Sign In

GMS-2021-101

SOURCE - gitlab

Summary

### Impact In the OCI Image Specification version 1.0.1 and prior, manifest and index documents are not self-describing and documents with a single digest could be interpreted as either a manifest or an index. ### Patches The Image Specification will be updated to recommend that both manifest and index documents contain a mediaType field to identify the type of document.

Common Weakness Enumeration (CWE)

SOURCE - gitlab

CWE-1035

OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities

CWE-937

OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

Sources (1)

Impacted images

gitlab

CREATED

UPDATED

SOURCE ID

GMS-2021-101

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-1035CWE-937
RATING UNAVAILABLE FROM SOURCE