36 matches found
Exploit for Authentication Bypass Using an Alternate Path or Channel in Mobyproject Moby
CVE-2026-34040 Full Lab PoC Docker/Moby AuthZ Plugin Bypass...
PT-2026-39897
Name of the Vulnerable Software and Affected Versions local-path-provisioner versions prior to 0.0.36 Description A malicious user with permissions to edit the local-path-config ConfigMap in the local-path-storage namespace can manipulate the helperPod.yaml template. This template is used to crea...
k8s-container-escape-lkm
🛠️ Kernel Module Reverse Shell – Privileged Container Escape P...
EUVD-2018-2912
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2021-20188
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abuse...
Exploit for OS Command Injection in Docker
CDK - Zero Dependency Container Penetration Toolkit English | 简体中文 Legal Disclaimer Usage of CDK for attacking targets without prior mutual consent is illegal. CDK is for security testing purposes only. Overview CDK is an open-sourced container penetration toolkit, designed for offering stable...
Exploit for OS Command Injection in Docker
This repository is an offensive tool for container exploitation. The primary capability of this tool is to perform a container breakout via exposed Docker daemons docker.sock, CVE-2019-5736, and privileged container breakout via enabled CAPS and SYSCALLS. It also extracts data from Linux Kernel...
GHSA-QQV8-PH7F-H3F7 OpenShift Builder has a path traversal, allows command injection in privileged BuildContainer
A flaw was found in openshift/builder. This vulnerability allows command injection via path traversal, where a malicious user can execute arbitrary commands on the OpenShift node running the builder container. When using the "Docker" strategy, executable files inside the privileged build containe...
Red Hat OpenShift Container Platform 安全漏洞
Red Hat OpenShift Container Platform is a suite of application platforms from Red Hat, Inc. that help organizations develop, deploy and manage existing container-based applications across physical, virtual and public cloud infrastructures. A security vulnerability exists in Red Hat OpenShift...
CVE-2024-7387
A flaw was found in openshift/builder. This vulnerability allows command injection via path traversal, where a malicious user can execute arbitrary commands on the OpenShift node running the builder container. When using the “Docker” strategy, executable files inside the privileged build containe...
PT-2024-6569 · Docker · Docker
Name of the Vulnerable Software and Affected Versions: openshift/builder affected versions not specified Description: A flaw was found in openshift/builder, allowing command injection via path traversal. This enables a malicious user to execute arbitrary commands on the OpenShift node running the...
Metasploit Wrap-Up 05/10/2024
Password Spraying support Multiple bruteforce/login scanner modules have been updated to support a PASSWORDSPRAY module option. This work was completed in pull request 19079 from nrathaus as well as an additional update from our developers . When the password spraying option is set, the order of...
Rocky Linux 8 : container-tools:2.0 (RLSA-2021:0706)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:0706 advisory. - A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abus...
SUSE CVE-2021-20188
A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the container to access any other file in the container, even if owned by the root user inside the...
GHSA-9H63-7QF6-MV6R Improper Authorization in github.com/containers/libpod
A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the container to access any other file in the container, even if owned by the root user inside the...
Oracle Linux 8 : container-tools:1.0 (ELSA-2021-0705)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-0705 advisory. - fix 'CVE-2020-10696 buildah: crafted input tar file may lead to local file overwriting during image build process' - rebuild because of CVE-2019-9512 and...
Oracle Linux 8 : container-tools:2.0 (ELSA-2021-0706)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-0706 advisory. - fix 'CVE-2020-10696 buildah: crafted input tar file may lead to local file overwriting during image build process' - fix CVE-2020-1702 - Fix CVE-2019-10214...
podman: container users permissions are not respected in privileged containers
A flaw was found in podman. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the container to access any other file in the container, even if owned by the root user inside the container. It doe...
podman: container users permissions are not respected in privileged containers
A flaw was found in podman. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the container to access any other file in the container, even if owned by the root user inside the container. It doe...
CVE-2021-20188
A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the container to access any other file in the container, even if owned by the root user inside the...