CVE-2024-5154 | cri-o up to 1.28.6/1.29.4/1.30.0 /proc/mounts symlink

Inserito da Angelo Barbosa | Mag 29, 2024 | CVE

A vulnerability was found in cri-o up to 1.28.6/1.29.4/1.30.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /proc/mounts. The manipulation leads to symlink following.

This vulnerability is handled as CVE-2024-5154. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-5154 | cri-o up to 1.28.6/1.29.4/1.30.0 /proc/mounts symlink

Post correlati

CVE-2023-7165 | JetBackup Plugin up to 2.0.9.8 on WordPress file access

CVE-2024-36418 | SalesAgility SuiteCRM up to 7.14.3/8.6.0 path traversal

CVE-2024-38877 | Siemens Omnivise T3000 Application Server cleartext storage (ssa-857368)

CVE-2024-1744 | Ariva Computer Accord ORS up to 7.3.2.0 information disclosure