Lucene search
K

28 matches found

Prion
Prion
added 2022/03/25 6:15 p.m.27 views

Design/Logic Flaw

The imgcrypt library provides API exensions for containerd to support encrypted container images and implements the ctd-decoder command line tool for use by containerd to decrypt encrypted container images. The imgcrypt function CheckAuthorization is supposed to check whether the current used is...

5CVSS7.4AI score0.02676EPSS
Exploits1References7Affected Software2
UbuntuCve
UbuntuCve
added 2022/03/25 6:15 p.m.37 views

CVE-2022-24778

The imgcrypt library provides API exensions for containerd to support encrypted container images and implements the ctd-decoder command line tool for use by containerd to decrypt encrypted container images. The imgcrypt function CheckAuthorization is supposed to check whether the current used is...

7.5CVSS6.7AI score0.02676EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2022/03/25 5:20 p.m.2 views

CVE-2022-24778 Incorrect Authorization in imgcrypt

The imgcrypt library provides API exensions for containerd to support encrypted container images and implements the ctd-decoder command line tool for use by containerd to decrypt encrypted container images. The imgcrypt function CheckAuthorization is supposed to check whether the current used is...

7.5CVSS7.5AI score0.02676EPSS
Exploits1References7
CVE
CVE
added 2022/03/25 5:20 p.m.232 views

CVE-2022-24778

CVE-2022-24778 affects imgcrypt used with containerd. In versions prior to 1.1.4, a flaw in the CheckAuthorization path could allow running an image from a ManifestList on a host where the local architecture isn’t first in the list, potentially enabling access to encrypted images without proper k...

7.5CVSS7.5AI score0.02676EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2022/03/25 5:20 p.m.37 views

CVE-2022-24778 Incorrect Authorization in imgcrypt

The imgcrypt library provides API exensions for containerd to support encrypted container images and implements the ctd-decoder command line tool for use by containerd to decrypt encrypted container images. The imgcrypt function CheckAuthorization is supposed to check whether the current used is...

7.5CVSS6.7AI score0.02676EPSS
Exploits1References9
Cvelist
Cvelist
added 2022/03/25 5:20 p.m.60 views

CVE-2022-24778 Incorrect Authorization in imgcrypt

The imgcrypt library provides API exensions for containerd to support encrypted container images and implements the ctd-decoder command line tool for use by containerd to decrypt encrypted container images. The imgcrypt function CheckAuthorization is supposed to check whether the current used is...

7.5CVSS7.6AI score0.02676EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2022/03/25 12:0 a.m.2 views

PT-2022-16873 · Imgcrypt +2 · Imgcrypt +2

Name of the Vulnerable Software and Affected Versions: imgcrypt versions prior to 1.1.4 Description: The imgcrypt library provides API extensions for containerd to support encrypted container images and implements the ctd-decoder command line tool for use by containerd to decrypt encrypted...

7.5CVSS5.8AI score0.02676EPSS
Exploits1References32
CNNVD
CNNVD
added 2022/03/25 12:0 a.m.4 views

containerd 安全漏洞

containerd is a container daemon from the Apache Foundation. The process is responsible for controlling the full cycle of containers on the host according to the RunC OCI specification. A security vulnerability exists in containerd imgcrypt versions prior to 1.1.4, which arises from a failure whe...

7.5CVSS6.9AI score0.02676EPSS
Exploits1References14
Rows per page
Query Builder