{"vulnerability": "CVE-2024-11218", "sightings": [{"uuid": "c6847aed-07e8-4416-961e-6bdde3f5e33c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgcmfcomg62x", "content": "", "creation_timestamp": "2025-01-22T05:15:56.166128Z"}, {"uuid": "7848f650-a390-4c49-9570-71f1041d53eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgcnp3tbw62h", "content": "", "creation_timestamp": "2025-01-22T05:39:18.051624Z"}, {"uuid": "4108fefd-348b-478b-afdc-7769e73dc164", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgcnp44vdz2e", "content": "", "creation_timestamp": "2025-01-22T05:39:18.710678Z"}, {"uuid": "c2c07d10-fece-4a0d-9282-f457a1d54090", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113870431260277167", "content": "", "creation_timestamp": "2025-01-22T05:48:11.813376Z"}, {"uuid": "3369e3f5-c871-4d27-aa81-095424d3f664", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://bsky.app/profile/dinosn.bsky.social/post/3lgpdww47w22p", "content": "", "creation_timestamp": "2025-01-27T06:49:21.727295Z"}, {"uuid": "f1a09175-2365-4fe2-a50d-b2475a44c9b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://bsky.app/profile/podmanio.bsky.social/post/3lge4yk3kcc23", "content": "", "creation_timestamp": "2025-01-22T19:45:42.340422Z"}, {"uuid": "1c480297-ae7a-4cb2-b01e-713bff6b3006", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/az8UqFVz3MQxgOn4eHL-FB2LAsJIbnM8ilHYQShUiIVjYsf8", "content": "", "creation_timestamp": "2025-03-06T02:16:24.000000Z"}, {"uuid": "36db2935-b9b7-426b-9cb7-168cbf855f9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3limmad7rq422", "content": "", "creation_timestamp": "2025-02-20T15:30:09.897255Z"}, {"uuid": "cddb5302-eee2-4bfc-bc04-d4a0c80a8265", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "MISP/d0bda5d9-8cbc-4c6c-8803-a5e3150f9ec2", "content": "", "creation_timestamp": "2025-09-01T19:03:03.000000Z"}, {"uuid": "336383fb-c1f8-4e94-aa4c-3f1f16b695cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/MlsTbHi2mpRUxw0qXxyWVHW1ySK_r0nti9nWjsyrG5AU10k0", "content": "", "creation_timestamp": "2025-03-06T02:16:24.000000Z"}, {"uuid": "3f699ea0-79c1-47b1-990c-771163dbb750", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5635", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11218\n\ud83d\udd25 CVSS Score: 8.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.\n\ud83d\udccf Published: 2025-01-22T04:55:30.649Z\n\ud83d\udccf Modified: 2025-02-27T00:54:39.333Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2025:0830\n2. https://access.redhat.com/errata/RHSA-2025:0878\n3. https://access.redhat.com/errata/RHSA-2025:0922\n4. https://access.redhat.com/errata/RHSA-2025:0923\n5. https://access.redhat.com/errata/RHSA-2025:1186\n6. https://access.redhat.com/errata/RHSA-2025:1187\n7. https://access.redhat.com/errata/RHSA-2025:1188\n8. https://access.redhat.com/errata/RHSA-2025:1189\n9. https://access.redhat.com/errata/RHSA-2025:1207\n10. https://access.redhat.com/errata/RHSA-2025:1275\n11. https://access.redhat.com/errata/RHSA-2025:1295\n12. https://access.redhat.com/errata/RHSA-2025:1296\n13. https://access.redhat.com/errata/RHSA-2025:1372\n14. https://access.redhat.com/errata/RHSA-2025:1453\n15. https://access.redhat.com/errata/RHSA-2025:1707\n16. https://access.redhat.com/security/cve/CVE-2024-11218\n17. https://bugzilla.redhat.com/show_bug.cgi?id=2326231", "creation_timestamp": "2025-02-27T01:26:02.000000Z"}, {"uuid": "a92ea708-3ce3-45b5-9ffb-6e7a93322e6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2520", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11218\n\ud83d\udd39 Description: A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.\n\ud83d\udccf Published: 2025-01-22T04:55:30.649Z\n\ud83d\udccf Modified: 2025-01-22T04:55:30.649Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/security/cve/CVE-2024-11218\n2. https://bugzilla.redhat.com/show_bug.cgi?id=2326231", "creation_timestamp": "2025-01-22T06:03:32.000000Z"}, {"uuid": "eb0b0471-8f0c-4e3f-82e9-2249655a79a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/H4pBs7HYOXM99n9EqU-4XyCClDp4eYbt8Y7KTVTioQjKWyNG", "content": "", "creation_timestamp": "2025-02-14T10:06:08.000000Z"}, {"uuid": "0d5d1200-f167-4868-925c-d576aa3f5fde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12130", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11218\n\ud83d\udd25 CVSS Score: 8.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.\n\ud83d\udccf Published: 2025-01-22T04:55:30.649Z\n\ud83d\udccf Modified: 2025-04-16T18:43:10.993Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2025:0830\n2. https://access.redhat.com/errata/RHSA-2025:0878\n3. https://access.redhat.com/errata/RHSA-2025:0922\n4. https://access.redhat.com/errata/RHSA-2025:0923\n5. https://access.redhat.com/errata/RHSA-2025:1186\n6. https://access.redhat.com/errata/RHSA-2025:1187\n7. https://access.redhat.com/errata/RHSA-2025:1188\n8. https://access.redhat.com/errata/RHSA-2025:1189\n9. https://access.redhat.com/errata/RHSA-2025:1207\n10. https://access.redhat.com/errata/RHSA-2025:1275\n11. https://access.redhat.com/errata/RHSA-2025:1295\n12. https://access.redhat.com/errata/RHSA-2025:1296\n13. https://access.redhat.com/errata/RHSA-2025:1372\n14. https://access.redhat.com/errata/RHSA-2025:1453\n15. https://access.redhat.com/errata/RHSA-2025:1707\n16. https://access.redhat.com/errata/RHSA-2025:1713\n17. https://access.redhat.com/errata/RHSA-2025:1908\n18. https://access.redhat.com/errata/RHSA-2025:1910\n19. https://access.redhat.com/errata/RHSA-2025:1914\n20. https://access.redhat.com/errata/RHSA-2025:2441\n21. https://access.redhat.com/errata/RHSA-2025:2443\n22. https://access.redhat.com/errata/RHSA-2025:2454\n23. https://access.redhat.com/errata/RHSA-2025:2456\n24. https://access.redhat.com/errata/RHSA-2025:2701\n25. https://access.redhat.com/errata/RHSA-2025:2703\n26. https://access.redhat.com/errata/RHSA-2025:2710\n27. https://access.redhat.com/errata/RHSA-2025:2712\n28. https://access.redhat.com/errata/RHSA-2025:3577\n29. https://access.redhat.com/errata/RHSA-2025:3798\n30. https://access.redhat.com/security/cve/CVE-2024-11218\n31. https://bugzilla.redhat.com/show_bug.cgi?id=2326231", "creation_timestamp": "2025-04-16T18:56:07.000000Z"}, {"uuid": "eaa2e960-e8dd-420d-bb76-7bd05093d90e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://t.me/cvedetector/16073", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11218 - Podman/Buildah Compose Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11218 \nPublished : Jan. 22, 2025, 5:15 a.m. | 37\u00a0minutes ago \nDescription : A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host. \nSeverity: 8.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-22T07:12:01.000000Z"}, {"uuid": "77efb892-b10e-4a9a-ae26-ec99d7be7e30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/2GbtUoHMFF44U27GnZOaWCuJrHoCaXwBOvZwT7QRqgco0uuR", "content": "", "creation_timestamp": "2025-02-06T02:40:20.000000Z"}, {"uuid": "a3a2b10a-d695-46ec-bf36-321b4b912631", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://t.me/CyberBulletin/2182", "content": "\u26a1Podman and Buildah Vulnerable to Container Breakout \u2013 CVE-2024-11218.\n\n#CyberBulletin", "creation_timestamp": "2025-01-27T11:24:04.000000Z"}, {"uuid": "8ba47add-c64d-4429-94a3-9e1ab7cd7fd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/FsmZ1sneld_hSit-qBB7WWADsJNY71hcEnSe_AOfhsaio3gF", "content": "", "creation_timestamp": "2025-02-14T09:46:58.000000Z"}, {"uuid": "3c8ac558-15ed-4c9f-9798-7a1433e12cc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/SRQu-Rhb7v1-pv-oMQo-GP9yKCbkD8ZjKLUS3DabjphTljr7", "content": "", "creation_timestamp": "2025-02-14T09:46:58.000000Z"}, {"uuid": "36226088-66d9-44bd-835f-34404ab9c3d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/F3o0-LI6lrEFIssK8kclyfbs_xT3kN8dai1EX-qslTreI9KJ", "content": "", "creation_timestamp": "2025-02-14T09:46:58.000000Z"}, {"uuid": "912a51dd-d034-472b-8273-dc03fbccdb93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/zPRf5sy2nrfNIh9ihojqpVYfoin8NwwCjfJ9TtDC6E1yz3Jp", "content": "", "creation_timestamp": "2025-02-14T10:01:39.000000Z"}, {"uuid": "12c4ad10-8ff7-4d8e-ad27-d5ee4e82122e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/LXhWAf2aYB8jupokX7Qp0vbiRBWGzTGp7AZRKqh-6HUnyvEt", "content": "", "creation_timestamp": "2025-02-14T10:01:39.000000Z"}]}