Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
Podman ProjectPodman

15 matches found

CVE
CVEadded 2022/06/09 5:15 p.m.2054 views

CVE-2019-25067

A vulnerability, which was classified as critical, was found in Podman and Varlink 1.5.1. This affects an unknown part of the component API. The manipulation leads to Remote Privilege Escalation. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

8.8CVSS7.5AI score0.0143EPSS
CVE
CVEadded 2022/04/29 4:15 p.m.336 views

CVE-2022-1227

A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability is triggered after a user runs the 'podman top' command. This action gives the attacker access to t...

8.8CVSS8.3AI score0.32935EPSS
CVE
CVEadded 2020/09/23 1:15 p.m.311 views

CVE-2020-14370

An information disclosure vulnerability was found in containers/podman in versions before 2.0.5. When using the deprecated Varlink API or the Docker-compatible REST API, if multiple containers are created in a short duration, the environment variables from the first container will get leaked into s...

5.3CVSS5AI score0.00115EPSS
CVE
CVEadded 2022/09/13 2:15 p.m.284 views

CVE-2022-2989

An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to e...

7.1CVSS7.1AI score0.00034EPSS
CVE
CVEadded 2021/02/11 6:15 p.m.280 views

CVE-2021-20188

A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the container to access any other file in the container, even if owned by the root user inside the contai...

7CVSS6.7AI score0.00085EPSS
CVE
CVEadded 2022/04/04 8:15 p.m.266 views

CVE-2022-27649

A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was found in Moby (Docker Engine), where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to p...

7.5CVSS7.2AI score0.00569EPSS
CVE
CVEadded 2023/03/27 9:15 p.m.246 views

CVE-2023-0778

A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for access to arbitrary files on the host file system.

6.8CVSS6.8AI score0.00115EPSS
CVE
CVEadded 2021/02/02 7:15 p.m.187 views

CVE-2021-20199

Rootless containers run with Podman, receive all traffic with a source IP address of 127.0.0.1 (including from remote hosts). This impacts containerized applications that trust localhost (127.0.01) connections by default and do not require authentication. This issue affects Podman 1.8.0 onwards.

5.9CVSS6.3AI score0.00445EPSS
CVE
CVEadded 2022/12/08 4:15 p.m.180 views

CVE-2022-4123

A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.

3.3CVSS3.5AI score0.00022EPSS
CVE
CVEadded 2021/12/23 8:15 p.m.173 views

CVE-2021-4024

A flaw was found in podman. The podman machine function (used to create and manage Podman virtual machine containing a Podman process) spawns a gvproxy process on the host system. The gvproxy API is accessible on port 7777 on all IP addresses on the host. If that port is open on the host's firewall...

6.5CVSS6.3AI score0.00095EPSS
CVE
CVEadded 2019/07/30 11:15 p.m.135 views

CVE-2019-10152

A path traversal vulnerability has been discovered in podman before version 1.4.0 in the way it handles symlinks inside containers. An attacker who has compromised an existing container can cause arbitrary files on the host filesystem to be read/written when an administrator tries to copy a file fr...

7.5CVSS6.7AI score0.00357EPSS
CVE
CVEadded 2022/09/01 9:15 p.m.120 views

CVE-2022-2739

The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-14370, which was previously fixed via RHSA-2020:5056. This issue could possibly allow an attacker to gain access to sensitive info...

5.3CVSS5.4AI score0.00115EPSS
CVE
CVEadded 2022/12/08 4:15 p.m.104 views

CVE-2022-4122

A vulnerability was found in buildah. Incorrect following of symlinks while reading .containerignore and .dockerignore results in information disclosure.

5.3CVSS4.8AI score0.00119EPSS
CVE
CVEadded 2022/09/01 9:15 p.m.81 views

CVE-2022-2738

The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-8945, which was previously fixed via RHSA-2020:2117. This issue could possibly be used to crash or cause potential code execution ...

7.5CVSS7.6AI score0.04013EPSS
CVE
CVEadded 2024/08/02 9:16 p.m.50 views

CVE-2024-3056

A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container that, when configured to share the same IPC with at least one other container, can create a large number of IPC resources in /dev/shm. The malicious container will continue to exhaust resources unti...

7.7CVSS5.1AI score0.00232EPSS