Vulnerabilities in opencontainers
10 resultsCVE-2024-21626HIGHrunc container breakout through process.cwd trickery and leaked fdsEPSS 17.3%CVE-2021-41190LOWClarify Content-Type handling in OCI specEPSS 2.1%CVE-2021-43784MEDIUMOverflow in netlink bytemsg length field allows attacker to override netlink-based container configurationEPSS 1.7%CVE-2025-31133HIGHrunc container escape via "masked path" abuse due to mount race conditionsEPSS 0.7%CVE-2025-52881HIGHrunc: LSM labels can be bypassed with malicious config using dummy procfs filesEPSS 0.5%CVE-2025-52565HIGHcontainer escape due to /dev/console mount and related racesEPSS 0.5%CVE-2022-29162MEDIUMIncorrect Default Permissions in runcEPSS 0.4%CVE-2023-28642MEDIUMAppArmor bypass with symlinked /proc in runcEPSS 0.3%CVE-2023-25809MEDIUMrootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runcEPSS 0.3%CVE-2024-45310LOWrunc can be confused to create empty files/directories on the hostEPSS 0.3%