CVE-2024-8038

HIGH Year: 2024
CVSS v3 Score
7.9
High
Weakness Type
CWE-420
View all →

Vulnerability Description

Vulnerable juju introspection abstract UNIX domain socket. An abstract UNIX domain socket responsible for introspection is available without authentication locally to network namespace users. This enables denial of service attacks.

Related Vulnerabilities

CVE-2023-52718

HIGH
CVSS:8.1(High)

A connection hijacking vulnerability exists in some Huawei home routers. Successful exploitation of this vulnerability may cause DoS or information leakage.(Vulnerability ID:HWPSIRT-2023-34408) This v...

CWE-4202023

CVE-2023-7266

HIGH
CVSS:8.1(High)

Some Huawei home routers have a connection hijacking vulnerability. Successful exploitation of this vulnerability may cause DoS or information leakage.(Vulnerability ID:HWPSIRT-2023-76605) This vulner...

CWE-4202023

CVE-2023-28840

HIGH
CVSS:8.7(High)

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component...

CWE-4202023

CVE-2020-8558

HIGH
CVSS:8.8(High)

The Kubelet and kube-proxy components in versions 1.1.0-1.16.10, 1.17.0-1.17.6, and 1.18.0-1.18.3 were found to contain a security issue which allows adjacent hosts to reach TCP and UDP services bound...

CWE-4202020

CVE-2023-4570

HIGH
CVSS:8.8(High)

An improper access restriction in NI MeasurementLink Python services could allow an attacker on an adjacent network to reach services exposed on localhost. These services were previously thought to be...

CWE-4202023

CVE-2023-28842

MEDIUM
CVSS:6.8(Medium)

Moby) is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon componen...

CWE-4202023