Lucene search
RedhatCVELIST:CVE-2022-0811HistoryMar 16, 2022 - 2:03 p.m.
CVE-2022-0811
2022-03-1614:03:40
CWE-94
redhat
www.cve.org
A flaw was found in CRI-O in the way it set kernel options for a pod. This issue allows anyone with rights to deploy a pod on a Kubernetes cluster that uses the CRI-O runtime to achieve a container escape and arbitrary code execution as root on the cluster node, where the malicious pod was deployed.
CNA Affected
[
{
"product": "CRI-O",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "cri-o 1.24.0, cri-o 1.23.2, cri-o 1.22.3, cri-o 1.21.6, cri-o 1.20.7, cri-o 1.19.6"
}
]
}
]Related
githubexploit
githubexploit
Exploit for Code Injection in Kubernetes Cri-O
2022-03-21 09:39:22
nvd
nvd
CVE-2022-0811
2022-03-16 15:15:16
altlinux
altlinux
Security fix for the ALT Linux 10 package cri-o version 1.22.3-alt2
2022-03-24 00:00:00
Security fix for the ALT Linux 9 package cri-o version 1.20.7-alt1
2022-03-25 00:00:00
oraclelinux
oraclelinux
cri-o security update
2022-03-18 00:00:00
cri-o security update
2022-03-18 00:00:00
github
github
Code Injection in CRI-O
2022-03-15 20:13:38
nessus
nessus
Oracle Linux 7 / 8 : cri-o (ELSA-2022-9229)
2022-03-17 00:00:00
RHEL 7 / 8 : OpenShift Container Platform 4.10.4 (RHSA-2022:0810)
2022-03-16 00:00:00
Oracle Linux 7 / 8 : cri-o (ELSA-2022-9228)
2022-03-17 00:00:00
redhat
redhat
ibm
ibm
osv
osv
Code Injection in CRI-O
2022-03-15 20:13:38
CVE-2022-0811
2022-03-16 15:15:16
cisa
cisa
CRI-O Security Update for Kubernetes
2022-03-18 00:00:00
prion
prion
Code injection
2022-03-16 15:15:00
hivepro
hivepro
veracode
veracode
Remote Code Execution (RCE)
2022-03-21 05:51:44
cbl_mariner
cbl_mariner
CVE-2022-0811 affecting package cri-o for versions less than 1.21.7-1
2024-04-12 05:06:27
redhatcve
redhatcve
CVE-2022-0811
2022-03-15 14:28:28
cve
cve
CVE-2022-0811
2022-03-16 15:15:16
thn
thn