Singularity Security Vulnerabilities and Issues — Singularity CVE List

Lucene search

SylabsSingularity

4 matches found

CVE•added 2020/10/14 7:15 p.m.•144 views

CVE-2020-15229

Singularity (an open source container platform) from version 3.1.1 through 3.6.3 has a vulnerability. Due to insecure handling of path traversal and the lack of path sanitization within unsquashfs, it is possible to overwrite/create any files on the host filesystem during the extraction with a craf...

9.3CVSS8.5AI score0.00876EPSS

CVE•added 2019/05/14 9:29 p.m.•143 views

CVE-2019-11328

An issue was discovered in Singularity 3.1.0 to 3.2.0-rc2, a malicious user with local/network access to the host system (e.g. ssh) could exploit this vulnerability due to insecure permissions allowing a user to edit files within /run/singularity/instances/sing//. The manipulation of those files ca...

9CVSS8.6AI score0.00841EPSS

Web

CVE•added 2021/06/15 8:15 p.m.•51 views

CVE-2021-33622

Sylabs Singularity 3.5.x and 3.6.x, and SingularityPRO before 3.5-8, has an Incorrect Check of a Function's Return Value.

9.8CVSS9.4AI score0.00547EPSS

CVE•added 2021/07/19 12:15 p.m.•29 views

CVE-2021-33027

Sylabs Singularity Enterprise through 1.6.2 has Insufficient Entropy in a nonce.

9.8CVSS9.4AI score0.00607EPSS