Veracode Vulnerability DatabaseVERACODE:48385Denial Of Service (DOS)
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H
AI Score
Confidence
High
github.com/containers/podman is vulnerable to a Denial of Service (DoS). The vulnerability is due to the failure to properly clean up IPC resources created by malicious containers in /dev/shm, which can exhaust system memory and lead to a system outage and potentially leading to a memory-based denial of service when the system is unable to handle the increased resource usage.
Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H
AI Score
Confidence
High