Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-46680

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - containerd is an open-source container runtime. In versions prior to 1.7.32, 2.0.9, 2.2.4 and 2.3.1, containers launched with a numeric User directive that cann...

7.8CVSS5.9AI score0.00221EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/06/02 12:0 a.m.321 views

Containerd 1.7.27 < 1.7.32 / 2.0.4 < 2.0.9 / 2.1.x < 2.2.4 / 2.3.x < 2.3.1 runAsNonRoot Bypass

The version of Containerd on the remote host is 1.7.27 prior to 1.7.32, 2.0.4 prior to 2.0.9, 2.1.x prior to 2.2.4, or 2.3.x prior to 2.3.1. It is, therefore, affected by a security bypass vulnerability. A bug was found in containerd where containers launched with a numeric User directive that...

7.8CVSS5.5AI score0.00221EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/05/21 9:40 p.m.40 views

containerd user ID handling bypass allows runAsNonRoot evasion

Impact A bug was found in containerd where containers launched with a numeric User directive that cannot be parsed as a 32-bit integer are incorrectly treated as a username. If a crafted image provides an /etc/passwd file mapping this large numeric string to root, the container ultimately runs as...

7.8CVSS5.7AI score0.00275EPSS
Exploits2References2Affected Software2
OSV
OSV
added 2026/05/21 9:40 p.m.8 views

GHSA-FQW6-GF59-QR4W containerd user ID handling bypass allows runAsNonRoot evasion

Impact A bug was found in containerd where containers launched with a numeric User directive that cannot be parsed as a 32-bit integer are incorrectly treated as a username. If a crafted image provides an /etc/passwd file mapping this large numeric string to root, the container ultimately runs as...

7.3CVSS5.7AI score0.00221EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/10/09 6:47 p.m.6 views

Important: Red Hat Security Advisory: Red Hat OpenShift GitOps v1.16.4 security update

Important: Red Hat OpenShift GitOps v1.16.4 security update An update is now available for Red Hat OpenShift GitOps. Bug Fixes and Enhancements: GITOPS-6703 After Upgrade to v.1.16 not able to add --metrics-application-labels in spec.controller.extraCommandArgs with multiple values GITOPS-7180...

7.5CVSS6.7AI score0.00563EPSS
Exploits3References8
Rows per page
Query Builder