CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-24557 – Moby classic builder cache poisoning
https://notcve.org/view.php?id=CVE-2024-24557
01 Feb 2024 — Moby is an open-source project created by Docker to enable software containerization. The classic builder cache system is prone to cache poisoning if the image is built FROM scratch. Also, changes to some instructions (most important being HEALTHCHECK and ONBUILD) would not cause a cache miss. An attacker with the knowledge of the Dockerfile someone is using could poison their cache by making them pull a specially crafted image that would be considered as a valid cache candidate for some build steps. 23.0+ ... • https://github.com/moby/moby/commit/3e230cfdcc989dc524882f6579f9e0dac77400ae • CWE-345: Insufficient Verification of Data Authenticity CWE-346: Origin Validation Error •
CVSS: 10.0EPSS: 8%CPEs: 1EXPL: 1CVE-2024-23653 – BuildKit interactive containers API does not validate entitlements check
https://notcve.org/view.php?id=CVE-2024-23653
31 Jan 2024 — BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. In addition to running containers as build steps, BuildKit also provides APIs for running interactive containers based on built images. It was possible to use these APIs to ask BuildKit to run a container with elevated privileges. Normally, running such containers is only allowed if special `security.insecure` entitlement is enabled both by buildkitd configuration and allowed by the user in... • https://github.com/666asd/CVE-2024-23653 • CWE-863: Incorrect Authorization •
CVSS: 10.0EPSS: 3%CPEs: 1EXPL: 1CVE-2024-23652 – BuildKit possible host system access from mount stub cleaner
https://notcve.org/view.php?id=CVE-2024-23652
31 Jan 2024 — BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit frontend or Dockerfile using RUN --mount could trick the feature that removes empty files created for the mountpoints into removing a file outside the container, from the host system. The issue has been fixed in v0.12.5. Workarounds include avoiding using BuildKit frontends from an untrusted source or building an untrusted Dockerfile containing RUN --mount feature. Buil... • https://github.com/abian2/CVE-2024-23652 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 8.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-23651 – BuildKit possible race condition with accessing subpaths from cache mounts
https://notcve.org/view.php?id=CVE-2024-23651
31 Jan 2024 — BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Two malicious build steps running in parallel sharing the same cache mounts with subpaths could cause a race condition that can lead to files from the host system being accessible to the build container. The issue has been fixed in v0.12.5. Workarounds include, avoiding using BuildKit frontend from an untrusted source or building an untrusted Dockerfile containing cache mounts with --mount=... • https://github.com/moby/buildkit/pull/4604 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-23650 – BuildKit possible panic when incorrect parameters sent from frontend
https://notcve.org/view.php?id=CVE-2024-23650
31 Jan 2024 — BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit client or frontend could craft a request that could lead to BuildKit daemon crashing with a panic. The issue has been fixed in v0.12.5. As a workaround, avoid using BuildKit frontends from untrusted sources. BuildKit es un conjunto de herramientas para convertir código fuente para crear artefactos de manera eficiente, expresiva y repetible. • https://github.com/moby/buildkit/pull/4601 • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 8.7EPSS: 0%CPEs: 2EXPL: 1CVE-2023-28840 – moby/moby's dockerd daemon encrypted overlay network may be unauthenticated
https://notcve.org/view.php?id=CVE-2023-28840
04 Apr 2023 — Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component (`dockerd`), which is developed as moby/moby, is commonly referred to as *Docker*. Swarm Mode, which is compiled in and delivered by default in dockerd and is thus present in most major Moby downstreams, is a simple, built-in container orchestrator that is implemented through a combination of SwarmKit and supp... • https://github.com/moby/libnetwork/security/advisories/GHSA-gvm4-2qqg-m333 • CWE-203: Observable Discrepancy CWE-420: Unprotected Alternate Channel CWE-636: Not Failing Securely ('Failing Open') CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 6.8EPSS: 2%CPEs: 2EXPL: 1CVE-2023-28841 – moby/moby's dockerd daemon encrypted overlay network traffic may be unencrypted
https://notcve.org/view.php?id=CVE-2023-28841
04 Apr 2023 — Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component (`dockerd`), which is developed as moby/moby is commonly referred to as *Docker*. Swarm Mode, which is compiled in and delivered by default in `dockerd` and is thus present in most major Moby downstreams, is a simple, built-in container orchestrator that is implemented through a combination of SwarmKit and sup... • https://github.com/moby/libnetwork/blob/d9fae4c73daf76c3b0f77e14b45b8bf612ba764d/drivers/overlay/encryption.go#L205-L207 • CWE-311: Missing Encryption of Sensitive Data CWE-636: Not Failing Securely ('Failing Open') CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-28842 – moby/moby's dockerd daemon encrypted overlay network with a single endpoint is unauthenticated
https://notcve.org/view.php?id=CVE-2023-28842
04 Apr 2023 — Moby) is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component (`dockerd`), which is developed as moby/moby is commonly referred to as *Docker*. Swarm Mode, which is compiled in and delivered by default in `dockerd` and is thus present in most major Moby downstreams, is a simple, built-in container orchestrator that is implemented through a combination of SwarmKit and su... • https://github.com/moby/libnetwork/security/advisories/GHSA-gvm4-2qqg-m333 • CWE-420: Unprotected Alternate Channel CWE-636: Not Failing Securely ('Failing Open') CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-26054 – Credentials inlined to Git URLs could end up in provenance attestation in BuildKit
https://notcve.org/view.php?id=CVE-2023-26054
06 Mar 2023 — BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. In affected versions when the user sends a build request that contains a Git URL that contains credentials and the build creates a provenance attestation describing that build, these credentials could be visible from the provenance attestation. Git URL can be passed in two ways: 1) Invoking build directly from a URL with credentials. 2) If the client sends additional version control system ... • https://github.com/moby/buildkit/commit/75123c696506bdbca1ed69906479e200f1b62604 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 2CVE-2021-32847 – Moby HyperKit uninitialized memory use in virtio-sock pci_vtsock_proc_tx
https://notcve.org/view.php?id=CVE-2021-32847
20 Feb 2023 — HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0.20210107 and prior, a malicious guest can trigger a vulnerability in the host by abusing the disk driver that may lead to the disclosure of the host memory into the virtualized guest. This issue is fixed in commit cf60095a4d8c3cb2e182a14415467afd356e982f. • https://github.com/moby/hyperkit/blob/2f061e447e1435cdf1b9eda364cea6414f2c606b/src/lib/pci_virtio_block.c#L316 • CWE-125: Out-of-bounds Read •