CVE-2021-20199

🗓️ 02 Feb 2021 19:14:15Reported by [email protected]Type

Rootless containers with Podman receive traffic with a source IP of 127.0.0.1, impacting applications trusting localhost connections without authentication. Affects Podman 1.8.0 onwards

Reporter	Title	Published	Views	Family All 46
UbuntuCve	CVE-2021-20199	2 Feb 202100:00	–	ubuntucve
CVE	CVE-2021-20199	2 Feb 202119:15	–	cve
AlpineLinux	CVE-2021-20199	2 Feb 202119:15	–	alpinelinux
Github Security Blog	Podman Origin Validation Error	18 May 202121:07	–	github
Prion	Authentication flaw	2 Feb 202119:15	–	prion
RedhatCVE	CVE-2021-20199	1 Feb 202111:15	–	redhatcve
OSV	CVE-2021-20199	2 Feb 202119:15	–	osv
OSV	Podman Origin Validation Error	18 May 202121:07	–	osv
OSV	Moderate: container-tools:rhel8 security, bug fix, and enhancement update	18 May 202106:06	–	osv
OSV	Moderate: container-tools:rhel8 security, bug fix, and enhancement update	18 May 202106:06	–	osv

Nvd

Node

podman_project podmanRange1.8.0–3.0.0

Source	Link
github	www.github.com/containers/podman/issues/5138
github	www.github.com/rootless-containers/rootlesskit/pull/206
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
github	www.github.com/containers/podman/pull/9052

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Feb 2021 19:15Current

CVSS24.3

CVSS35.9

EPSS0.00154

CWE-346