CVE-2024-51481

LOW EPSS 6.6%
Published Oct 31, 20241y ago · Modified Jun 17, 20262w ago
1.0 CVSS 4.0
Low
Find Similar
Published Oct 31, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

Nix is a package manager for Linux and other Unix systems. On macOS, built-in builders (such as `builtin:fetchurl`, exposed to users with `import <nix/fetchurl.nix>`) were not executed in the macOS sandbox. Thus, these builders (which are running under the `nixbld*` users) had read access to world-readable paths and write access to world-writable paths outside of the sandbox. This issue is fixed in 2.18.9, 2.19.7, 2.20.9, 2.21.5, 2.22.4, 2.23.4, and 2.24.10. Note that sandboxing is not enabled by default on macOS. The Nix sandbox is not primarily intended as a security mechanism, but as an aid to improve reproducibility and purity of Nix builds. However, sandboxing *can* mitigate the impact of other security issues by limiting what parts of the host system a build has access to.

CVSS Details

Base Score
1.0
Exploitability
Impact
Vector string
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector Local
Attack Complexity High
Privileges Required Low
User Interaction P
Scope X

Threat Intelligence

EPSS Exploit Probability
6.6% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-693

References 2

  • github.com https://github.com/NixOS/nix/commit/597fcc98e18e3178734d06a9e7306250e8cb8d74
  • github.com https://github.com/NixOS/nix/security/advisories/GHSA-wf4c-57rh-9pjg

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.