Amazon Linux 2 : nerdctl (ALAS-2024-2618)

critical Nessus Plugin ID 205706

Version 1.3

Aug 29, 2024, 9:35 AM

  • CVE (set "CVE" coverage to "CVE-2023-39326,CVE-2023-45288,CVE-2024-24786,CVE-2024-24790,CVE-2024-28180")
  • CVSS metrics ("CVSSv2 score" set to 10.0)
  • CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C")
  • CVSS metrics ("CVSSv3 score" set to 9.8)
  • CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H")
  • CVSS metrics ("Cvssv4 score" set to 0.0)
  • CVSSv2 score source (changed from "CVE-2023-39326" to "CVE-2024-24790")
  • CVSSv2 severity (based on CVE-2024-24790, severity increased from "Medium" to "High")
  • CVSSv2 severity (based on None, severity decreased from "High" to "Low")
  • CVSSv3 severity (based on None, severity increased from "Medium" to "High")
  • Exploit attributes ("Exploitability ease" changed from "Exploits are available" to "No known exploits are available")
  • Plugin metadata

Plugin Feed: 202408290935