{"id":"AZL-53828","summary":"CVE-2024-36620 affecting package moby-engine for versions less than 25.0.3-9","details":"moby v25.0.0 - v26.0.2 is vulnerable to NULL Pointer Dereference via daemon/images/image_history.go.","modified":"2026-04-01T05:16:36.930307Z","published":"2024-11-29T18:15:07Z","upstream":["CVE-2024-36620"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-36620"}],"affected":[{"package":{"name":"moby-engine","ecosystem":"Azure Linux:3","purl":"pkg:rpm/azure-linux/moby-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"25.0.3-9"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-53828.json"}}],"schema_version":"1.7.5"}