VDB
CVE-2024-39897
CVE-2024-39897
PUBLISHED
CVSS 4.300000190734863 MEDIUM
Cache driver GetBlob() allows read access to any blob without access control check
EPSS 0.36% · 58.5th percentile
Risk Scores
CVSS v3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS Score
0.36%
58.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| zotregistry.io | zot | 0 |
| zotregistry.dev | zot | 0 |
| project-zot | zot | < 2.1.0 |
| zotregistry | zot | 0 |
Timeline
- Jan 21, 1970 Security Advisory
- Jul 9, 2024 CVE Published
- Jul 10, 2024 EPSS Score
- Jul 10, 2024 CVE Updated
- Aug 1, 2024 EPSS Score
- Aug 23, 2024 EPSS Score
- Sep 14, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 6, 2024 EPSS Score
- Oct 28, 2024 EPSS Score
- Nov 19, 2024 EPSS Score
- Dec 12, 2024 EPSS Score