漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Kata Containers - Containers have access to the guest root filesystem device
Vulnerability Description
Kata Containers doesn't restrict containers from accessing the guest's root filesystem device. Malicious containers can exploit this to gain code execution on the guest and masquerade as the kata-agent. This issue affects Kata Containers 1.11 versions earlier than 1.11.1; Kata Containers 1.10 versions earlier than 1.10.5; and Kata Containers 1.9 and earlier versions.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N
Vulnerability Type
带着不必要的权限执行
Vulnerability Title
Kata Containers 安全漏洞
Vulnerability Description
Kata Containers是Kata Containers社区的一款开源的轻量级虚拟机构建程序。 Kata Containers 1.11.1之前的1.11版本、1.10.5之前的1.10版本和1.9及之前版本中存在安全漏洞。攻击者可利用该漏洞执行代码和冒充kata代理。
CVSS Information
N/A
Vulnerability Type
N/A