CVE-2024-9407

Summary

CVE-2024-9407 is a vulnerability in the bind-propagation option of the Dockerfile RUN --mount instruction, affecting certain Docker products. This flaw allows attackers to pass arbitrary parameters to the mount instruction, potentially enabling the mounting of sensitive host directories into containers during the build process and modifying their contents. The vulnerability can circumvent SELinux protections by relabeling source directories to grant container access to host files. Organizations are advised to restrict access to the affected Docker functionalities and implement proper input validation measures to mitigate risks. The exploitability score is rated at 0.5, with a base severity classified as medium, indicating potential high confidentiality impact but low integrity risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.