2 matches found
CVE-2020-2023
Kata Containers doesn't restrict containers from accessing the guest's root filesystem device. Malicious containers can exploit this to gain code execution on the guest and masquerade as the kata-agent. This issue affects Kata Containers 1.11 versions earlier than 1.11.1; Kata Containers 1.10...
CVE-2020-2023
Kata Containers CVE-2020-2023: Root filesystem access was not restricted, enabling potential code execution on the guest and masquerading as the kata-agent. Affected: Kata Containers 1.11.x before 1.11.1; 1.10.x before 1.10.5; 1.9 and earlier. Remediation: upgrade to fixed releases (e.g., 1.11.1 ...