Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-2652

Malicious code in bioql PyPI...

7.7CVSS8.5AI score0.00356EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2020-10749

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perfor...

6CVSS6.6AI score0.01843EPSS
Exploits1References2
Github Security Blog
Github Security Blogadded 2022/05/24 5:19 p.m.29 views

containernetworking/plugins vulnerable to MitM attacks

A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending rogue IPv6 router advertisements to the host or...

6CVSS6.6AI score0.01843EPSS
Exploits1References8Affected Software1
Veracode
Veracodeadded 2020/12/04 4:29 p.m.30 views

Privilege Escalation

containerd is vulnerable to privilege escalation. Access controls for the shim's API socket verified that the connecting process had an effective UID of 0, but did not otherwise restrict access to the abstract Unix domain socket. This would allow malicious containers running in the same network...

5.2CVSS3.5AI score0.13305EPSS
Exploits4References10Affected Software4
Veracode
Veracodeadded 2020/08/21 4:37 a.m.6 views

Insecure Authorization

github.com/opencontainers/runc does not provide secure authorization. Users who have created their config.json objects and did not prefix a deny-all rule "allow": false, "permissions": "rwm" or equivalent were not provided protection by the devices cgroup. This would allow malicious containers wi...

5.7AI score
Exploits0
Prion
Prionadded 2020/06/10 6:15 p.m.10 views

Code injection

Kata Containers doesn't restrict containers from accessing the guest's root filesystem device. Malicious containers can exploit this to gain code execution on the guest and masquerade as the kata-agent. This issue affects Kata Containers 1.11 versions earlier than 1.11.1; Kata Containers 1.10...

4.6CVSS6.9AI score0.01759EPSS
Exploits0References7Affected Software1
RedHat Linux
RedHat Linuxadded 2018/03/12 7:40 p.m.3 views

kubernetes: Malicious containers can delete any file from the node

This vulnerability allows containers using a secret, configMap, projected, or downwardAPI volume to trigger deletion of arbitrary files and directories on the nodes where they are running. An attacker could use this flaw to delete arbitrary file or directories on node host...

7.1CVSS6.7AI score0.00265EPSS
Exploits0References4
Rows per page
Query Builder