Singularity@* Security Vulnerabilities and Issues — Singularity@* CVE List

Lucene search

SylabsSingularity*

4 matches found

CVE•added 2021/04/06 4:15 p.m.•168 views

CVE-2021-29136

Open Container Initiative umoci before 0.4.7 allows attackers to overwrite arbitrary host paths via a crafted image that causes symlink traversal when "umoci unpack" or "umoci raw unpack" is used.

5.5CVSS5.4AI score0.00146EPSS

CVE•added 2021/05/28 9:15 p.m.•108 views

CVE-2021-32635

Singularity is an open source container platform. In verions 3.7.2 and 3.7.3, Dde to incorrect use of a default URL, singularity action commands (run/shell/exec) specifying a container using a library:// URI will always attempt to retrieve the container from the default remote endpoint (cloud.sylab...

6.8CVSS6.6AI score0.00632EPSS

CVE•added 2021/06/15 8:15 p.m.•49 views

CVE-2021-33622

Sylabs Singularity 3.5.x and 3.6.x, and SingularityPRO before 3.5-8, has an Incorrect Check of a Function's Return Value.

9.8CVSS9.4AI score0.00547EPSS

CVE•added 2021/07/19 12:15 p.m.•28 views

CVE-2021-33027

Sylabs Singularity Enterprise through 1.6.2 has Insufficient Entropy in a nonce.

9.8CVSS9.4AI score0.00607EPSS