Lucene search
RedhatCVELIST:CVE-2022-0532HistoryFeb 09, 2022 - 10:05 p.m.
CVE-2022-0532
2022-02-0922:05:13
CWE-732
redhat
www.cve.org
7
sysctls
validation
vulnerability
cri-o
pod-based
attack
An incorrect sysctls validation vulnerability was found in CRI-O 1.18 and earlier. The sysctls from the list of “safe” sysctls specified for the cluster will be applied to the host if an attacker is able to create a pod with a hostIPC and hostNetwork kernel namespace.
CNA Affected
[
{
"product": "cri-o",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "1.18"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2022-0532
2024-08-23 00:00:00
prion
prion
Input validation
2022-02-09 23:15:00
redhatcve
redhatcve
CVE-2022-0532
2022-02-08 10:16:46
github
github
Incorrect Permission Assignment for Critical Resource in CRI-O
2022-02-11 00:00:54
ibm
ibm
osv
osv
Incorrect Permission Assignment for Critical Resource in CRI-O
2022-02-11 00:00:54
Incorrect Permission Assignment for Critical Resource in CRI-O in github.com/cri-o/cri-o
2024-08-21 15:11:38
CVE-2022-0532
2022-02-09 23:15:16
cve
cve
CVE-2022-0532
2022-02-09 23:15:16
nvd
nvd
CVE-2022-0532
2022-02-09 23:15:16
veracode
veracode
Validation Bypass
2022-02-14 11:26:59
nessus
nessus
RHEL 7 / 8 : OpenShift Container Platform 4.7.45 (RHSA-2022:0870)
2022-03-23 00:00:00
RHEL 7 / 8 : OpenShift Container Platform 4.6.56 (RHSA-2022:0866)
2022-03-23 00:00:00
RHEL 7 / 8 : OpenShift Container Platform 4.10.3 (RHSA-2022:0055)
2022-03-12 00:00:00
redhat
redhat