CVE-2019-8339
MEDIUMFalco < 0.14.0 - Detection Engine Bypass via Missing Resource Indicator
Title source: llmDescription
An issue was discovered in Falco through 0.14.0. A missing indicator for insufficient resources allows local users to bypass the detection engine.
References (4)
Core 4
Core References
Patch, Third Party Advisory x_refsource_confirm
https://github.com/falcosecurity/falco/pull/561
Exploit, Third Party Advisory x_refsource_misc
https://www.twistlock.com/labs-blog/falco-vulnerability-cve-2019-8339/
Vendor Advisory x_refsource_confirm
https://falco.org/docs/event-sources/dropped-events/
Vendor Advisory x_refsource_confirm
https://sysdig.com/blog/cve-2019-8339-falco-vulnerability/
Scores
CVSS v3
5.5
EPSS
0.0055
EPSS Percentile
42.0%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-416
Status
published
Products (1)
falco/falco
< 0.14.0
Published
May 17, 2019
Tracked Since
Feb 18, 2026