CVE-2016-1585
CVE Details
Visit the official vulnerability details page for CVE-2016-1585 to learn more.
Initial Publication
11/10/2024
Last Update
12/16/2024
Third Party Dependency
libapparmor1
NIST CVE Summary
In all versions of AppArmor mount rules are accidentally widened when compiled.
CVE Severity
Our Official Summary
The vulnerability allows programs to access files and directories that they should not have access to, potentially leading to unauthorized access to sensitive data. Exploitation of this vulnerability requires privileged access to the container since only local users on the container can exploit this. Hence the risk of exploitation is low. Even if exploited, since this is a container used for specific tasks, the risk that sensitive data will be exploited through this CVE is low.
Status
Ongoing
Affected Products & Versions
| Version | Palette Enterprise | Palette Enterprise Airgap | VerteX | VerteX Airgap |
|---|---|---|---|---|
| 4.5.15 | ⚠️ Impacted | ⚠️ Impacted | ⚠️ Impacted | ⚠️ Impacted |
| 4.5.11 | ⚠️ Impacted | ⚠️ Impacted | ⚠️ Impacted | ⚠️ Impacted |
| 4.5.10 | ⚠️ Impacted | ⚠️ Impacted | ⚠️ Impacted | ⚠️ Impacted |
| 4.5.8 | ⚠️ Impacted | ⚠️ Impacted | ⚠️ Impacted | ⚠️ Impacted |
Revision History
| Date | Revision |
|---|---|
| 12/16/2024 | Impacted versions changed from 4.5.8, 4.5.10, 4.5.11 to 4.5.8, 4.5.10, 4.5.11, 4.5.15 |
| 11/18/2024 | Status changed from Open to Ongoing |
| 11/15/2024 | Impacted versions changed from 4.5.8, 4.5.10 to 4.5.8, 4.5.10, 4.5.11 |
| 11/15/2024 | Impacted versions changed from 4.5.8 to 4.5.8, 4.5.10 |