CVE-2025-59054 (CNNVD-202509-1780)

HIGH
中文标题:
dstack 安全漏洞
英文标题:
dstack has insecure LUKS2 persistent storage partitions that may be opened and used
CVSS分数: 8.5
发布时间: 2025-09-12 13:01:02
漏洞类型: 其他
状态: PUBLISHED
数据质量分数: 0.40
数据版本: v4
漏洞描述
中文描述:

dstack是Dstack TEE开源的一个TEE部署工具。 dstack 0.5.4之前版本存在安全漏洞,该漏洞源于恶意主机可能提供特制LUKS2数据卷,导致Wireguard密钥和其他秘密信息泄露,并可能破坏客户机执行。

英文描述:

dstack is a software development kit (SDK) to simplify the deployment of arbitrary containerized apps into trusted execution environments. In versions of dstack prior to 0.5.4, a malicious host may provide a crafted LUKS2 data volume to a dstack CVM for use as the `/data` mount. The guest will open the volume and write secret data using a volume key known to the attacker, causing disclosure of Wireguard keys and other secret information. The attacker can also pre-load data on the device, which could potentially compromise guest execution. LUKS2 volume metadata is not authenticated and supports null key-encryption algorithms, allowing an attacker to create a volume such that the volume opens (cryptsetup open) without error using any passphrase or token, records all writes in plaintext (or ciphertext with an attacker-known key), and/or contains arbitrary data chosen by the attacker. Version 0.5.4 of dstack contains a patch that addresses LUKS headers.

CWE类型:
CWE-552
标签:
(暂无数据)
受影响产品
厂商 产品 版本 版本范围 平台 CPE
Dstack-TEE dstack < 0.5.4 - - cpe:2.3:a:dstack-tee:dstack:<_0.5.4:*:*:*:*:*:*:*
解决方案
中文解决方案:
(暂无数据)
英文解决方案:
(暂无数据)
临时解决方案:
(暂无数据)
参考链接
https://github.com/Dstack-TEE/dstack/security/advisories/GHSA-jxq2-hpw3-m5wf x_refsource_CONFIRM
cve.org
访问
https://github.com/Dstack-TEE/dstack/commit/e36ad5f732d8821876a861934e1f47cda7b1a130 x_refsource_MISC
cve.org
访问
https://github.com/Dstack-TEE/dstack/blob/04de4e422bb06f075b4215b2cfc410f5d7ac7aed/dstack-util/src/system_setup.rs#L453-L456 x_refsource_MISC
cve.org
访问
https://gitlab.com/cryptsetup/cryptsetup/-/merge_requests/837 x_refsource_MISC
cve.org
访问
af854a3a-2127-422b-91ae-364da2661108 OTHER
nvd.nist.gov
访问
CVSS评分详情
4.0 (cna)
HIGH
8.5
CVSS向量: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
机密性
HIGH
完整性
HIGH
可用性
NONE
后续系统影响 (Subsequent):
机密性
NONE
完整性
NONE
可用性
NONE
时间信息
发布时间:
2025-09-12 13:01:02
修改时间:
2025-09-12 14:34:39
创建时间:
2025-11-11 15:40:46
更新时间:
2026-01-12 02:27:54
利用信息
暂无可利用代码信息
数据源详情
数据源 记录ID 版本 提取时间
CVE cve_CVE-2025-59054 2025-11-11 15:23:31 2025-11-11 07:40:46
NVD nvd_CVE-2025-59054 2025-11-11 15:01:02 2025-11-11 07:48:33
CNNVD cnnvd_CNNVD-202509-1780 2025-11-11 15:12:57 2025-11-11 08:00:10
版本与语言
当前版本: v4
主要语言: EN
支持语言:
EN ZH
安全公告
暂无安全公告信息
变更历史
v4 NVD
2026-01-12 02:27:54
references_count: 4 → 5
查看详细变更
  • references_count: 4 -> 5
v3 CNNVD
2025-11-11 16:00:10
vulnerability_type: 未提取 → 其他; cnnvd_id: 未提取 → CNNVD-202509-1780; data_sources: ['cve', 'nvd'] → ['cnnvd', 'cve', 'nvd']
查看详细变更
  • vulnerability_type: 未提取 -> 其他
  • cnnvd_id: 未提取 -> CNNVD-202509-1780
  • data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
v2 NVD
2025-11-11 15:48:33
data_sources: ['cve'] → ['cve', 'nvd']
查看详细变更
  • data_sources: ['cve'] -> ['cve', 'nvd']