Lucene search

CVE-2023-27561

🗓️ 03 Mar 2023 19:11:15Reported by mitreType

runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privilege

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
Prion	Design/Logic Flaw	3 Mar 202319:15	–	prion
Prion	Improper access control	12 Feb 202015:15	–	prion
OSV	Opencontainers runc Incorrect Authorization vulnerability	3 Mar 202321:30	–	osv
OSV	CVE-2023-27561	3 Mar 202319:15	–	osv
OSV	CGA-6522-RP7G-HR62	6 Jun 202412:24	–	osv
OSV	OPENSUSE-SU-2024:12992-1 kubernetes1.27-apiserver-1.27.2-1.1 on GA media	15 Jun 202400:00	–	osv
OSV	GO-2023-1627 Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc	20 Aug 202420:29	–	osv
OSV	CGA-WWWP-WXHQ-QG74	6 Jun 202412:26	–	osv
OSV	runc AppArmor bypass with symlinked /proc	30 Mar 202320:20	–	osv
OSV	runc vulnerabilities	23 May 202314:07	–	osv

Nvd

Node

linuxfoundation runcRange<1.1.5

Node

redhat openshift_container_platformMatch4.0

redhat enterprise_linuxMatch8.0

redhat enterprise_linuxMatch9.0

Node

debian debian_linuxMatch10.0

Source	Link
gist	www.gist.github.com/LiveOverflow/c937820b688922eb127fb760ce06dab9
github	www.github.com/opencontainers/runc/issues/3751
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNB2UEDIIJCRQW4WJLZOPQJZXCVSXMLD/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ANUGDBJ7NBUMSUFZUSKU3ZMQYZ2Z3STN/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DHGVGGMKGZSJ7YO67TGGPFEHBYMS63VF/
github	www.github.com/opencontainers/runc/issues/2197
lists	www.lists.debian.org/debian-lts-announce/2023/03/msg00023.html
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I6BF24VCZRFTYBTT3T7HDZUOTKOTNPLZ/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FYVE3GB4OG3BNT5DLQHYO4M5SXX33AQ5/
security	www.security.netapp.com/advisory/ntap-20241206-0004/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Mar 2023 19:15Current

6.8Medium risk

Vulners AI Score6.8

CVSS37

EPSS0.00204

SSVC

CWE-706