#VU88854 Security features bypass in moby - CVE-2024-32473

Cybersecurity Help s.r.o.

Published: 2024-04-19

Vulnerability identifier: #VU88854

Vulnerability risk: Medium

CVSSv4.0: 2.1 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-32473

CWE-ID: CWE-254

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
moby
Server applications / Virtualization software

Vendor: Moby project

Description

The vulnerability allows a remote attacker to compromise the target sytem.

The vulnerability exists due to the IPv6 is not disabled on network interfaces. A remote attacker can gain access to sensitive information or perform a denial of service (DoS) attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

moby: 26.0.0 - 26.0.1

External links
https://github.com/moby/moby/security/advisories/GHSA-x84c-p2g9-rqv9
https://github.com/moby/moby/commit/7cef0d9cd1cf221d8c0b7b7aeda69552649e0642

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in IBM Observability with Instana

openEuler 22.03 LTS SP3 update for docker

openEuler update for docker

Security features bypass in Moby