Lucene search

K

Crun Security Vulnerabilities

cve
cve

CVE-2019-18837

An issue was discovered in crun before 0.10.5. With a crafted image, it doesn't correctly check whether a target is a symlink, resulting in access to files outside of the container. This occurs in libcrun/linux.c and...

8.6CVSS

8.2AI Score

0.002EPSS

2019-11-13 08:15 PM
22
cve
cve

CVE-2022-27650

A flaw was found in crun where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby (Docker Engine) where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to...

7.5CVSS

7.2AI Score

0.002EPSS

2022-04-04 08:15 PM
166
2