7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8 High
AI Score
Confidence
High
4.4 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
20.7%
Vulnerabilities for packages: istio-pilot-discovery, kubescape, ctop, pulumi, goreleaser, tekton-pipelines, traefik, cert-manager, kubeflow-katib, kyverno, aactl, zot, k9s, filebeat, argo-workflows, helm, eksctl, docker-credential-gcr, nerdctl, cri-tools, newrelic-infrastructure-agent, gitlab-runner, gitsign, flux-helm-controller, cadvisor, telegraf, cosign, slsa-verifier, helm-operator, falco, crane, kots, timoni, tekton-chains, bom, kargo, k8sgpt, loki, skaffold, policy-controller, istio-pilot-agent, guac, flux-image-reflector-controller, kubevela, trivy, up, datadog-agent, falcoctl, dagger, prometheus, scorecard, k3s, skopeo, zarf, buildkitd
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Wolfi | unknown | x86_64 | aactl | <= 0.4.12-r8 | aactl-0.4.12-r8.apk |
Wolfi | unknown | aarch64 | aactl | <= 0.4.12-r8 | aactl-0.4.12-r8.apk |
Wolfi | unknown | x86_64 | argo-workflows | <= 3.5.5-r4 | argo-workflows-3.5.5-r4.apk |
Wolfi | unknown | aarch64 | argo-workflows | <= 3.5.5-r4 | argo-workflows-3.5.5-r4.apk |
Wolfi | unknown | x86_64 | bom | <= 0.6.0-r4 | bom-0.6.0-r4.apk |
Wolfi | unknown | aarch64 | bom | <= 0.6.0-r4 | bom-0.6.0-r4.apk |
Wolfi | unknown | x86_64 | buildkitd | <= 0.13.1-r2 | buildkitd-0.13.1-r2.apk |
Wolfi | unknown | aarch64 | buildkitd | <= 0.13.1-r2 | buildkitd-0.13.1-r2.apk |
Wolfi | unknown | x86_64 | cadvisor | <= 0.49.1-r4 | cadvisor-0.49.1-r4.apk |
Wolfi | unknown | aarch64 | cadvisor | <= 0.49.1-r4 | cadvisor-0.49.1-r4.apk |
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8 High
AI Score
Confidence
High
4.4 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
20.7%