Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-1593

Malicious code in bioql PyPI...

9CVSS8.7AI score0.00917EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-0135

Malicious code in bioql PyPI...

8.6CVSS7.2AI score0.00358EPSS
Exploits0References37
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-37457

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00932EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.10 views

Alibaba Cloud Linux 3 : 0028: container-tools:an8 (ALINUX3-SA-2025:0028)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2025:0028 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-11218: A vulnerability was found in podman...

8.6CVSS7.1AI score0.00358EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/03/05 4:22 a.m.2 views

podman: buildah: Container breakout by using --jobs=2 and a race condition when building a malicious Containerfile

A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...

8.6CVSS7.1AI score0.00358EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/03/04 5:29 p.m.5 views

podman: buildah: Container breakout by using --jobs=2 and a race condition when building a malicious Containerfile

A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...

8.6CVSS7.1AI score0.00358EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/02/13 12:38 a.m.8 views

podman: buildah: Container breakout by using --jobs=2 and a race condition when building a malicious Containerfile

A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...

8.6CVSS7.1AI score0.00358EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/02/11 8:6 a.m.2 views

podman: buildah: Container breakout by using --jobs=2 and a race condition when building a malicious Containerfile

A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...

8.6CVSS7.1AI score0.00358EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/02/10 1:35 a.m.7 views

podman: buildah: Container breakout by using --jobs=2 and a race condition when building a malicious Containerfile

A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...

8.6CVSS7.1AI score0.00358EPSS
Exploits0References5
OSV
OSV
added 2025/01/22 5:15 a.m.2 views

DEBIAN-CVE-2024-11218

A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...

8.6CVSS7.1AI score0.00358EPSS
Exploits0References1
CVE
CVE
added 2025/01/22 4:55 a.m.372 views

CVE-2024-11218

CVE-2024-11218 affects podman build and buildah, enabling container breakout via a race condition when building a malicious Containerfile using --jobs=2. The vulnerability can allow enumeration of host files/directories even with SELinux enabled. Based on connected MARINER entries, patched versio...

8.6CVSS8.5AI score0.00358EPSS
Exploits0References32
Vulnrichment
Vulnrichment
added 2025/01/22 4:55 a.m.6 views

CVE-2024-11218 Podman: buildah: container breakout by using --jobs=2 and a race condition when building a malicious containerfile

A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...

8.6CVSS8.3AI score0.00358EPSS
Exploits0References32
Cvelist
Cvelist
added 2025/01/22 4:55 a.m.16 views

CVE-2024-11218 Podman: buildah: container breakout by using --jobs=2 and a race condition when building a malicious containerfile

A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...

8.6CVSS0.00358EPSS
Exploits0References32
AlpineLinux
AlpineLinux
added 2025/01/22 4:55 a.m.16 views

CVE-2024-11218

A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...

8.6CVSS6.8AI score0.00358EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/10/23 1:36 p.m.21 views

CVE-2024-10041

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

4.7CVSS6.6AI score0.00265EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/03/18 2:22 p.m.103 views

CVE-2024-1753

A flaw was found in Buildah and subsequently Podman Build which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation ...

8.6CVSS7.4AI score0.0049EPSS
Exploits0References6
NVD
NVD
added 2023/05/22 4:15 p.m.30 views

CVE-2023-33294

An issue was discovered in KaiOS 3.0 before 3.1. The /system/bin/tctwebserver binary exposes a local web server that responds to GET and POST requests on port 2929. The server accepts arbitrary Bash commands and executes them as root. Because it is not permission or context restricted and returns...

9.8CVSS9.2AI score0.00932EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2020/07/23 6:37 p.m.45 views

CVE-2020-14339

A flaw was found in libvirt, where it leaked a file descriptor for /dev/mapper/control into the QEMU process. This file descriptor allows for privileged operations to happen against the device-mapper on the host. This flaw allows a malicious guest user or process to perform operations outside of...

7.2CVSS1.7AI score0.00416EPSS
Exploits0References3
Rows per page
Query Builder