Github.com/moby/buildkit
This hub aggregates every CVE we track for Github.com/moby/buildkit, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
5
CVEs tracked
2
Critical
1
High
0
In CISA KEV
Severity distribution
MEDIUM2CRITICAL2HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 5 most recently published vulnerabilities affecting Github.com/moby/buildkit.
- CVE-2024-23653BuildKit interactive containers API does not validate entitlements check9.8
- CVE-2024-23652BuildKit possible host system access from mount stub cleaner10.0
- CVE-2024-23651BuildKit possible race condition with accessing subpaths from cache mounts8.7
- CVE-2024-23650BuildKit possible panic when incorrect parameters sent from frontend5.3
- CVE-2023-26054Credentials inlined to Git URLs could end up in provenance attestation in BuildKit6.5
Product normalization is registry-driven with AI assist and human review. How it works