CVE-2020-2026

CVE-2020-2026 affects Kata Containers: susceptible in Kata 1.11.x prior to 1.11.1, 1.10.x prior to 1.10.5, and 1.9 and earlier. A malicious guest can trick the runtime into mounting an untrusted container filesystem on a host path, enabling possible host code execution. Affected components: kata-...

CVE-2020-2023

Kata Containers CVE-2020-2023: Root filesystem access was not restricted, enabling potential code execution on the guest and masquerading as the kata-agent. Affected: Kata Containers 1.11.x before 1.11.1; 1.10.x before 1.10.5; 1.9 and earlier. Remediation: upgrade to fixed releases (e.g., 1.11.1 ...

CVE-2020-2024

CVE-2020-2024 affects Kata Containers prior to 1.11.0. The vulnerability is an improper link resolution in kata-runtime that a malicious guest can exploit to trick the host into unmounting any mount point (and sub-mounts) on the host, potentially causing a host DoS. Impact is described as HIGH av...

CVE-2020-2025

CVE-2020-2025 affects Kata Containers before 1.11.0 on Cloud Hypervisor. The issue lets a malicious guest persist or overwrite the underlying image file, potentially gaining control of subsequent VMs. Because Kata uses a shared VM image across VMMs, this may also impact QEMU and Firecracker based...