Lucene search
+L

7 matches found

Wolfi
Wolfi
added 2025/07/21 1:47 p.m.11 views

CVE-2025-53945 vulnerabilities

Vulnerabilities for packages: tw...

7CVSS6.7AI score0.00118EPSS
Exploits0
Chainguard
Chainguard
added 2025/07/21 1:16 p.m.8 views

CVE-2025-53945 vulnerabilities

Vulnerabilities for packages: cg, tw, chainctl...

7CVSS5.4AI score0.00118EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/20 3:50 p.m.9 views

CVE-2025-53945

apko allows users to build and publish OCI container images built from apk packages. Starting in version 0.27.0 and prior to version 0.29.5, critical files were inadvertently set to 0666, which could likely be abused for root escalation. Version 0.29.5 contains a fix for the issue...

7CVSS7.2AI score0.00118EPSS
Exploits0References1
NVD
NVD
added 2025/07/18 4:15 p.m.16 views

CVE-2025-53945

apko allows users to build and publish OCI container images built from apk packages. Starting in version 0.27.0 and prior to version 0.29.5, critical files were inadvertently set to 0666, which could likely be abused for root escalation. Version 0.29.5 contains a fix for the issue...

7CVSS0.00118EPSS
Exploits0References5
CVE
CVE
added 2025/07/18 3:35 p.m.94 views

CVE-2025-53945

CVE-2025-53945 concerns apko, Chainguard’s tool for building/publishing OCI images. Affected versions prior to 0.29.5 inadvertently set critical files to 0666 permissions, notably /etc/ld.so.cache, enabling a local unprivileged user to potentially influence the dynamic loader path by placing a ma...

7CVSS6.6AI score0.00118EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/07/18 3:35 p.m.2 views

CVE-2025-53945 apko has incorrect permission (0666) in /etc/ld.so.cache and other files

apko allows users to build and publish OCI container images built from apk packages. Starting in version 0.27.0 and prior to version 0.29.5, critical files were inadvertently set to 0666, which could likely be abused for root escalation. Version 0.29.5 contains a fix for the issue...

7CVSS6.2AI score0.00118EPSS
Exploits0References5
OSV
OSV
added 2025/07/18 3:35 p.m.5 views

CVE-2025-53945 apko has incorrect permission (0666) in /etc/ld.so.cache and other files

apko allows users to build and publish OCI container images built from apk packages. Starting in version 0.27.0 and prior to version 0.29.5, critical files were inadvertently set to 0666, which could likely be abused for root escalation. Version 0.29.5 contains a fix for the issue...

7CVSS6.6AI score0.00118EPSS
Exploits0References7
Rows per page
Query Builder