Lucene search
K

235 matches found

NVD
NVD
added 2025/11/06 7:15 p.m.8 views

CVE-2025-31133

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.8CVSS0.0067EPSS
Exploits2References5
OSV
OSV
added 2025/11/06 7:15 p.m.5 views

AZL-70592 CVE-2025-31133 affecting package kubernetes for versions less than 1.30.10-16

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.8CVSS6.8AI score0.0067EPSS
Exploits2References1
OSV
OSV
added 2025/11/06 7:15 p.m.7 views

AZL-70547 CVE-2025-31133 affecting package kubernetes for versions less than 1.28.4-21

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.8CVSS6.8AI score0.0067EPSS
Exploits2References1
OSV
OSV
added 2025/11/06 7:15 p.m.5 views

AZL-69818 CVE-2025-31133 affecting package moby-runc for versions less than 1.2.8-1

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.8CVSS6.8AI score0.0067EPSS
Exploits2References1
OSV
OSV
added 2025/11/06 6:47 p.m.2 views

CVE-2025-31133 runc container escape via "masked path" abuse due to mount race conditions

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.3CVSS6.9AI score0.0067EPSS
Exploits2References7
Debian CVE
Debian CVE
added 2025/11/06 6:47 p.m.3 views

CVE-2025-31133

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.8CVSS8AI score0.0067EPSS
Exploits2
CVE
CVE
added 2025/11/06 6:47 p.m.167 views

CVE-2025-31133

CVE-2025-31133 (runc) affects the runc runtime when using certain bind-mount sources, where verification of the source inode for "/dev/null" could be bypassed. Affected versions include 1.2.7 and earlier, 1.3.0-rc.1 through 1.3.1, and 1.4.0-rc.1 and 1.4.0-rc.2. The issue enables an attacker to pe...

7.8CVSS6.3AI score0.0067EPSS
Exploits2References5Affected Software1
AlpineLinux
AlpineLinux
added 2025/11/06 6:47 p.m.2 views

CVE-2025-31133

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.8CVSS6.5AI score0.0067EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/11/06 6:23 a.m.5 views

CVE-2025-31133

A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instea...

8.2CVSS6.4AI score0.0067EPSS
Exploits3References3
RedhatCVE
RedhatCVE
added 2025/11/06 6:23 a.m.12 views

CVE-2025-52565

A flaw was found in runc. CVE-2025-52565 is very similar in concept and application toCVE-2025-31133, except that it exploits a flaw in /dev/console bind-mounts. When creating the /dev/console bind-mount to /dev/pts/$n, if an attacker replaces /dev/pts/$n with a symlink then runc will bind-mount...

8.4CVSS6.4AI score0.0067EPSS
Exploits4References3
SUSE CVE
SUSE CVE
added 2025/11/06 12:28 a.m.3 views

SUSE CVE-2025-31133

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.8CVSS6.9AI score0.0067EPSS
Exploits2References28
SUSE CVE
SUSE CVE
added 2025/11/06 12:24 a.m.2 views

SUSE CVE-2025-52565

runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting /dev/pts/$n to /dev/console inside the container, an attacker can...

7.8CVSS6.7AI score0.00523EPSS
Exploits1References28
NVD
NVD
added 2025/11/06 12:15 a.m.5 views

CVE-2025-62161

Youki is a container runtime written in Rust. In versions 0.5.6 and below, the initial validation of the source /dev/null is insufficient, allowing container escape when youki utilizes bind mounting the container's /dev/null as a file mask. This issue is fixed in version 0.5.7...

10CVSS0.00236EPSS
Exploits0References2
OSV
OSV
added 2025/11/05 11:9 p.m.5 views

CVE-2025-62161 youki container escape via "masked path" abuse due to mount race conditions

Youki is a container runtime written in Rust. In versions 0.5.6 and below, the initial validation of the source /dev/null is insufficient, allowing container escape when youki utilizes bind mounting the container's /dev/null as a file mask. This issue is fixed in version 0.5.7...

7.3CVSS6.8AI score0.00236EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/11/05 6:44 p.m.37 views

youki container escape via "masked path" abuse due to mount race conditions

Impact youki utilizes bind mounting the container's /dev/null as a file mask. When performing this operation, the initial validation of the source /dev/null was insufficient. Specifically, we initially failed to verify whether /dev/null was genuinely present. However, we did perform validation to...

10CVSS6.9AI score0.00236EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2025/11/05 5:34 p.m.2 views

GHSA-QW9X-CQR3-WC7R runc container escape with malicious config due to /dev/console mount and related races

Impact This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target namely, the bind-mount of /dev/pts/$n to /dev/console as configured for all containers that allocate a console. In runc version 1.0.0-rc3 and later...

7.3CVSS6.6AI score0.00523EPSS
Exploits2References11
Snyk
Snyk
added 2025/11/05 5:34 p.m.2 views

Race Condition Enabling Link Following

Overview Affected versions of this package are vulnerable to Race Condition Enabling Link Following due to insufficient checks when bind-mounting /dev/pts/$n to /dev/console inside the container. An attacker can gain unauthorized write access to sensitive files within the container environment by...

8.4CVSS7.1AI score0.00523EPSS
Exploits1References3
Snyk
Snyk
added 2025/11/05 5:34 p.m.2 views

Race Condition Enabling Link Following

Overview Affected versions of this package are vulnerable to Race Condition Enabling Link Following due to insufficient checks when bind-mounting /dev/pts/$n to /dev/console inside the container. An attacker can gain unauthorized write access to sensitive files within the container environment by...

8.4CVSS7.1AI score0.00523EPSS
Exploits1References3
Snyk
Snyk
added 2025/11/05 5:34 p.m.2 views

Race Condition Enabling Link Following

Overview Affected versions of this package are vulnerable to Race Condition Enabling Link Following due to insufficient checks when bind-mounting /dev/pts/$n to /dev/console inside the container. An attacker can gain unauthorized write access to sensitive files within the container environment by...

8.4CVSS7.1AI score0.00523EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2025/11/05 5:34 p.m.12 views

runc container escape with malicious config due to /dev/console mount and related races

Impact This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target namely, the bind-mount of /dev/pts/$n to /dev/console as configured for all containers that allocate a console. In runc version 1.0.0-rc3 and later...

8.4CVSS6.6AI score0.00523EPSS
Exploits1References11Affected Software1
Rows per page
Query Builder