WolfiWOLFI:CVE-2024-29018CVE-2024-29018 vulnerabilities
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
5.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
8.8%
Vulnerabilities for packages: loki, dagger, ctop, docker-compose, zot, grype, buf, aactl, telegraf, crossplane, kubescape, trivy, conftest, kargo, syft, datadog-agent, prometheus, tkn, ko, melange, up, wolfictl, buildkitd, goreleaser, cadvisor, kaniko, spire-server
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Wolfi | unknown | x86_64 | aactl | <= 0.4.12-r7 | aactl-0.4.12-r7.apk |
| Wolfi | unknown | aarch64 | aactl | <= 0.4.12-r7 | aactl-0.4.12-r7.apk |
| Wolfi | unknown | x86_64 | buf | <= 1.30.1-r0 | buf-1.30.1-r0.apk |
| Wolfi | unknown | aarch64 | buf | <= 1.30.1-r0 | buf-1.30.1-r0.apk |
| Wolfi | unknown | x86_64 | buildkitd | <= 0.13.1-r1 | buildkitd-0.13.1-r1.apk |
| Wolfi | unknown | aarch64 | buildkitd | <= 0.13.1-r1 | buildkitd-0.13.1-r1.apk |
| Wolfi | unknown | x86_64 | cadvisor | <= 0.49.1-r4 | cadvisor-0.49.1-r4.apk |
| Wolfi | unknown | aarch64 | cadvisor | <= 0.49.1-r4 | cadvisor-0.49.1-r4.apk |
| Wolfi | unknown | x86_64 | conftest | <= 0.50.0-r2 | conftest-0.50.0-r2.apk |
| Wolfi | unknown | aarch64 | conftest | <= 0.50.0-r2 | conftest-0.50.0-r2.apk |
Related
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
5.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
8.8%