Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-1007

Malicious code in bioql PyPI...

7.8CVSS6.9AI score0.00343EPSS
Exploits0References5
OSV
OSV
added 2024/08/20 8:29 p.m.27 views

GO-2023-1683 AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

AppArmor bypass with symlinked /proc in github.com/opencontainers/runc...

7.8CVSS6.7AI score0.00343EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.32 views

RHEL 7 : runc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - runc: Execution of malicious containers allows for container escape and access to host filesystem...

8.6CVSS8.7AI score0.9857EPSS
Exploits33References3
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.31 views

CentOS 9 : runc-1.1.7-2.el9

The remote CentOS Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the runc-1.1.7-2.el9 build changelog. - runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc, netlink is used internally as a...

7.8CVSS7AI score0.01663EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/01/30 12:0 a.m.33 views

RHEL 8 : container-tools:3.0 (RHSA-2024:0564)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0564 advisory. The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes:...

7.8CVSS7.3AI score0.05994EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.37 views

EulerOS 2.0 SP11 : docker-runc (EulerOS-SA-2023-2680)

According to the versions of the docker-runc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfslinux.go. To exploit this...

7.8CVSS6.9AI score0.00457EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/08/08 12:0 a.m.42 views

EulerOS 2.0 SP9 : docker-runc (EulerOS-SA-2023-2581)

According to the versions of the docker-runc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfslinux.go. To exploit...

7.8CVSS6.9AI score0.00457EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/06/13 12:0 a.m.68 views

Amazon Linux 2023 : runc (ALAS2023-2023-208)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-208 advisory. runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was found that rootless runc makes /sys/fs/cgroup writable in following...

7.8CVSS6.9AI score0.00457EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2023/06/06 12:0 a.m.37 views

Amazon Linux 2 : runc (ALASDOCKER-2023-025)

The version of runc installed on the remote host is prior to 1.1.5-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2DOCKER-2023-025 advisory. runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was...

7.8CVSS7AI score0.00457EPSS
Exploits2References8
OSV
OSV
added 2023/04/14 11:5 a.m.2 views

OESA-2023-1217 runc security update

runc is a CLI tool for spawning and running containers according to the OCI specification. Security Fixes: runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when /proc inside the container is symlinked with a...

7.8CVSS6.8AI score0.00343EPSS
Exploits0References2
Mageia
Mageia
added 2023/04/06 9:20 p.m.58 views

Updated opencontainers-runc packages fix security vulnerability

/sys/fs/cgroup is writable when cgroupns isn't unshared CVE-2023-25809 Regression that reintroduced CVE-2019-19921 - Incorrect Access Control leading to Escalation of Privileges CVE-2023-27561 AppArmor/SELinux bypass with symlinked /proc CVE-2023-28642...

7.8CVSS7AI score0.00448EPSS
Exploits2References3
Microsoft CVE
Microsoft CVE
added 2023/04/03 7:0 a.m.6 views

AppArmor bypass with symlinked /proc in runc

...

7.8CVSS7AI score0.00343EPSS
Exploits0
OSV
OSV
added 2023/03/29 7:15 p.m.3 views

DEBIAN-CVE-2023-28642

runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when /proc inside the container is symlinked with a specific mount configuration. This issue has been fixed in runc version 1.1.5, by prohibiting symlinked /proc...

7.8CVSS6.6AI score0.00343EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/29 6:15 p.m.7 views

CVE-2023-28642 AppArmor bypass with symlinked /proc in runc

runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when /proc inside the container is symlinked with a specific mount configuration. This issue has been fixed in runc version 1.1.5, by prohibiting symlinked /proc...

6.1CVSS7.6AI score0.00343EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2023/03/29 6:15 p.m.42 views

CVE-2023-28642

runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when /proc inside the container is symlinked with a specific mount configuration. This issue has been fixed in runc version 1.1.5, by prohibiting symlinked /proc...

7.8CVSS7.8AI score0.00343EPSS
Exploits0
Rows per page
Query Builder