Lucene search
+L

362 matches found

cvelist
cvelist
added 2026/06/10 10:20 p.m.33 views

CVE-2026-47213 BoxLite: Timeout Bypass Vulnerability

Boxlite is a sandbox service that allows users to create lightweight virtual machines Boxes and launch OCI containers within them to run untrusted code. In versions 0.8.2 and prior, Boxlite allows users to configure a timeout for services running inside the virtual machine. When the timeout is...

6.5CVSS0.00268EPSS
Exploits0References2
osv
osv
added 2026/05/26 3:32 p.m.3 views

GHSA-7JCP-V9W4-WJMG KubeVirt has a Link Following vulnerability

A flaw was found in KubeVirt's virt-handler component. This vulnerability allows an authenticated OpenShift user with edit permissions in a single namespace to exploit improper symlink validation when connecting to virtual machine console sockets. By replacing the console socket with a symlink to...

9.9CVSS5.8AI score0.00596EPSS
Exploits0References17
nvd
nvd
added 2026/05/26 2:16 p.m.25 views

CVE-2026-7374

A flaw was found in KubeVirt's virt-handler component. This vulnerability allows an authenticated OpenShift user with edit permissions in a single namespace to exploit improper symlink validation when connecting to virtual machine console sockets. By replacing the console socket with a symlink to...

9.9CVSS0.00596EPSS
Exploits0References13
osv
osv
added 2026/05/20 12:3 a.m.11 views

RLSA-2026:19178 Moderate: crun security update

crun is a OCI runtime Security Fixes: crun: crun: Privilege escalation due to incorrect parsing of the --user option CVE-2026-30892 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pages listed in the...

7.8CVSS5.8AI score0.00159EPSS
Exploits1References2
redhat
redhat
added 2026/05/19 6:12 p.m.19 views

crun: crun: Privilege escalation due to incorrect parsing of the `--user` option

A flaw was found in crun, an open-source OCI Container Runtime. A local user can exploit this vulnerability due to incorrect parsing of the --user option when using crun exec. The value 1 is misinterpreted as root privileges User ID 0 and Group ID 0 instead of the intended User ID 1 and Group ID ...

7.8CVSS5.7AI score0.00159EPSS
Exploits1References7
redhat
redhat
added 2026/05/09 3:24 p.m.2 views

github.com/containerd/containerd: containerd: Arbitrary host file read via symlink following in CRI checkpoint restore

A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface CRI plugin incorrectly restores container logs from a checkpoint image. This vulnerability, categorized as a Path Traversal CWE-61, allows an attacker to read arbitrary files on the host system by...

8.2CVSS6.1AI score0.00208EPSS
Exploits0References5
nessus
nessus
added 2026/05/06 12:0 a.m.12 views

RHCOS 4 : OpenShift Container Platform 4.10.4 (RHSA-2022:0810)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:0810 advisory. - CRI-O: Arbitrary code execution in cri-o via abusing kernel.corepattern kernel parameter CVE-2022-0811 Note that Nessus has not tested for...

9CVSS6.5AI score0.18561EPSS
Exploits0References4
nessus
nessus
added 2026/05/04 12:0 a.m.7 views

RHCOS 4 : OpenShift Container Platform 4.12.60 (RHSA-2024:4008)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:4008 advisory. - cri-o: malicious container can create symlink on host CVE-2024-5154 Note that Nessus has not tested for this issue but has instead relied...

8.1CVSS5.8AI score0.01237EPSS
Exploits0References4
nessus
nessus
added 2026/05/04 12:0 a.m.8 views

RHCOS 4 : OpenShift Container Platform 4.14.29 (RHSA-2024:3700)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:3700 advisory. - cri-o: malicious container can create symlink on host CVE-2024-5154 Note that Nessus has not tested for this issue but has instead relied...

8.1CVSS7.3AI score0.01237EPSS
Exploits0References4
nessus
nessus
added 2026/04/30 12:0 a.m.11 views

RHEL 9 : runc (RHSA-2026:12031)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:12031 advisory. The runC tool is a lightweight, portable implementation of the Open Container Format OCF that provides container runtime. Security Fixes:...

10CVSS7.4AI score0.01945EPSS
Exploits3References10
fedora
fedora
added 2026/04/02 1:6 a.m.4 views

[SECURITY] Fedora 43 Update: crun-1.27-1.fc43

crun is a OCI runtime...

7.8CVSS5.8AI score0.00159EPSS
Exploits1
osv
osv
added 2026/03/26 12:16 a.m.4 views

DEBIAN-CVE-2026-30892

crun is an open source OCI Container Runtime fully written in C. In versions 1.19 through 1.26, the crun exec option -u --user is incorrectly parsed. The value 1 is interpreted as UID 0 and GID 0 when it should have been UID 1 and GID 0. The process thus runs with higher privileges than expected...

7.8CVSS5.2AI score0.00159EPSS
Exploits1References1
nvd
nvd
added 2026/03/26 12:16 a.m.6 views

CVE-2026-30892

crun is an open source OCI Container Runtime fully written in C. In versions 1.19 through 1.26, the crun exec option -u --user is incorrectly parsed. The value 1 is interpreted as UID 0 and GID 0 when it should have been UID 1 and GID 0. The process thus runs with higher privileges than expected...

7.8CVSS0.00159EPSS
Exploits1References3
ubuntucve
ubuntucve
added 2026/03/26 12:16 a.m.5 views

CVE-2026-30892

crun is an open source OCI Container Runtime fully written in C. In versions 1.19 through 1.26, the crun exec option -u --user is incorrectly parsed. The value 1 is interpreted as UID 0 and GID 0 when it should have been UID 1 and GID 0. The process thus runs with higher privileges than expected...

7.8CVSS5.8AI score0.00159EPSS
Exploits1References4
cnnvd
cnnvd
added 2026/03/26 12:0 a.m.10 views

crun 安全漏洞

Crun is an OCI container runtime library developed by Containers in C language. Versions of Crun from 1.19 to 1.26 and earlier contain security vulnerabilities. These vulnerabilities stem from errors in parsing the crun exec option with the -u parameter, which may allow processes to run with...

7.8CVSS5.8AI score0.00159EPSS
Exploits1References3
debiancve
debiancve
added 2026/03/25 11:57 p.m.6 views

CVE-2026-30892

crun is an open source OCI Container Runtime fully written in C. In versions 1.19 through 1.26, the crun exec option -u --user is incorrectly parsed. The value 1 is interpreted as UID 0 and GID 0 when it should have been UID 1 and GID 0. The process thus runs with higher privileges than expected...

7.8CVSS5.2AI score0.00159EPSS
Exploits1
euvd
euvd
added 2026/03/25 11:57 p.m.5 views

EUVD-2026-16026

crun is an open source OCI Container Runtime fully written in C. In versions 1.19 through 1.26, the crun exec option -u --user is incorrectly parsed. The value 1 is interpreted as UID 0 and GID 0 when it should have been UID 1 and GID 0. The process thus runs with higher privileges than expected...

5.8AI score0.00159EPSS
Exploits1References3
attackerkb
attackerkb
added 2026/03/25 11:57 p.m.4 views

CVE-2026-30892

crun is an open source OCI Container Runtime fully written in C. In versions 1.19 through 1.26, the crun exec option -u --user is incorrectly parsed. The value 1 is interpreted as UID 0 and GID 0 when it should have been UID 1 and GID 0. The process thus runs with higher privileges than expected...

5.8AI score0.00159EPSS
Exploits1References4Affected Software1
cvelist
cvelist
added 2026/03/25 11:57 p.m.25 views

CVE-2026-30892 Crun incorrectly parses `crun exec` option `-u`, leading to privilege escalation

crun is an open source OCI Container Runtime fully written in C. In versions 1.19 through 1.26, the crun exec option -u --user is incorrectly parsed. The value 1 is interpreted as UID 0 and GID 0 when it should have been UID 1 and GID 0. The process thus runs with higher privileges than expected...

0.00159EPSS
Exploits1References3
ptsecurity
ptsecurity
added 2026/03/25 12:0 a.m.8 views

PT-2026-28151

Name of the Vulnerable Software and Affected Versions crun versions 1.19 through 1.26 Description crun, an open source OCI Container Runtime written in C, has an issue where the crun exec option -u --user is incorrectly parsed. Specifically, a value of 1 is misinterpreted as UID 0 and GID 0 inste...

7.8CVSS5.9AI score0.00159EPSS
Exploits1References25
Rows per page
Query Builder