Lucene search
K

45 matches found

Cvelist
Cvelist
added 2026/01/29 9:2 p.m.22 views

CVE-2026-24845 malcontent's OCI image scanning could expose registry credentials

malcontent discovers supply-chain compromises through. context, differential analysis, and YARA. Starting in version 0.10.0 and prior to version 1.20.3, malcontent could be made to expose Docker registry credentials if it scanned a specially crafted OCI image reference. malcontent uses...

6.5CVSS0.00336EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/29 9:2 p.m.5 views

CVE-2026-24845 malcontent's OCI image scanning could expose registry credentials

malcontent discovers supply-chain compromises through. context, differential analysis, and YARA. Starting in version 0.10.0 and prior to version 1.20.3, malcontent could be made to expose Docker registry credentials if it scanned a specially crafted OCI image reference. malcontent uses...

6.5CVSS5.9AI score0.00336EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/29 9:2 p.m.6 views

EUVD-2026-4945

malcontent discovers supply-chain compromises through. context, differential analysis, and YARA. Starting in version 0.10.0 and prior to version 1.20.3, malcontent could be made to expose Docker registry credentials if it scanned a specially crafted OCI image reference. malcontent uses...

6.5CVSS5.9AI score0.00336EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/29 12:0 a.m.7 views

Malcontent security vulnerabilities

Malcontent is a supply chain attack detection tool developed by Chainguard. Versions of Malcontent prior to 1.20.3 contained a security vulnerability. This vulnerability stemmed from the possibility of creating symbolic links outside of the expected extraction directories when scanning specially...

5.5CVSS5.8AI score0.00167EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/29 12:0 a.m.15 views

Malcontent security vulnerabilities

Malcontent is a supply chain attack detection tool developed by Chainguard. Versions prior to 1.20.3 of Malcontent contain security vulnerabilities. These vulnerabilities arise from the possibility of exposing Docker registry credentials during the scanning of specially crafted OCI image referenc...

6.5CVSS5.8AI score0.00336EPSS
Exploits0References2
Rows per page
Query Builder