CVE-2024-9675 — HIGH (7.8) — White Hats Nepal

Vulnerability Description

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to mount an arbitrary directory from the host (read/write) into the container as long as those files can be accessed by the user running Buildah.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Buildah Project	Buildah	-
Redhat	Openshift Container Platform	4.13
Redhat	Enterprise Linux	8.0
Redhat	Enterprise Linux Eus	8.8
Redhat	Enterprise Linux For Arm 64	8.0_aarch64
Redhat	Enterprise Linux For Arm 64 Eus	8.8_aarch64
Redhat	Enterprise Linux For Ibm Z Systems	8.0_s390x
Redhat	Enterprise Linux For Ibm Z Systems Eus	8.8_s390x
Redhat	Enterprise Linux For Power Little Endian	8.0_ppc64le
Redhat	Enterprise Linux For Power Little Endian Eus	8.8_ppc64le
Redhat	Enterprise Linux Server Aus	8.6
Redhat	Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions	8.6_ppc64le
Redhat	Enterprise Linux Server Tus	8.6
Redhat	Enterprise Linux Update Services For Sap Solutions	8.6

Related Weaknesses (CWE)

CWE-22

References

https://access.redhat.com/errata/RHSA-2024:8563Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:8675Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:8679Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:8686Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:8690Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:8700Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:8703Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:8707Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:8708Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:8709Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:8846Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:8984Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:8994Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:9051Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:9454Third Party Advisory

FAQ

What is CVE-2024-9675?

CVE-2024-9675 is a vulnerability with a CVSS score of 7.8 (HIGH). A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to ...

How severe is CVE-2024-9675?

CVE-2024-9675 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-9675?

Check the references section above for vendor advisories and patch information. Affected products include: Buildah Project Buildah, Redhat Openshift Container Platform, Redhat Enterprise Linux, Redhat Enterprise Linux Eus, Redhat Enterprise Linux For Arm 64.