7 matches found
PT-2025-44882
Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.2 iPadOS versions prior to 18.7.2 Description An application may be able to escape its designated security container. The issue involves insufficient validation of symbolic links. Recommendations Update to iOS versio...
Introducing WizOS: Securing Wiz from the ground up with hardened, near-zero-CVE container base images.
WizOS is now available in private preview for Wiz customers. It’s a key part of how we help teams start secure and stay secure with hardened, minimal container images...
CVE-2024-11218
A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...
PT-2023-18031 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions prior to the fixed version Description: A logic error in the showNextSecurityScreenOrFinish function of KeyguardSecurityContainerController.java allows access to the lock screen during device setup. This could lead to local...
CVE-2022-29179 Improper Privilege Management in Cilium
Cilium is open source software for providing and securing network connectivity and loadbalancing between application workloads. Prior to versions 1.9.16, 1.10.11, and 1.11.15, if an attacker is able to perform a container escape of a container running as root on a host where Cilium is installed,...
Chrome Zero-Day Exploit Posted on Twitter
A researcher has dropped working exploit code for a zero-day remote code execution RCE vulnerability on Twitter, which he said affects the current versions of Google Chrome and potentially other browsers, like Microsoft Edge, that use the Chromium framework. Security researcher Rajvardhan Agarwal...
Unbreakable Enterprise kernel-container security update
4.14.35-2025.402.2.1.el7 - powercap: restrict energy meter to root access Kanth Ghatraju Orabug: 32040805 CVE-2020-8694 CVE-2020-8695 4.14.35-2025.402.2.el7 - ocfs2: fix remounting needed after setfacl command Gang He - Fix multiple variable definition with syzkaller Hans Westgaard Ry Orabug:...