CVE-2020-24264
Portainer 1.24.1 and earlier is affected by an access-control flaw where bind-mount restrictions are enforced only on the client side and not on the server side. This can allow spawning a container with a bind mount, which may be leveraged to break out of the container and lead to a full Docker h...