Lucene search
+L

6 matches found

snyk
snyk
added 2026/06/13 5:13 p.m.5 views

UNIX Symbolic Link (Symlink) Following

Overview Affected versions of this package are vulnerable to UNIX Symbolic Link Symlink Following in setupPtmx and setupDevSymlinks, which enable file deletion via calls to os.Remove and os.Symlink. An attacker who supplies a container image whose /dev is a symlink can redirect these operations...

4.8CVSS5.5AI score0.00222EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/13 12:0 a.m.21 views

PT-2026-49168

Name of the Vulnerable Software and Affected Versions runc versions prior to 1.3.6 runc versions prior to 1.4.3 runc versions prior to 1.5.0-rc.3 Description A flaw involving a /dev symlink allows a malicious container image to obtain limited write access to the host filesystem. This issue occurs...

3.3CVSS5.2AI score0.00222EPSS
Exploits0References20
nvd
nvd
added 2025/08/25 6:15 p.m.5 views

CVE-2025-57802

Airlink's Daemon interfaces with Docker and the Panel to provide secure access for controlling instances via the Panel. In version 1.0.0, an attacker with access to the affected container can create symbolic links inside the mounted directory /app/data. Because the container bind-mounts an...

8.7CVSS0.0036EPSS
Exploits0References2
redhat
redhat
added 2023/11/07 8:47 a.m.5 views

runc: AppArmor can be bypassed when `/proc` inside the container is symlinked with a specific mount configuration

A flaw was found in runc. This vulnerability could allow a remote attacker to bypass security restrictions and create a symbolic link inside a container to the /proc directory, bypassing AppArmor and SELinux protections...

7.8CVSS6.9AI score0.00343EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2023/03/25 12:0 a.m.7 views

PT-2023-3594 · Apparmor +10 · Apparmor +10

Name of the Vulnerable Software and Affected Versions: runc versions prior to 1.1.5 Description: The issue is related to the incorrect handling of symbolic links before accessing a file, which allows an attacker to access confidential data, compromise its integrity, and cause a denial of service...

9.8CVSS6.2AI score0.06604EPSS
Exploits5References173
osv
osv
added 2014/04/15 12:0 a.m.6 views

UBUNTU-CVE-2013-6456

The LXC driver lxc/lxcdriver.c in libvirt 1.0.1 through 1.2.1 allows local users to 1 delete arbitrary host devices via the virDomainDeviceDettach API and a symlink attack on /dev in the container; 2 create arbitrary nodes mknod via the virDomainDeviceAttach API and a symlink attack on /dev in th...

5.8CVSS7AI score0.00573EPSS
Exploits0References4
Rows per page
Query Builder