CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2117 matches found

OSV•added 2024/01/31 10:15 p.m.•4 views

AZL-34642 CVE-2024-21626 affecting package cri-tools for versions less than 1.30.1-1

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process from runc exec to have a working directory in the host filesystem...

8.6CVSS6.7AI score0.05076EPSS

Exploits18References1

OSV•added 2024/01/31 10:15 p.m.•1 views

AZL-43789 CVE-2024-21626 affecting package buildah 1.18.0-29

8.6CVSS6.7AI score0.05076EPSS

Exploits18References1

OSV•added 2024/01/31 10:15 p.m.•1 views

AZL-44226 CVE-2024-21626 affecting package podman for versions less than 5.6.1-2

8.6CVSS6.7AI score0.05076EPSS

Exploits18References1

OSV•added 2024/01/31 10:15 p.m.•0 views

AZL-34896 CVE-2024-21626 affecting package kubernetes for versions less than 1.30.1-1

8.6CVSS6.7AI score0.05076EPSS

Exploits18References1

OSV•added 2024/01/31 10:15 p.m.•1 views

AZL-34087 CVE-2024-21626 affecting package moby-runc for versions less than 1.1.9-4

8.6CVSS6.7AI score0.05076EPSS

Exploits18References1

OSV•added 2024/01/31 10:15 p.m.•2 views

AZL-34905 CVE-2024-21626 affecting package kubevirt for versions less than 1.2.0-1

8.6CVSS6.7AI score0.05076EPSS

Exploits18References1

OSV•added 2024/01/31 10:15 p.m.•2 views

AZL-44340 CVE-2024-21626 affecting package buildah for versions less than 1.41.4-2

8.6CVSS6.7AI score0.05076EPSS

Exploits18References1

OSV•added 2024/01/31 10:15 p.m.•1 views

AZL-43429 CVE-2024-21626 affecting package podman 4.1.1-26

8.6CVSS6.7AI score0.05076EPSS

Exploits18References1

Prion•added 2024/01/31 10:15 p.m.•20 views

Design/Logic Flaw

4.4CVSS8.5AI score0.05076EPSS

Exploits18References9Affected Software2

RedhatCVE•added 2024/01/31 9:41 p.m.•89 views

CVE-2024-21626

A file descriptor leak issue was found in the runc package. While a user performs OCLOEXEC all file descriptors before executing the container code, the file descriptor is open when performing setcwd2, which means that the reference can be kept alive in the container by configuring the working...

8.6CVSS8.7AI score0.05076EPSS

Exploits18References4

AlpineLinux•added 2024/01/31 9:31 p.m.•46 views

CVE-2024-21626

8.6CVSS7.1AI score0.05076EPSS

Exploits18

Debian CVE•added 2024/01/31 9:31 p.m.•88 views

CVE-2024-21626

8.6CVSS7.5AI score0.05076EPSS

Exploits18

OSV•added 2024/01/31 9:31 p.m.•27 views

CVE-2024-21626 runc container breakout through process.cwd trickery and leaked fds

8.6CVSS7.2AI score0.05076EPSS

Exploits18References12

Vulnrichment•added 2024/01/31 9:31 p.m.•4 views

CVE-2024-21626 runc container breakout through process.cwd trickery and leaked fds

8.6CVSS8.7AI score0.05076EPSS

Exploits18References9

Cvelist•added 2024/01/31 9:31 p.m.•37 views

CVE-2024-21626 runc container breakout through process.cwd trickery and leaked fds

8.6CVSS8.9AI score0.05076EPSS

Exploits18References9

CVE•added 2024/01/31 9:31 p.m.•834 views

CVE-2024-21626

CVE-2024-21626 affects runc prior to 1.1.12, with a file descriptor leak enabling container escapes from containerized processes (e.g., runc exec/run) and potential host filesystem access. The CVE description specifies attacks that could overwrite host binaries and escape to the host filesystem. ...

8.6CVSS6.6AI score0.05076EPSS

In wildExploits18References10Affected Software1

OSV•added 2024/01/31 8:17 p.m.•0 views

USN-6619-1 runc vulnerability

Rory McNamara discovered that runC did not properly manage internal file descriptor while managing containers. An attacker could possibly use this issue to obtain sensitive information or bypass container restrictions...

8.6CVSS6.7AI score0.05076EPSS

Exploits18References2