Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2026/07/02 12:22 p.m.6 views

CVE-2026-46680

A flaw was found in containerd, an open-source container runtime. Containers launched with a numeric User directive that cannot be parsed as a 32-bit integer are incorrectly treated as a username. This vulnerability allows a crafted container image to bypass the Kubernetes runAsNonRoot restrictio...

7.8CVSS5.7AI score0.00221EPSS
Exploits1References4
osv
osv
added 2026/07/02 9:47 a.m.3 views

OPENSUSE-SU-2026:21213-1 Security update for containerd

This update for containerd fixes the following issues Update to 1.7.33: - CVE-2024-25621: overly broad default permission vulnerability bsc1253126. - CVE-2025-64329: goroutine leaks can lead to memory exhaustion on the host bsc1253132. - CVE-2026-33186: google.golang.org/grpc: authorization bypas...

9.6CVSS6.8AI score0.00781EPSS
Exploits3References20
ptsecurity
ptsecurity
added 2026/05/21 12:0 a.m.20 views

PT-2026-42700

Name of the Vulnerable Software and Affected Versions containerd versions prior to 2.3.1 containerd versions prior to 2.2.4 containerd versions prior to 2.0.9 containerd versions prior to 1.7.32 Description An input validation error exists where containers launched with a numeric User directive...

7.8CVSS5.8AI score0.00798EPSS
Exploits1References171
kubernetes
kubernetes
added 2022/09/01 9:2 p.m.5 views

`runAsNonRoot` logic bypass for Windows containers

A security issue was discovered in Kubernetes that could allow Windows workloads to run as ContainerAdministrator even when those workloads set the runAsNonRoot option to true. This issue has been rated low and assigned CVE-2021-25749 Am I vulnerable? All Kubernetes clusters with following...

7.8CVSS6.5AI score0.00211EPSS
Exploits0Affected Software1
Rows per page
Query Builder