CVE-2024-8781 HIGH

CVE-2024-8781: Container Escape Vulnerability in TR7's Application Security Platform (ASP)

Vendor Tr7
Product Application Security Platform (ASP)
Weakness CWE-250
Published November 18, 2024
Last update June 2, 2026

CVSS base score

8.7/10
Attack vector Local
Attack complexity High
Privileges required High
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

What the vulnerability does

01Description

Execution with Unnecessary Privileges, : Improper Protection of Alternate Path vulnerability in TR7 Application Security Platform (ASP) allows Privilege Escalation, -Privilege Abuse. This issue affects Application Security Platform (ASP): v1.4.25.188.

Key dates

02Disclosure timeline

November 18, 2024 CVE published
June 2, 2026 Record updated