WolfiWOLFI:CVE-2024-37891CVE-2024-37891 vulnerabilities
4.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
4.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Vulnerabilities for packages: py3-cassandra-medusa, kubeflow-katib, py3-urllib3, airflow, kubeflow-pipelines, reflex, confluent-docker-utils, superset, mlflow, kubeflow-volumes-web-app, k8s-sidecar, dask-gateway, az, ggshield, kubeflow-jupyter-web-app
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Wolfi | unknown | x86_64 | airflow | <= 2.9.2-r1 | airflow-2.9.2-r1.apk |
| Wolfi | unknown | aarch64 | airflow | <= 2.9.2-r1 | airflow-2.9.2-r1.apk |
| Wolfi | unknown | x86_64 | az | <= 2.61.0-r1 | az-2.61.0-r1.apk |
| Wolfi | unknown | aarch64 | az | <= 2.61.0-r1 | az-2.61.0-r1.apk |
| Wolfi | unknown | x86_64 | confluent-docker-utils | <= 0.0.82-r0 | confluent-docker-utils-0.0.82-r0.apk |
| Wolfi | unknown | aarch64 | confluent-docker-utils | <= 0.0.82-r0 | confluent-docker-utils-0.0.82-r0.apk |
| Wolfi | unknown | x86_64 | dask-gateway | <= 2024.1.0-r6 | dask-gateway-2024.1.0-r6.apk |
| Wolfi | unknown | aarch64 | dask-gateway | <= 2024.1.0-r6 | dask-gateway-2024.1.0-r6.apk |
| Wolfi | unknown | x86_64 | ggshield | <= 1.28.0-r0 | ggshield-1.28.0-r0.apk |
| Wolfi | unknown | aarch64 | ggshield | <= 1.28.0-r0 | ggshield-1.28.0-r0.apk |
Related
4.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
4.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%