CVE-2024-32473

Summary

CVE-2024-32473 is a vulnerability affecting Moby, an open-source container framework used in Docker Engine, Docker Desktop, and other container tooling or runtimes. In version 26.0.0, IPv6 is inadvertently enabled on network interfaces, even when `--ipv6=false` is specified. Containers with `ipvlan` or `macvlan` interfaces can communicate with other hosts on the local network via link-local IPv6 addresses, potentially leading to unintended access and increased attack surface. Moreover, containers may receive SLAAC-assigned IPv6 addresses and join IPv6 multicast groups. This issue poses a risk in IPv4-only networks, and is addressed in version 26.0.2. To disable IPv6 entirely in a container, use the command `--sysctl=net.ipv6.conf.all.disable_ipv6=1` when creating or running a container, or in a `compose` file's service configuration.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.