Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2022/11/12 12:0 a.m.35 views

AlmaLinux 8 : container-tools:4.0 (ALSA-2022:7469)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:7469 advisory. cri-o: memory exhaustion on the node when access to the kube api CVE-2022-1708 golang: crash in a golang.org/x/crypto/ssh server CVE-2022-27191 runc:...

7.8CVSS7.7AI score0.03931EPSS
Exploits1References4
OSV
OSV
added 2022/05/17 9:15 p.m.2 views

UBUNTU-CVE-2022-29162

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. A bug was found in runc prior to version 1.1.2 where runc exec --cap created processes with non-empty inheritable Linux process capabilities, creating an atypical Linux environment and enabling...

7.8CVSS6.7AI score0.00386EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/05/10 2:19 p.m.2 views

crun: Default inheritable capabilities for linux container should be empty

A flaw was found in crun where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby Docker Engine where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to...

7.5CVSS5.7AI score0.01124EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/04/04 8:15 p.m.2 views

CVE-2022-27649

A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was found in Moby Docker Engine, where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to...

7.5CVSS6.8AI score0.01441EPSS
Exploits0References10
OSV
OSV
added 2022/04/04 8:15 p.m.2 views

DEBIAN-CVE-2022-27651

A flaw was found in buildah where containers were incorrectly started with non-empty default permissions. A bug was found in Moby Docker Engine where containers were incorrectly started with non-empty inheritable Linux process capabilities, enabling an attacker with access to programs with...

6.8CVSS6.7AI score0.01225EPSS
Exploits0References1
Rows per page
Query Builder