An issue was discovered in Falco through 0.14.0. A missing indicator for insufficient resources allows local users to bypass the detection engine.
References
Link | Resource |
---|---|
https://falco.org/docs/event-sources/dropped-events/ | Vendor Advisory |
https://github.com/falcosecurity/falco/pull/561 | Patch Third Party Advisory |
https://sysdig.com/blog/cve-2019-8339-falco-vulnerability/ | Vendor Advisory |
https://www.twistlock.com/labs-blog/falco-vulnerability-cve-2019-8339/ | Exploit Third Party Advisory |
https://falco.org/docs/event-sources/dropped-events/ | Vendor Advisory |
https://github.com/falcosecurity/falco/pull/561 | Patch Third Party Advisory |
https://sysdig.com/blog/cve-2019-8339-falco-vulnerability/ | Vendor Advisory |
https://www.twistlock.com/labs-blog/falco-vulnerability-cve-2019-8339/ | Exploit Third Party Advisory |
Configurations
History
21 Nov 2024, 04:49
Type | Values Removed | Values Added |
---|---|---|
References | () https://falco.org/docs/event-sources/dropped-events/ - Vendor Advisory | |
References | () https://github.com/falcosecurity/falco/pull/561 - Patch, Third Party Advisory | |
References | () https://sysdig.com/blog/cve-2019-8339-falco-vulnerability/ - Vendor Advisory | |
References | () https://www.twistlock.com/labs-blog/falco-vulnerability-cve-2019-8339/ - Exploit, Third Party Advisory |
Information
Published : 2019-05-17 20:29
Updated : 2024-11-21 04:49
NVD link : CVE-2019-8339
Mitre link : CVE-2019-8339
CVE.ORG link : CVE-2019-8339
JSON object : View
Products Affected
falco
- falco
CWE
CWE-416
Use After Free