CVE-2024-9363

NONE EPSS 57.9%
Published Mar 20, 20251y ago · Modified Jun 17, 20262w ago
Find Similar
Published Mar 20, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

An unauthorized file deletion vulnerability exists in the latest version of the Polyaxon platform, which can lead to denial of service by terminating critical containers. An attacker can delete important files within the containers, such as `polyaxon.sock`, causing the API container to exit unexpectedly. This disrupts related services and prevents the system from functioning normally, without requiring authentication or UUID parameters.

Threat Intelligence

EPSS Exploit Probability
57.9% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-23

References 1

  • huntr.com https://huntr.com/bounties/ec7b7e1d-795d-4414-93d5-9df35d2fd391

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.