Back to directory
WRITEUP #2172

Exploiting Distroless Images

AI / LLMCommand injectionArbitrary file readArbitrary file writeContainer escape
by@TheRedOperator(Daniel Teixeira)
Program
Google
Published
Sep 22, 2022
Added to HackDex
Jan 18, 2023
Read Full Writeuphttps://www.form3.tech/engineering/content/exploiting-distroless-images
RELATED WRITEUPS
From MLOps to MLOops: Exposing the Attack Surface of Machine Learning Platforms
AI / LLMAI
Studying 0days: How we hacked Anki, the world's most popular flashcard app
RCEComponents with known vulnerabilities
We hacked Anki - 0 day exploit from studying someone elses flashcards
RCEComponents with known vulnerabilities
CVE-2024-29511 – Abusing Ghostscript’s OCR device
OtherArbitrary file read
Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS
RCEArbitrary file write

Built with ❤️ by Shubham Rawat