Lucene search
K

63 matches found

RedhatCVE
RedhatCVE
added 2026/07/02 3:37 p.m.11 views

CVE-2026-53492

A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface CRI implementation, which allows Kubernetes to interact with container runtimes, improperly trusts Container Device Interface CDI annotations found within untrusted checkpoint image metadata during...

9.6CVSS5.9AI score0.00412EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/29 9:51 a.m.2 views

github.com/containerd/containerd: containerd: Security bypass via Container Device Interface (CDI) annotation smuggling during checkpoint restoration.

A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface CRI implementation, which allows Kubernetes to interact with container runtimes, improperly trusts Container Device Interface CDI annotations found within untrusted checkpoint image metadata during...

9.6CVSS6.1AI score0.00412EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/29 9:13 a.m.2 views

github.com/containerd/containerd: containerd: Security bypass via Container Device Interface (CDI) annotation smuggling during checkpoint restoration.

A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface CRI implementation, which allows Kubernetes to interact with container runtimes, improperly trusts Container Device Interface CDI annotations found within untrusted checkpoint image metadata during...

9.6CVSS6.1AI score0.00412EPSS
Exploits0References5
Chainguard
Chainguard
added 2026/06/23 8:21 p.m.13 views

GHSA-XJVP-4FHW-GC47 vulnerabilities

Vulnerabilities for packages: nvidia-container-toolkit, node-feature-discovery, sriov-network-device-plugin, cadvisor-fips, nvidia-container-toolkit-fips, prometheus-podman-exporter, node-feature-discovery-fips, cadvisor, rancher-agent, podman, k8s-device-plugin-fips, gpu-operator,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/23 8:21 p.m.9 views

CVE-2026-41579 vulnerabilities

Vulnerabilities for packages: nvidia-container-toolkit, node-feature-discovery, sriov-network-device-plugin, cadvisor-fips, nvidia-container-toolkit-fips, prometheus-podman-exporter, node-feature-discovery-fips, cadvisor, rancher-agent, podman, k8s-device-plugin-fips, gpu-operator,...

3.3CVSS6.1AI score0.00222EPSS
Exploits0
Wolfi
Wolfi
added 2026/06/23 8:20 p.m.11 views

GHSA-XJVP-4FHW-GC47 vulnerabilities

Vulnerabilities for packages: rancher, podman, sriov-network-device-plugin, nvidia-container-toolkit, node-feature-discovery, rancher-agent, cadvisor, buildah, k8s-device-plugin...

6.1AI score
Exploits0
Wolfi
Wolfi
added 2026/06/23 8:20 p.m.14 views

CVE-2026-41579 vulnerabilities

Vulnerabilities for packages: rancher, podman, sriov-network-device-plugin, nvidia-container-toolkit, node-feature-discovery, rancher-agent, cadvisor, buildah, k8s-device-plugin...

3.3CVSS6.1AI score0.00222EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2026/06/19 7:35 p.m.24 views

containerd CRI checkpoint restore CDI annotation smuggling

Impact containerd's CRI implementation improperly trusts Container Device Interface CDI annotations found within untrusted checkpoint image metadata during container restoration. When restoring a container from a checkpoint, containerd preserves CDI-related annotations from the checkpoint archive...

9.6CVSS6AI score0.00412EPSS
Exploits0References2Affected Software1
CBLMariner
CBLMariner
added 2026/06/02 2:56 a.m.21 views

CVE-2026-42506 affecting package sriov-network-device-plugin for versions less than 3.7.0-6

CVE-2026-42506 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...

6.1CVSS5.8AI score0.00188EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/06/02 2:56 a.m.12 views

CVE-2026-27136 affecting package sriov-network-device-plugin for versions less than 3.7.0-6

CVE-2026-27136 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...

6.1CVSS5.8AI score0.00178EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/06/02 2:56 a.m.9 views

CVE-2026-42502 affecting package sriov-network-device-plugin for versions less than 3.7.0-6

CVE-2026-42502 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...

6.1CVSS5.8AI score0.00178EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/06/02 2:56 a.m.12 views

CVE-2026-25680 affecting package sriov-network-device-plugin for versions less than 3.7.0-6

CVE-2026-25680 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...

6.5CVSS5.8AI score0.00248EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/06/02 2:56 a.m.18 views

CVE-2026-25681 affecting package sriov-network-device-plugin for versions less than 3.7.0-6

CVE-2026-25681 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...

6.1CVSS5.8AI score0.00178EPSS
Exploits0
Snyk
Snyk
added 2026/05/18 9:0 p.m.11 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code that conceals a credential-stealing payload and worm propagation logic. A malicious actor associated with the "TeamPCP" or "Mini Shai-Hulud" campaign compromised a maintainer's access token; this allowed the...

9.8CVSS5.9AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/09 3:24 p.m.2 views

github.com/containerd/containerd: containerd: Security bypass via Container Device Interface (CDI) annotation smuggling during checkpoint restoration.

A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface CRI implementation, which allows Kubernetes to interact with container runtimes, improperly trusts Container Device Interface CDI annotations found within untrusted checkpoint image metadata during...

9.6CVSS6.1AI score0.00412EPSS
Exploits0References5
Wolfi
Wolfi
added 2026/04/11 2:51 a.m.12 views

CVE-2026-32282 vulnerabilities

Vulnerabilities for packages: hubble, datadog-agent, istio, gitaly, kine, flux, external-dns, nerdctl, spire-server, k3s, karpenter, kubernetes, knative-eventing, chezmoi, cilium-cli, mattermost, runc, keda, argo-cd, aactl, kaf, gitlab-kas, dask-gateway, prometheus, k8s-device-plugin, net-kourier...

6.4CVSS6.8AI score0.00292EPSS
Exploits0
Wolfi
Wolfi
added 2026/04/11 2:51 a.m.12 views

CVE-2026-32281 vulnerabilities

Vulnerabilities for packages: trivy-operator, logstash-exporter, eksctl, kuberlr, opensearch-k8s-operator, aws-s3-controller, portieris, sriov-network-device-plugin, vt-cli, supercronic, nri-postgresql, docker-cli, grafana-rollout-operator, chart-testing, cert-manager-cmctl, s5cmd, gatekeeper,...

7.5CVSS6.9AI score0.00349EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/03/10 10:56 p.m.5 views

CVE-2025-58190 affecting package sriov-network-device-plugin for versions less than 3.7.0-5

CVE-2025-58190 affecting package sriov-network-device-plugin for versions less than 3.7.0-5. A patched version of the package is available...

5.3CVSS5.8AI score0.00482EPSS
Exploits1
CBLMariner
CBLMariner
added 2026/03/10 10:56 p.m.6 views

CVE-2025-47911 affecting package sriov-network-device-plugin for versions less than 3.7.0-5

CVE-2025-47911 affecting package sriov-network-device-plugin for versions less than 3.7.0-5. A patched version of the package is available...

5.3CVSS5.8AI score0.00502EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/03/09 2:32 p.m.5 views

CVE-2025-47911 affecting package sriov-network-device-plugin for versions less than 3.6.2-11

CVE-2025-47911 affecting package sriov-network-device-plugin for versions less than 3.6.2-11. A patched version of the package is available...

5.3CVSS5.8AI score0.00502EPSS
Exploits0
Rows per page
Query Builder