Lucene search
K

22 matches found

Vulnrichment
Vulnrichment
added 2026/06/10 10:20 p.m.8 views

CVE-2026-46703 BoxLite: Path Traversal Vulnerability in boxlite Leads to Arbitrary File Write on the Host

Boxlite is a sandbox service that allows users to create lightweight virtual machines Boxes and launch OCI containers within them to run untrusted code. Prior to version 0.9.0, Boxlite allows users to specify the OCI image used by containers in the sandbox. However, when processing tar entries in...

9.6CVSS6.3AI score0.00482EPSS
Exploits0References2
CVE
CVE
added 2026/06/10 10:20 p.m.21 views

CVE-2026-46703

Summary of CVE-2026-46703 (Boxlite) : The vulnerability occurs when Boxlite extracts OCI image layer tarballs. A tar entry of type SYMLINK can point to an absolute host path (for example, escape -> /tmp), and subsequent file entries resolve through that symlink, enabling writes outside the ext...

9.6CVSS6.3AI score0.00482EPSS
Exploits0References2
OSV
OSV
added 2026/05/29 4:3 p.m.18 views

RLSA-2026:19032 Important: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

7.5CVSS5.8AI score0.00728EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/05/21 9:54 p.m.16 views

Boxlite: Path Traversal Vulnerability Leads to Arbitrary File Write on the Host

Summary Boxlite is a sandbox service that allows users to create lightweight virtual machines Boxes and run OCI containers within them. Boxlite allows users to specify the OCI image used by containers in the sandbox. However, when processing tar entries in OCI images, Boxlite does not account for...

9.6CVSS6.6AI score0.00482EPSS
Exploits0References5Affected Software4
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.15 views

PT-2026-41128

Name of the Vulnerable Software and Affected Versions MCP Registry versions prior to 1.7.9 Description OCI ownership validation fails to perform a label-match check when an upstream OCI registry returns an HTTP 429 Too Many Requests error. This occurs because the function ValidateOCI in the file...

3.5CVSS5.8AI score0.00206EPSS
Exploits0References7
OSV
OSV
added 2026/04/23 12:0 a.m.6 views

ALSA-2026:10135 Important: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

7.5CVSS6.1AI score0.00651EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2026/02/25 12:0 a.m.8 views

Important: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

10CVSS5.6AI score0.01945EPSS
Exploits3References8
RedhatCVE
RedhatCVE
added 2026/02/05 7:23 p.m.6 views

CVE-2026-25140

apko allows users to build and publish OCI container images built from apk packages. From version 0.14.8 to before 1.1.1, an attacker who controls or compromises an APK repository used by apko could cause resource exhaustion on the build host. The ExpandApk function in...

7.5CVSS5.4AI score0.00366EPSS
Exploits0References1
CVE
CVE
added 2026/01/29 9:2 p.m.18 views

CVE-2026-24845

CVE-2026-24845 affects the malcontent tool. The advisory describes that versions prior to 1.20.3 (starting with 0.10.0) could exfiltrate Docker registry credentials when scanning certain OCI image references. The vulnerability stems from malcontent using google/go-containerregistry for OCI image ...

6.5CVSS5.9AI score0.00336EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/01/15 9:16 a.m.7 views

RLSA-2026:0436 Important: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

7.5CVSS6.8AI score0.00591EPSS
Exploits1References2
OSV
OSV
added 2025/06/24 2:15 p.m.4 views

AZL-64454 CVE-2025-6032 affecting package podman 5.6.1-7

A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack...

8.3CVSS7.3AI score0.00397EPSS
Exploits0References1
AlmaLinux
AlmaLinux
added 2025/06/17 12:0 a.m.4 views

Moderate: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

9.1CVSS7.3AI score0.00724EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/06/12 12:0 a.m.2 views

RHEL 9 : buildah (RHSA-2025:9017)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:9017 advisory. The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working...

9.1CVSS7.2AI score0.00724EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2024/06/07 12:0 a.m.9 views

Fedora: Security Advisory for rust-krunvm (FEDORA-2024-40ee18b2e7)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2024/06/02 3:39 a.m.12 views

[SECURITY] Fedora 39 Update: rust-krunvm-0.1.6-8.fc39

Create microVMs from OCI images...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.10 views

Fedora: Security Advisory for rust-krunvm (FEDORA-2024-ce2936b568)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2024/05/26 1:29 a.m.11 views

[SECURITY] Fedora 40 Update: rust-krunvm-0.1.6-8.fc40

Create microVMs from OCI images...

7.3AI score
Exploits0
AlmaLinux
AlmaLinux
added 2024/04/25 12:0 a.m.25 views

Important: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

8.6CVSS8.7AI score0.0049EPSS
Exploits0References4
OSV
OSV
added 2023/11/07 12:0 a.m.40 views

ALSA-2023:6473 Moderate: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

9.8CVSS7.4AI score0.04561EPSS
Exploits1References24
Rockylinux
Rockylinux
added 2022/08/09 9:37 a.m.9 views

buildah bug fix and enhancement update

An update is available for buildah. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The buildah package provides command line tool for creating Open Container...

2AI score
Exploits0
Rows per page
Query Builder