#VU94762 Incorrect authorization in moby - CVE-2024-41110

Cybersecurity Help s.r.o.

Published: 2024-07-26 | Updated: 2024-07-29

Vulnerability identifier: #VU94762

Vulnerability risk: Medium

CVSSv4.0: 7.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U/U:Green]

CVE-ID: CVE-2024-41110

CWE-ID: CWE-863

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
moby
Server applications / Virtualization software

Vendor: Moby project

Description

The vulnerability allows a remote attacker to bypass authorization checks.

The vulnerability exists due to AuthZ zero length regression. A remote user can bypass authentication and gain elevated privileges.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

moby: 19.03.0 - 19.03.15, 20.10.0 - 20.10.27, 23.0.0 - 23.0.14, 24.0.0 - 24.0.9, 25.0.0 - 25.0.5, 26.0.0 rc1 - 26.0.2, 26.1.0 - 26.1.4, 27.0.1 - 27.0.3, 27.1.0

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

RSA Authentication Manager update for third-party components

Dell APEX Cloud Platform for Red Hat OpenShift update for third-party components

Multiple vulnerabilities in Western Digital My Cloud Home and Duo

Ubuntu update for docker.io

SUSE update for docker, docker-stable

Dell VxRail Appliance 8.x update for third-party components

Dell VxRail Appliance 7.x update for third-party components

SUSE update for apptainer

Multiple vulnerabilities in IBM Cognos Dashboards on Cloud Pak for Data