Cyber Resilience

CVE-2024-9341

Medium

Published: 01 October 2024

Published
01 October 2024
Modified
11 December 2024
KEV Added
Patch
CVSS Score v3.1 5.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
EPSS Score 0.0090 76.1th percentile
Risk Priority 11 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-9341 is a medium-severity Link Following (CWE-59) vulnerability in Redhat Openshift Container Platform. Its CVSS base score is 5.4 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Escape to Host (T1611); ranked in the top 23.9% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links…

more

and trick the system into mounting sensitive host directories inside a container. This issue also allows attackers to access critical host files, bypassing the intended isolation between containers and the host system.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1611 Escape to Host Privilege Escalation
Adversaries may break out of a container or virtualized environment to gain access to the underlying host.
Why these techniques?

CVE-2024-9341 enables attackers in a container to exploit improper path validation via symbolic links to mount sensitive host directories, facilitating escape to host (T1611) and bypassing container isolation to access critical host files.

Affected Assets

containers
common
all versions
redhat
openshift container platform
4.12, 4.13, 4.14, 4.15, 4.16
redhat
enterprise linux
8.0, 9.0

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References