3 matches found
GHSA-X86F-5XW2-FM2R Docker: `PUT /containers/{id}/archive` executes container binary on the host
Summary When a user uploads a compressed archive into a container, a malicious image can execute arbitrary code with daemon host root privileges. Details When handling PUT /containers/id/archive requests with compressed archives, the daemon decompresses them using external system binaries. Due to...
PT-2026-41765
Name of the Vulnerable Software and Affected Versions Docker affected versions not specified Description When handling 'PUT /containers/id/archive' requests with compressed archives, the daemon decompresses them using external system binaries. Due to incorrect operation ordering, these binaries a...
Canonical MicroK8s Elevation of Privilege Vulnerability
Canonical MicroK8s is a lightweight container orchestration system from Canonical UK. A security vulnerability exists in Canonical MicroK8s. A local attacker could exploit this vulnerability to gain access to the host with root privileges...