CVE-2025-0495 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-0495 PUBLISHED CVSS 4.099999904632568 MEDIUM

buildx allows a possible credential leakage to telemetry endpoint

EPSS 0.04% · 11.8th percentile

Risk Scores

CVSS v4.0

4.099999904632568

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:N/VA:N/SC:H/SI:N/SA:N

EPSS Score

0.04%

11.8th percentile

Affected Products

Vendor	Product	Versions
docker	buildx	0, 0
github.com	docker/buildx	0, 0

Timeline

Mar 17, 2025 CVE Published
Mar 17, 2025 PoC Published
Mar 17, 2025 PoC Published
Mar 18, 2025 EPSS Score
Mar 18, 2025 PoC Published
Mar 31, 2025 EPSS Score
Apr 13, 2025 EPSS Score
Apr 25, 2025 EPSS Score
May 8, 2025 EPSS Score
May 21, 2025 EPSS Score
Jun 3, 2025 EPSS Score
Jun 16, 2025 EPSS Score

References

Open in Interactive Console →