API to run containers with elevated privileges...

9.8CVSS6.9AI score0.10301EPSS

Positive Technologies•added 2024/01/31 12:0 a.m.•4 views

PT-2024-20002

Name of the Vulnerable Software and Affected Versions BuildKit versions prior to 0.12.5 Description A malicious BuildKit client or frontend could craft a request that could lead to BuildKit daemon crashing with a panic. The issue is related to the conversion of source code to build artifacts. As ...

10CVSS7.1AI score0.71918EPSS

Exploits35References351

Positive Technologies•added 2024/01/31 12:0 a.m.•2 views

PT-2024-1517 · Buildkit +3 · Buildkit +3

Name of the Vulnerable Software and Affected Versions: BuildKit versions prior to 0.12.5 Description: A malicious BuildKit frontend or Dockerfile using RUN --mount could trick the feature that removes empty files created for the mountpoints into removing a file outside the container, from the hos...

10CVSS7.5AI score0.10301EPSS

Exploits20References128

CNNVD•added 2024/01/31 12:0 a.m.•1 views

BuildKit 路径遍历漏洞

BuildKit is concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit. A path traversal vulnerability exists in BuildKit version v0.12.4 and earlier. An attacker can exploit this vulnerability to remove files external to the container from the host system...

10CVSS7AI score0.05701EPSS

CNNVD•added 2024/01/31 12:0 a.m.•1 views

BuildKit 代码问题漏洞

BuildKit is a concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit. A code issue vulnerability exists in BuildKit. An attacker could exploit this vulnerability to cause the BuildKit daemon to crash due to panic...

5.3CVSS7.2AI score0.0011EPSS

CNNVD•added 2024/01/31 12:0 a.m.•1 views

BuildKit 竞争条件问题漏洞

BuildKit is concurrent, cache-efficient and Dockerfile-agnostic builder toolkit. A competitive condition issue vulnerability exists in BuildKit version v0.12.4 and prior versions, which stems from allowing access to files on the host system via build containers...

8.7CVSS7AI score0.00548EPSS

8.7CVSS6.9AI score0.00548EPSS

Race Condition (Leaky Vessels)

Overview Affected versions of this package are vulnerable to Race Condition Leaky Vessels in the subpath mounting when two malicious build steps are running in parallel and sharing the same cache mounts. This can lead to files from the host system being accessible to the build container. Workarou...

Improper Handling of Insufficient Privileges (Leaky Vessels)

Overview Affected versions of this package are vulnerable to Improper Handling of Insufficient Privileges Leaky Vessels via APIs for running interactive containers based on built images. It is possible to use these APIs to ask BuildKit to run a container with elevated privileges. Normally, runnin...

Improper Handling of Insufficient Privileges (Leaky Vessels)

Improper Handling of Insufficient Privileges (Leaky Vessels)

Improper Handling of Insufficient Privileges (Leaky Vessels)

10CVSS7.1AI score0.05701EPSS

Improper Link Resolution Before File Access (Leaky Vessels)

Overview Affected versions of this package are vulnerable to Improper Link Resolution Before File Access Leaky Vessels allowing arbitrary file deletion on the host system. A malicious BuildKit frontend or Dockerfile using RUN --mount could trick the feature that removes empty files created for th...

8.7CVSS6.9AI score0.00548EPSS

Race Condition (Leaky Vessels)