Cyber Resilience

CVE-2024-9675

High

Published: 09 October 2024

Published
09 October 2024
Modified
25 August 2025
KEV Added
Patch
CVSS Score v3.1 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0014 33.7th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-9675 is a high-severity Path Traversal (CWE-22) vulnerability in Redhat Openshift Container Platform. Its CVSS base score is 7.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Escape to Host (T1611); ranked at the 33.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to mount an arbitrary directory from the host (read/write)…

more

into the container as long as those files can be accessed by the user running Buildah.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1611 Escape to Host Privilege Escalation
Adversaries may break out of a container or virtualized environment to gain access to the underlying host.
Why these techniques?

The vulnerability in Buildah (CVE-2024-9675) allows a RUN instruction in a Containerfile to mount arbitrary accessible host directories (read/write) into the build container, bypassing cache directory validation and facilitating escape to host filesystem access.

MITRE ATLAS TechniquesAI

MITRE ATLAS techniques

AML.T0010: AI Supply Chain CompromiseAML.T0024: Exfiltration via AI Inference APIAML.T0048: External Harms

Affected Assets

buildah project
buildah
all versions
redhat
openshift container platform
4.13, 4.14, 4.15, 4.16, 4.17
redhat
enterprise linux
8.0, 9.0
redhat
enterprise linux eus
8.8, 9.0, 9.2, 9.4
redhat
enterprise linux for arm 64
8.0_aarch64, 9.0_aarch64
redhat
enterprise linux for arm 64 eus
8.8_aarch64, 9.0_aarch64, 9.2_aarch64, 9.4_aarch64
redhat
enterprise linux for ibm z systems
8.0_s390x, 9.0_s390x
redhat
enterprise linux for ibm z systems eus
8.8_s390x, 9.0_s390x, 9.2_s390x, 9.4_s390x
redhat
enterprise linux for power little endian
8.0_ppc64le, 9.0_ppc64le
redhat
enterprise linux for power little endian eus
8.8_ppc64le, 9.0_ppc64le, 9.2_ppc64le, 9.4_ppc64le
+4 more product configuration(s) — see NVD for full list

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-22

Validates pathnames and filenames to prevent traversal outside intended directories.

References