Cri-o@- Security Vulnerabilities and Issues — Cri-o@- CVE List

Lucene search

KubernetesCri-o-

3 matches found

CVE•added 2023/09/25 8:15 p.m.•193 views

CVE-2022-4318

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

7.8CVSS7.4AI score0.00042EPSS

CVE•added 2023/09/15 2:15 p.m.•131 views

CVE-2022-3466

The version of cri-o as released for Red Hat OpenShift Container Platform 4.9.48, 4.10.31, and 4.11.6 via RHBA-2022:6316, RHBA-2022:6257, and RHBA-2022:6658, respectively, included an incorrect version of cri-o missing the fix for CVE-2022-27652, which was previously fixed in OCP 4.9.41 and 4.10.12...

5.3CVSS5.5AI score0.00022EPSS

CVE•added 2022/04/18 5:15 p.m.•130 views

CVE-2022-27652

A flaw was found in cri-o, where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby (Docker Engine) where containers started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs...

5.3CVSS5.3AI score0.00021EPSS