PT-2024-36793 · Stardust · Stardust
Somedigitalmoon
·
Published
2024-12-20
·
Updated
2024-12-20
·
CVE-2024-56330
CVSS v4.0
9.3
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Stardust versions prior to 12/20/24
Description
The issue affects Stardust, a platform for streaming isolated desktop containers. It allows inter container communication (ICC) to remain enabled, potentially granting users within one container access to another container's agent, thus compromising access.
Recommendations
For versions prior to 12/20/24, upgrade to a newer version to resolve the issue.
As a temporary workaround, consider manually disabling ICC if an upgrade is not feasible.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Stardust