Lucene search
+L

CVE-2019-5736

🗓️ 11 Feb 2019 00:00:00Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov📰️ 12 Media mentions👁 797 Views🌐 WEB

runc through 1.0-rc6 allows attackers to overwrite the host runc binary and obtain host root access by executing a command as root in a new or existing container

Related
Detection
Refs
Paths
Social
NVD
Node
dockerdockerRange<18.09.2
Node
OR
linuxfoundationruncRange0.1.1
linuxfoundationruncMatch1.0.0rc1
linuxfoundationruncMatch1.0.0rc2
linuxfoundationruncMatch1.0.0rc3
linuxfoundationruncMatch1.0.0rc4
linuxfoundationruncMatch1.0.0rc5
linuxfoundationruncMatch1.0.0rc6
Node
Node
Node
OR
apachemesosRange1.4.01.4.3
apachemesosRange1.5.01.5.3
apachemesosRange1.6.01.6.2
apachemesosRange1.7.01.7.2
Node
Node
OR
d2iqkubernetes_engineRange<2.2.0-1.13.3
d2iqdc/osRange<1.10.10
d2iqdc/osRange1.10.111.11.9
d2iqdc/osRange1.11.101.12.1
ParameterPositionPathDescriptionCWE
/proc/self/exepath/proc/self/exeOverwrites host runc trigger path used by container escape PoCsCWE-78
/usr/sbin/docker-runcpath/usr/sbin/docker-runcHost runc binary overwritten by exploit to gain host code executionCWE-78
/proc/self/fd/3nested/proc/self/fd/3File descriptor path used to reference the container process executable for host runc overwriteCWE-78
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 02:38Current
8.8High risk
Vulners AI Score8.8
CVSS 3.18.6
CVSS 29.3
EPSS0.9857
797