EPSS
Percentile
18.0%
rkt is vulnerable to remote code execution. Processes run with rkt enter do not have seccomp filtering during stage 2, allowing the attacker to run scripts that access host resources.
rkt enter
bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10145
github.com/rkt/rkt/issues/3998
www.twistlock.com/labs-blog/breaking-out-of-coresos-rkt-3-new-cves/