VDB
GO-2024-2842
GO-2024-2842
PUBLISHED
CVSS 8.399999618530273 HIGH
Unexpected authenticated registry accesses in github.com/containers/image/v5
Risk Scores
CVSS v4.0
8.399999618530273
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| github.com | containers/image/v5 | 0, 5.30.0, 0 |
Timeline
- May 20, 2024 CVE Published
- Feb 4, 2026 CVE Updated
References
- https://github.com/advisories/GHSA-6wvf-f2vw-3425 advisory
- https://github.com/containers/image/commit/132678b47bae29c710589012668cb85859d88385 patch
- https://access.redhat.com/security/cve/CVE-2024-3727 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2274767 url
- https://github.com/containers/image/releases/tag/v5.29.3 url
- https://github.com/containers/image/releases/tag/v5.30.1 url