Lucene search
+L

8 matches found

Circl
Circl
added 2025/01/29 6:16 p.m.9 views

CVE-2025-24882

creationtimestamp| type| source ---|---|--- 2025-01-29 18:16:14+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgvlb2efxp2f 2025-01-29 19:14:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lgvojtxzh72i 2025-01-29 21:32:28+00:00| seen|...

5.2CVSS6AI score0.00172EPSS
Exploits0References3
NVD
NVD
added 2025/01/29 6:15 p.m.18 views

CVE-2025-24882

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

5.2CVSS0.00172EPSS
Exploits0References2
Wolfi
Wolfi
added 2025/01/29 6:15 p.m.29 views

CVE-2025-24882 vulnerabilities

Vulnerabilities for packages: guac...

5.2CVSS7.2AI score0.00172EPSS
Exploits0
CVE
CVE
added 2025/01/29 5:40 p.m.310 views

CVE-2025-24882

In regclient (Go), a vulnerability exists where a malicious registry could return a different digest for a pinned manifest without detection. This is addressed by upgrading to version 0.7.1 (fixed in 0.7.1). Affected: regclient’s Docker/OCI registry client functionality; root cause details are th...

5.2CVSS5.1AI score0.00172EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/29 5:40 p.m.16 views

CVE-2025-24882 regclient may ignore pinned manifest digests

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

5.2CVSS5.1AI score0.00172EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/29 5:40 p.m.34 views

CVE-2025-24882 regclient may ignore pinned manifest digests

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

5.2CVSS0.00172EPSS
Exploits0References2
OSV
OSV
added 2025/01/29 5:40 p.m.14 views

CVE-2025-24882 regclient may ignore pinned manifest digests

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

5.2CVSS5.3AI score0.00172EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/01/29 5:33 p.m.13 views

CVE-2025-24882

A flaw was found in regclient. This issue can allow a malicious registry to return a different digest for a pinned manifest without detection via manipulated manifest responses. Mitigation Red Hat Product Security has not identified any applicable mitigations at this time...

5.2CVSS5.1AI score0.00172EPSS
Exploits0References6
Rows per page
Query Builder