CVE-2024-9363
NONE EPSS 57.9%
Published Mar 20, 20251y ago · Modified Jun 17, 20262w ago
Published Mar 20, 2025 1y ago
Last Modified Jun 17, 2026 2w ago
Description
An unauthorized file deletion vulnerability exists in the latest version of the Polyaxon platform, which can lead to denial of service by terminating critical containers. An attacker can delete important files within the containers, such as `polyaxon.sock`, causing the API container to exit unexpectedly. This disrupts related services and prevents the system from functioning normally, without requiring authentication or UUID parameters.
Threat Intelligence
EPSS Exploit Probability
57.9% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-23
References 1
- huntr.com https://huntr.com/bounties/ec7b7e1d-795d-4414-93d5-9df35d2fd391
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.