Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2025/10/28 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2025-bacdac27c8)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.4CVSS6.8AI score0.00478EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/07/17 12:0 a.m.4 views

Fedora 43 : containerd (2025-bacdac27c8)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-bacdac27c8 advisory. Automatic update for containerd-2.1.1-1.fc43. Changelog Tue May 20 2025 Bradley G Smith - 2.1.1-1 - Update package to release v2.1.1 - Resolves:...

9.4CVSS7.5AI score0.00478EPSS
Exploits0References3
Wolfi
Wolfi
added 2025/05/23 7:47 p.m.21 views

CVE-2025-47290 vulnerabilities

Vulnerabilities for packages: docker-compose, neuvector-scanner...

9.4CVSS7AI score0.00435EPSS
Exploits0
Chainguard
Chainguard
added 2025/05/23 1:16 p.m.27 views

CVE-2025-47290 vulnerabilities

Vulnerabilities for packages: docker-compose, neuvector, neuvector-fips, neuvector-scanner, docker-compose-fips...

9.4CVSS7AI score0.00435EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2025/05/23 12:0 a.m.4 views

kind-0.29.0-1.1 on GA media (moderate)

kind-0.29.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:15146-1 Rating: moderate Cross-References: CVE-2025-47290 CVSS scores: CVE-2025-47290 SUSE : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2025-47290 SUSE : 7.6...

9.4CVSS7.3AI score0.00435EPSS
Exploits0
NVD
NVD
added 2025/05/20 7:15 p.m.19 views

CVE-2025-47290

containerd is a container runtime. A time-of-check to time-of-use TOCTOU vulnerability was found in containerd v2.1.0. While unpacking an image during an image pull, specially crafted container images could arbitrarily modify the host file system. The only affected version of containerd is 2.1.0...

9.4CVSS0.00435EPSS
Exploits0References3
Circl
Circl
added 2025/05/20 6:40 p.m.16 views

CVE-2025-47290

creationtimestamp| type| source ---|---|--- 2025-05-20 18:40:13+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114541619532659321 2025-05-21 01:55:42+00:00| seen| https://bsky.app/profile/bentheelder.bsky.social/post/3lpniot27bs2r 2025-05-22 02:18:16+00:00| seen|...

9.4CVSS6.6AI score0.00435EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/05/20 6:25 p.m.17 views

CVE-2025-47290 Containerd vulnerable to host filesystem access during image unpack

containerd is a container runtime. A time-of-check to time-of-use TOCTOU vulnerability was found in containerd v2.1.0. While unpacking an image during an image pull, specially crafted container images could arbitrarily modify the host file system. The only affected version of containerd is 2.1.0...

9.4CVSS6.4AI score0.00435EPSS
Exploits0References3
CVE
CVE
added 2025/05/20 6:25 p.m.203 views

CVE-2025-47290

CVE-2025-47290 affects containerd v2.1.0, where a TOCTOU flaw during image unpack could allow an attacker to arbitrarily modify the host filesystem. The issue is limited to 2.1.0; 2.1.1 fixes it. Affected guidance: upgrade to containerd 2.1.1+; as a workaround, use only trusted images and restric...

9.4CVSS6.4AI score0.00435EPSS
Exploits0References3Affected Software1
AlpineLinux
AlpineLinux
added 2025/05/20 6:25 p.m.8 views

CVE-2025-47290

containerd is a container runtime. A time-of-check to time-of-use TOCTOU vulnerability was found in containerd v2.1.0. While unpacking an image during an image pull, specially crafted container images could arbitrarily modify the host file system. The only affected version of containerd is 2.1.0...

9.4CVSS6.8AI score0.00435EPSS
Exploits0
OSV
OSV
added 2025/05/20 6:25 p.m.8 views

CVE-2025-47290 Containerd vulnerable to host filesystem access during image unpack

containerd is a container runtime. A time-of-check to time-of-use TOCTOU vulnerability was found in containerd v2.1.0. While unpacking an image during an image pull, specially crafted container images could arbitrarily modify the host file system. The only affected version of containerd is 2.1.0...

9.4CVSS6.4AI score0.00435EPSS
Exploits0References5
Rows per page
Query Builder