CVE-2024-56330

Dec. 20, 2024, 8:15 p.m.

None
No Score

Description

Stardust is a platform for streaming isolated desktop containers. With this exploit, inter container communication (ICC) is not disabled. This would allow users within a container to access another containers agent, therefore compromising access.The problem has been patched in any Stardust build past 12/20/24. Users are advised to upgrade. Users may also manually disable ICC if they are unable to upgrade.

Product(s) Impacted

Product Versions
Stardust
  • build up to 12/20/24

Weaknesses

CWE-284
Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References

https://github.com/spaceness/stardust/security/advisories/GHSA-h2c9-7j2r-m98p

Tags

CWE-284
security-advisories@github.com
2024-12-20
CVE-2024-56330

Date

  • Published: Dec. 20, 2024, 8:15 p.m.
  • Last Modified: Dec. 20, 2024, 8:15 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security-advisories@github.com

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.