#VU107606 Inclusion of Sensitive Information in Log Files in Buildx - CVE-2025-0495
Vulnerability identifier: #VU107606
Vulnerability risk: Low
CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID:
CWE-ID:
CWE-532
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
Buildx
Universal components / Libraries /
Software for developers
Vendor: Docker Inc.
Description
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to software stores sensitive information into log files. Cache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command. OpenTelemetry traces are also saved in BuildKit daemon's history records.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
Buildx: 0.2.0 - 0.22.0
External links
https://bugzilla.suse.com/show_bug.cgi?id=1239765
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
