← back
CVE-2022-0811

CVE-2022-0811

EPSS 18.6%CWE-94
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 18.6%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
16 Mar 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A flaw was found in CRI-O in the way it set kernel options for a pod. This issue allows anyone with rights to deploy a pod on a Kubernetes cluster that uses the CRI-O runtime to achieve a container escape and arbitrary code execution as root on the cluster node, where the malicious pod was deployed.
Affected products
n/a · CRI-O

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/show_bug.cgi?id=2059475https://github.com/cri-o/cri-o/security/advisories/GHSA-6x2m-w449-qwx7