Количество 11
Количество 11
BDU:2025-06572
Уязвимость плагина Docker buildx, связанная с раскрытием информации через регистрационные файлы, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
CVE-2025-0495
Buildx is a Docker CLI plugin that extends build capabilities using BuildKit. Cache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command. OpenTelemetry traces are also saved in BuildKit daemon's history records. This vulnerability does not impact secrets passed to the Github cache backend via environment variables or registry authentication.
CVE-2025-0495
Buildx is a Docker CLI plugin that extends build capabilities using BuildKit. Cache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command. OpenTelemetry traces are also saved in BuildKit daemon's history records. This vulnerability does not impact secrets passed to the Github cache backend via environment variables or registry authentication.
CVE-2025-0495
CVE-2025-0495
Buildx is a Docker CLI plugin that extends build capabilities using Bu ...
SUSE-SU-2025:1344-1
Security update for docker-stable
SUSE-SU-2025:1341-1
Security update for docker
ROS-20250515-04
Уязвимость docker-ce
GHSA-m4gq-fm9h-8q75
buildx allows a possible credential leakage to telemetry endpoint
SUSE-SU-2025:02289-2
Security update for docker
SUSE-SU-2025:02289-1
Security update for docker
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2025-06572 Уязвимость плагина Docker buildx, связанная с раскрытием информации через регистрационные файлы, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации | CVSS3: 3.3 | 0% Низкий | 6 месяцев назад |
 | CVE-2025-0495 Buildx is a Docker CLI plugin that extends build capabilities using BuildKit. Cache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command. OpenTelemetry traces are also saved in BuildKit daemon's history records. This vulnerability does not impact secrets passed to the Github cache backend via environment variables or registry authentication. | 0% Низкий | 6 месяцев назад | |
 | CVE-2025-0495 Buildx is a Docker CLI plugin that extends build capabilities using BuildKit. Cache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command. OpenTelemetry traces are also saved in BuildKit daemon's history records. This vulnerability does not impact secrets passed to the Github cache backend via environment variables or registry authentication. | 0% Низкий | 6 месяцев назад | |
 | 0% Низкий | 4 месяца назад | ||
| CVE-2025-0495 Buildx is a Docker CLI plugin that extends build capabilities using Bu ... | 0% Низкий | 6 месяцев назад | |
 | SUSE-SU-2025:1344-1 Security update for docker-stable | 0% Низкий | 5 месяцев назад | |
| SUSE-SU-2025:1341-1 Security update for docker | 0% Низкий | 5 месяцев назад | |
 | ROS-20250515-04 Уязвимость docker-ce | CVSS3: 5.9 | 0% Низкий | 4 месяца назад |
| GHSA-m4gq-fm9h-8q75 buildx allows a possible credential leakage to telemetry endpoint | 0% Низкий | 6 месяцев назад | |
| SUSE-SU-2025:02289-2 Security update for docker | около 2 месяцев назад | ||
| SUSE-SU-2025:02289-1 Security update for docker | 2 месяца назад |
Уязвимостей на страницу