CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
containerd CRI stream server vulnerable to host memory exhaustion via terminal in github.com/containerd/containerd
github.com/containerd/containerd/commit/241563be06a3de8b6a849414c4e805b68d3bb295
github.com/containerd/containerd/commit/a05d175400b1145e5e6a735a6710579d181e7fb0
github.com/containerd/containerd/releases/tag/v1.5.16
github.com/containerd/containerd/releases/tag/v1.6.12
github.com/containerd/containerd/security/advisories/GHSA-2qjp-425j-52j9
nvd.nist.gov/vuln/detail/CVE-2022-23471
security.gentoo.org/glsa/202401-31