Lucene search
K

78 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.13 views

RHCOS 3 : OpenShift Container Platform 3.11.452 (RHSA-2021:2150)

The remote Red Hat Enterprise Linux CoreOS 3 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2021:2150 advisory. - runc: vulnerable to symlink exchange attack CVE-2021-30465 Note that Nessus has not tested for this issue but has instead relied only on th...

8.5CVSS5.8AI score0.06604EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 8 : container-tools:rhel8 (AXSA:2021-2362:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2362:01 advisory. runc: vulnerable to symlink exchange attack CVE-2021-30465 Tenable has extracted the preceding description block directly from the MiracleLinux security...

8.5CVSS7.5AI score0.06604EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 7 : runc-1.0.0-69.rc10.el7 (AXSA:2021-1760:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1760:01 advisory. runc: vulnerable to symlink exchange attack CVE-2021-30465 Tenable has extracted the preceding description block directly from the MiracleLinux security...

8.5CVSS7.5AI score0.06604EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 3: runc (TSSA-2022:0194)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0194 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

8.5CVSS7.4AI score0.06604EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.11 views

Alibaba Cloud Linux 3 : 0034: container-tools:rhel8 (ALINUX3-SA-2021:0034)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2021:0034 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-30465: runc before 1.0.0-rc95 allows a...

8.5CVSS7.3AI score0.06604EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/04/29 12:0 a.m.9 views

Amazon Linux 2 : runc (ALASECS-2025-062)

The version of runc installed on the remote host is prior to 1.0.0-0.3.20210225.git12644e6. It is, therefore, affected by a vulnerability as referenced in the ALAS2ECS-2025-062 advisory. The runc package is vulnerable to a symlink exchange attack whereby an attacker can request a seemingly...

8.5CVSS7.5AI score0.06604EPSS
Exploits0References4
Rosalinux
Rosalinux
added 2024/04/11 7:16 a.m.57 views

Advisory ROSA-SA-2024-2393

Software: runc 1.0.0 OS: rosa-server79 packageevrstring: runc-1.0.0.0-70.rc10.res7 CVE-ID: CVE-2019-19921 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: runc has improper access control leading to elevated privileges associated with libcontainer/rootfslinux.go. To exploit this, an attacker must be able t...

8.6CVSS9AI score0.18087EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2023/10/23 12:0 a.m.32 views

Ubuntu 16.04 ESM : runC vulnerabilities (USN-4867-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4867-1 advisory. It was discovered that runC incorrectly checked mount targets. An attacker with a malicious container image could possibly mount over the /proc directory...

8.5CVSS7.1AI score0.06604EPSS
Exploits1References3
OSV
OSV
added 2023/08/31 12:15 p.m.2 views

BELL-CVE-2021-30465 CVE-2021-30465 does not affect BellSoft software

Bulletin has no description...

8.5CVSS7.3AI score0.06604EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/07/18 12:0 a.m.42 views

EulerOS 2.0 SP10 : docker-engine (EulerOS-SA-2023-2352)

According to the versions of the docker-engine package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfslinux.go. To exploi...

8.5CVSS7AI score0.06604EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/04/13 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2023-1618)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS8.7AI score0.06604EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.27 views

Debian: Security Advisory (DLA-3369-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.9AI score0.06604EPSS
Exploits2References4
IBM Security Bulletins
IBM Security Bulletins
added 2022/10/20 12:19 p.m.50 views

Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from containerd, gnupg2, runc and IBM WebSphere Application Server Liberty

Summary Multiple issues were identified in Red Hat UBIubi8/ubi-minimal v8.6-x packages containerd, gnupg2, runc and IBM WebSphere Application Server Liberty that were shipped with IBM MQ Operator and IBM supplied MQ Advanced container images. Vulnerability Details CVEID:CVE-2022-23648 DESCRIPTION...

8.8CVSS7.6AI score0.27392EPSS
Exploits6Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/09/15 12:0 a.m.40 views

RHEL 8 : container-tools:2.0 (RHSA-2021:2291)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2291 advisory. The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: runc: vulnerable to...

8.5CVSS7.5AI score0.06604EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/09/15 12:0 a.m.41 views

RHEL 7 : runc (RHSA-2021:2145)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2021:2145 advisory. The runC tool is a lightweight, portable implementation of the Open Container Format OCF that provides container runtime. Security Fixes: runc:...

8.5CVSS7.5AI score0.06604EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/07/07 12:0 a.m.36 views

Oracle Linux 7 : runc (ELSA-2021-14902)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2021-14902 advisory. 1.0.0-1.rc95 - Addresses CVE-2021-30465 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessu...

8.5CVSS7.4AI score0.06604EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.62 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : docker-ce Multiple Vulnerabilities (NS-SA-2022-0007)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has docker-ce packages installed that are affected by multiple vulnerabilities: - runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because...

8.5CVSS7AI score0.06604EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.31 views

Rocky Linux 8 : container-tools:2.0 (RLSA-2021:2291)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:2291 advisory. - runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multipl...

8.5CVSS7.3AI score0.06604EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.30 views

Rocky Linux 8 : container-tools:3.0 (RLSA-2021:2370)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:2370 advisory. - runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multipl...

8.5CVSS7.3AI score0.06604EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2021-0412)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS8.6AI score0.06604EPSS
Exploits0References5
Rows per page
Query Builder