{
  "metadata": {
    "@context": "https://openvex.dev/ns/v0.2.0",
    "@id": "https://packages.broadcom.com/photon/photon_cve_metadata/cve/2023/CVE-2023-24536",
    "author": "VMware Photon OS",
    "timestamp": "2026-04-22T05:34:23.720562",
    "version": 1
  },
  "statements": [
    {
      "vulnerability": {
        "@id": "https://nvd.nist.gov/vuln/detail/CVE-2023-24536",
        "name": "CVE-2023-24536"
      },
      "products": [
        {
          "@id": "pkg:rpm/photon/falco@0.35.0-4.0510183001.ph4?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/falco@0.35.0-4.0510183001.ph4?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/falco-devel@0.35.0-4.0510183001.ph4?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/falco-devel@0.35.0-4.0510183001.ph4?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/kubernetes-dashboard@2.7.0-1.ph4?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/kubernetes-dashboard@2.7.0-1.ph4?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/pmd-ng@0.1-2.ph4?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/pmd-ng@0.1-2.ph4?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/falco@0.32.2-6.0601037001.ph5?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/falco@0.32.2-6.0601037001.ph5?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/kubernetes-dashboard@2.7.0-6.ph5?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/kubernetes-dashboard@2.7.0-6.ph5?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/pmd-ng@0.1-3.ph5?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/pmd-ng@0.1-3.ph5?arch=aarch64"
        }
      ],
      "status": "fixed",
      "status_notes": "the cve is second level belonging to go, the files affected in patch https://github.com/golang/go/commit/bf8c7c575c8a552d9d79deb29e80854dc88528d0 are not consumed in cri-tools."
    },
    {
      "vulnerability": {
        "@id": "https://nvd.nist.gov/vuln/detail/CVE-2023-24536",
        "name": "CVE-2023-24536"
      },
      "products": [
        {
          "@id": "pkg:rpm/photon/cri-tools?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/cri-tools?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/podman?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/podman?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/podman-tests?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/podman-tests?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/podman-remote?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/podman-remote?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/podman-plugins?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/podman-plugins?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/podman-gvproxy?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/podman-gvproxy?arch=aarch64"
        }
      ],
      "status": "not_affected",
      "status_notes": "the cve is second level belonging to go, the files affected in patch https://github.com/golang/go/commit/bf8c7c575c8a552d9d79deb29e80854dc88528d0 are not consumed in cri-tools."
    },
    {
      "vulnerability": {
        "@id": "https://nvd.nist.gov/vuln/detail/CVE-2023-24536",
        "name": "CVE-2023-24536"
      },
      "products": [
        {
          "@id": "pkg:rpm/photon/pmweb?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/pmweb?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/go?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/go?arch=aarch64"
        }
      ],
      "status": "under_investigation",
      "status_notes": "the cve is second level belonging to go, the files affected in patch https://github.com/golang/go/commit/bf8c7c575c8a552d9d79deb29e80854dc88528d0 are not consumed in cri-tools."
    }
  ]
}