Today > | 1 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-56330

Dec. 20, 2024, 8:15 p.m.

Tags

CWE-284
security-advisories@github.com
2024-12-20
CVE-2024-56330

Product(s) Impacted

Stardust

  • build up to 12/20/24

Description

Stardust is a platform for streaming isolated desktop containers. With this exploit, inter container communication (ICC) is not disabled. This would allow users within a container to access another containers agent, therefore compromising access.The problem has been patched in any Stardust build past 12/20/24. Users are advised to upgrade. Users may also manually disable ICC if they are unable to upgrade.

Weaknesses

CWE-284
Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CWE ID: 284

Date

Published: Dec. 20, 2024, 8:15 p.m.

Last Modified: Dec. 20, 2024, 8:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security-advisories@github.com

References

https://github.com/ security-advisories@github.com