All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2024-38487
HIGHpublished 2026-06-16 17:16 UTC · 9 days ago · modified 2026-06-16 17:34 UTC
7.0
CVSS / 10
// description
api-gateway container running with root privilege would allow an attacker to escape the container and access host system to perform unintended actions.
// cvss 3.1 vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H
// weaknesses (CWE)
- CWE-269