Lucene search
K

17 matches found

OSV
OSV
added 2026/06/26 8:53 p.m.5 views

GHSA-RHQ6-9RGH-V45C Pterodactyl Wings: Chmod operation can be used to change permissions of files outside of the server container

In wings/internal/ufs/fsunix.go line 92-94, this function is defined and is used to change permissions of files in the server: go func fs UnixFS fchmodatop string, dirfd int, name string, mode FileMode error return ensurePathErrorunix.Fchmodatdirfd, name, uint32mode, 0, op, name This call to the...

5CVSS5.8AI score
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in docker.io

Moby is an open-source project created by Docker to enable software containerization. A bug was discovered in Moby Docker Engine where attempting to copy files using docker cp into a specially crafted container can result in changes to Unix file permissions for existing files in the host’s...

6.3CVSS6AI score0.0027EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Containerd

Containerd is a container runtime. A bug was discovered in containerd versions prior to 1.4.8 and 1.5.4, where pulling and extracting a specially crafted container image could result in changes to Unix file permissions for existing files in the host’s filesystem. Changes to file permissions could...

6.8CVSS6.3AI score0.01608EPSS
Exploits2References2
SUSE CVE
SUSE CVE
added 2024/06/04 12:57 p.m.5 views

SUSE CVE-2021-32760

containerd is a container runtime. A bug was found in containerd versions prior to 1.4.8 and 1.5.4 where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host's filesystem. Changes to file permissions can deny access t...

3CVSS5.8AI score0.01608EPSS
Exploits2References30
SUSE CVE
SUSE CVE
added 2024/06/04 12:55 p.m.6 views

SUSE CVE-2021-41089

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host's filesystem,...

3.6CVSS5.8AI score0.0027EPSS
Exploits0References35
Amazon
Amazon
added 2023/11/16 12:0 a.m.6 views

Medium: containerd

Issue Overview: A flaw was found in containerd where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host's filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to...

6.8CVSS6.7AI score0.01608EPSS
Exploits2
OSV
OSV
added 2022/08/09 11:29 a.m.5 views

USN-5169-1 oddjob vulnerability

Matthias Gerstner discovered that there was a race condition in the mkhomedir tool shipped with the oddjob package. An authenticated attacker could use this to setup a symlink attack and change permissions on files on the host filesystem...

6.3CVSS6.6AI score0.00293EPSS
Exploits0References2
Amazon
Amazon
added 2021/11/18 12:0 a.m.6 views

Medium: containerd

Issue Overview: A flaw was found in containerd where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host's filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to...

6.8CVSS6.7AI score0.01608EPSS
Exploits2
OSV
OSV
added 2021/10/04 9:15 p.m.3 views

DEBIAN-CVE-2021-41089

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host’s filesystem,...

6.3CVSS5.8AI score0.0027EPSS
Exploits0References1
OSV
OSV
added 2021/10/04 12:0 a.m.4 views

UBUNTU-CVE-2021-41089

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the host’s filesystem,...

6.3CVSS6.3AI score0.0027EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/10/04 12:0 a.m.3 views

Docker Engine 安全漏洞

Docker Engine is a set of lightweight runtime environment and package management tools from Docker Inc. in the United States. A security vulnerability exists in Docker Engine that stems from the fact that copying files into a crafted container using docker cp may result in changes to Unix file...

6.3CVSS6.2AI score0.0027EPSS
Exploits0References17
OSV
OSV
added 2021/07/19 9:15 p.m.0 views

DEBIAN-CVE-2021-32760

containerd is a container runtime. A bug was found in containerd versions prior to 1.4.8 and 1.5.4 where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host’s filesystem. Changes to file permissions can deny access t...

6.3CVSS6AI score0.01608EPSS
Exploits2References1
CNNVD
CNNVD
added 2021/07/19 12:0 a.m.4 views

Apache Containerd 权限许可和访问控制问题漏洞

containerd is a container daemon from the Apache Foundation. The process is responsible for controlling the full cycle of containers on the host according to the RunC OCI specification. A security vulnerability exists in Containerd versions prior to 1.4.8 and 1.5.4, which stems from a specially...

6.8CVSS6.3AI score0.01608EPSS
Exploits2References15
Positive Technologies
Positive Technologies
added 2021/07/19 12:0 a.m.12 views

PT-2021-3856 · Unknown +6 · Kubernetes Containerd +5

Name of the Vulnerable Software and Affected Versions: containerd versions prior to 1.4.8 and 1.5.4 Description: The issue is related to a bug in containerd that allows pulling and extracting a specially-crafted container image to result in Unix file permission changes for existing files in the...

9.3CVSS6.2AI score0.9857EPSS
Exploits43References127
OSV
OSV
added 2019/01/16 8:29 p.m.3 views

ALPINE-CVE-2017-3141

The BIND installer on Windows uses an unquoted service path which can enable a local user to achieve privilege escalation if the host file system permissions allow this. Affects BIND 9.2.6-P2-9.2.9, 9.3.2-P1-9.3.6, 9.4.0-9.8.8, 9.9.0-9.9.10, 9.10.0-9.10.5, 9.11.0-9.11.1, 9.9.3-S1-9.9.10-S1,...

7.8CVSS6.9AI score0.01413EPSS
Exploits5References1
OSV
OSV
added 2017/11/22 7:29 p.m.5 views

CVE-2017-8158

FusionCompute V100R005C00 and V100R005C10 have an improper authorization vulnerability due to improper permission settings for a certain file on the host machine. An authenticated attacker could create a large number of virtual machine VM processes to exhaust system resources. Successful exploit...

6.5CVSS5.8AI score0.00199EPSS
Exploits0References1
CNVD
CNVD
added 2017/09/28 12:0 a.m.7 views

Huawei FusionCompute Denial of Service Vulnerability

Huawei FusionCompute is an enterprise-grade, open server virtualization solution from Huawei, China, based on the Xen open source design. The solution provides automation, advanced integration and management capabilities for virtualized data centers. A denial of service vulnerability exists in...

6.5CVSS6.4AI score0.00199EPSS
Exploits0References1
Rows per page
Query Builder