CVE-2020-24263
CVE-2020-24263 affects Portainer ≤ 1.24.1. The issue is an insecure permissions vulnerability that allows a non-admin user to spawn new containers with critical capabilities (e.g., SYS_MODULE), enabling potential remote code execution and host takeovers. The available connected documents confirm ...