Lucene search
K

7 matches found

Snyk
Snyk
added 2026/05/16 12:0 a.m.7 views

Improper Isolation or Compartmentalization

Overview Affected versions of this package are vulnerable to Improper Isolation or Compartmentalization in the mounting of host directories in read-only mode into VM. An attacker can gain unauthorized write access to the host filesystem by remounting a shared directory as read-write from within t...

10CVSS5.8AI score0.00289EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in golang-github-containers-common, libpod

A flaw was discovered in Go. When FIPS mode is enabled on a system, container runtime may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host...

8.2CVSS6.7AI score0.0099EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/11/19 1:54 a.m.3 views

Buildah: Podman: Improper Input Validation in bind-propagation Option of Dockerfile RUN --mount Instruction

A vulnerability exists in the bind-propagation option of the Dockerfile RUN --mount instruction. The system does not properly validate the input passed to this option, allowing users to pass arbitrary parameters to the mount instruction. This issue can be exploited to mount sensitive directories...

4.7CVSS7.2AI score0.00287EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/11/06 2:57 p.m.2 views

Podman: Buildah: cri-o: FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library

A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host...

8.2CVSS7.1AI score0.0099EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/10/24 11:11 a.m.3 views

Podman: Buildah: cri-o: FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library

A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host...

8.2CVSS7.1AI score0.0099EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/10/14 2:5 a.m.4 views

Podman: Buildah: cri-o: FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library

A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host...

8.2CVSS7.1AI score0.0099EPSS
Exploits0References6
OSV
OSV
added 2024/10/01 7:15 p.m.2 views

UBUNTU-CVE-2024-9341

A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host...

8.2CVSS6.9AI score0.0099EPSS
Exploits0References6
Rows per page
Query Builder