OSVersionArchitecturePackageVersionFilename
Photon4.0x86_64kafka< 3.0.2-1.ph4kafka-3.0.2-1.ph4.x86_64.rpm
Photon4.0x86_64runc< 1.1.4-1.ph4runc-1.1.4-1.ph4.x86_64.rpm
Photon4.0x86_64runc-doc< 1.1.4-1.ph4runc-doc-1.1.4-1.ph4.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
Photon	4.0	x86_64	kafka	< 3.0.2-1.ph4	kafka-3.0.2-1.ph4.x86_64.rpm
Photon	4.0	x86_64	runc	< 1.1.4-1.ph4	runc-1.1.4-1.ph4.x86_64.rpm
Photon	4.0	x86_64	runc-doc	< 1.1.4-1.ph4	runc-doc-1.1.4-1.ph4.x86_64.rpm

photon 9

osv 21

nessus 39

veracode 3

ibm 15

cnvd 1

prion 4

nvd 4

redhatcve 7

cve 4

cvelist 4

github 3

fedora 10

alpinelinux 2

openvas 29

cgr 2

amazon 2

ubuntucve 2

debiancve 2

cbl_mariner 4

mageia 3

wolfi 2

altlinux 2

rocky 2

almalinux 2

oraclelinux 2

redhat 7

rosalinux 1

debian 1

suse 3

zdt 2

vmware 2

packetstorm 1

exploitdb 1

hivepro 1

photon

Important Photon OS Security Update - PHSA-2022-0266

2022-10-19 00:00:00

Important Photon OS Security Update - PHSA-2022-3.0-0471

2022-10-19 00:00:00

Important Photon OS Security Update - PHSA-2022-0529

2022-10-19 00:00:00

osv

runc-1.1.2-1.1 on GA media

2024-06-15 00:00:00

Apache Kafka vulnerability can lead to brokers hitting OutOfMemoryException, causing Denial of Service

2022-09-21 00:00:52

BIT-kafka-2022-34917

2024-03-06 10:54:18

nessus

Photon OS 4.0: Runc PHSA-2022-4.0-0266

2024-07-23 00:00:00

Photon OS 4.0: Kafka PHSA-2022-4.0-0266

2024-07-23 00:00:00

Amazon Linux 2022 : docker (ALAS2022-2022-237)

2022-12-09 00:00:00

veracode

Denial Of Service (DoS)

2022-09-21 06:20:16

Authentication Bypass

2022-03-25 06:40:51

Privilege Escalation

2022-05-16 13:23:56

ibm

Security Bulletin: IBM InfoSphere Information Server is affected by a denial of service vulnerability in Apache Kafka (CVE-2022-34917)

2022-12-05 23:37:54

Security Bulletin: Denial of Service vulnerability affect IBM Business Automation Workflow - CVE-2022-34917

2022-11-02 10:19:42

Security Bulletin: There is a vulnerability in Apache Kafka used by IBM Maximo Asset Management (CVE-2022-34917)

2023-09-07 14:14:48

cnvd

Apache Kafka Denial of Service Vulnerability

2022-09-26 00:00:00

prion

Authentication flaw

2022-09-20 09:15:00

Design/Logic Flaw

2022-03-24 20:15:00

Design/Logic Flaw

2022-05-17 21:15:00

nvd

CVE-2022-34917

2022-09-20 09:15:09

CVE-2022-24769

2022-03-24 20:15:09

CVE-2022-29162

2022-05-17 21:15:08

redhatcve

CVE-2022-34917

2022-10-05 08:00:55

CVE-2022-24769

2022-03-25 06:35:36

CVE-2022-29162

2022-06-07 02:29:38

cve

CVE-2022-34917

2022-09-20 09:15:09

CVE-2022-24769

2022-03-24 20:15:09

CVE-2022-29162

2022-05-17 21:15:08

cvelist

CVE-2022-34917 Unauthenticated clients may cause OutOfMemoryError on Apache Kafka Brokers

2022-09-20 08:35:07

CVE-2022-24769 Default inheritable capabilities for linux container should be empty

2022-03-24 00:00:00

CVE-2022-29162 Incorrect Default Permissions in runc

2022-05-17 00:00:00

github

Apache Kafka vulnerability can lead to brokers hitting OutOfMemoryException, causing Denial of Service

2022-09-21 00:00:52

Default inheritable capabilities for linux container should be empty

2022-05-24 17:36:56

Moby (Docker Engine) started with non-empty inheritable Linux process capabilities

2024-04-22 18:45:21

fedora

[SECURITY] Fedora 36 Update: containerd-1.6.2-1.fc36

2022-05-07 04:49:26

[SECURITY] Fedora 35 Update: moby-engine-20.10.14-1.fc35

2022-04-26 07:32:37

[SECURITY] Fedora 35 Update: containerd-1.6.2-1.fc35

2022-04-11 17:17:41

alpinelinux

CVE-2022-24769

2022-03-24 20:15:09

CVE-2022-29162

2022-05-17 21:15:08

openvas

Fedora: Security Advisory for containerd (FEDORA-2022-e9a09c1a7d)

2022-04-12 00:00:00

Fedora: Security Advisory for containerd (FEDORA-2022-ed53f2439a)

2022-04-12 00:00:00

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2022-1963)

2022-07-08 00:00:00

cgr

CVE-2022-24769 vulnerabilities

2024-05-19 03:07:16

CVE-2022-29162 vulnerabilities

2024-05-19 03:07:16

amazon

Medium: containerd, docker

2022-04-25 15:57:00

Medium: containerd

2022-04-25 03:47:00

ubuntucve

CVE-2022-24769

2022-03-24 00:00:00

CVE-2022-29162

2022-05-17 00:00:00

debiancve

CVE-2022-24769

2022-03-24 20:15:09

CVE-2022-29162

2022-05-17 21:15:08

cbl_mariner

CVE-2022-24769 affecting package moby-runc 1.1.0+azure-6

2022-07-14 21:00:02

CVE-2022-24769 affecting package moby-runc for versions less than 1.1.2-2

2022-06-26 03:29:33

CVE-2022-29162 affecting package moby-runc 1.1.0+azure-6

2022-07-14 21:00:02

mageia

Updated docker packages fix security vulnerability

2022-03-28 19:23:37

Updated docker-containerd packages fix security vulnerability

2022-04-16 00:35:09

Updated opencontainers-runc packages fix security vulnerability

2022-05-21 11:50:18

wolfi

CVE-2022-24769 vulnerabilities

2024-09-30 03:53:08

CVE-2022-29162 vulnerabilities

2024-09-30 03:53:08

altlinux

Security fix for the ALT Linux 10 package docker-engine version 20.10.14-alt1

2022-04-01 00:00:00

Security fix for the ALT Linux 10 package runc version 1.1.2-alt1

2022-05-12 00:00:00

rocky

runc security update

2022-11-15 06:15:20

container-tools:4.0 security and bug fix update

2022-11-08 06:20:20

almalinux

Low: runc security update

2022-11-15 00:00:00

Moderate: container-tools:4.0 security and bug fix update

2022-11-08 00:00:00

oraclelinux

runc security update

2022-11-22 00:00:00

container-tools:4.0 security and bug fix update

2022-11-15 00:00:00

redhat

(RHSA-2022:8090) Low: runc security update

2022-11-15 06:15:20

(RHSA-2022:1363) Moderate: OpenShift Container Platform 4.9.29 bug fix and security update

2022-04-20 13:56:56

(RHSA-2022:1357) Moderate: OpenShift Container Platform 4.10.10 security and extras update

2022-04-20 11:35:45

rosalinux

Advisory ROSA-SA-2023-2209

2023-08-08 07:51:13

debian

[SECURITY] [DSA 5162-1] containerd security update

2022-06-12 17:51:32

suse

Security update for containerd, docker and runc (important)

2022-07-08 00:00:00

Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container (important)

2022-09-20 00:00:00

Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container (important)

2022-09-22 00:00:00

zdt

VMware Cloud Director 10.5 - Bypass identity verification Exploit

2024-03-12 00:00:00

VMware Cloud Director - Bypass identity verification Exploit

2023-12-08 00:00:00

vmware

VMware Cloud Director Appliance contains an authentication bypass vulnerability (CVE-2023-34060).

2023-11-14 00:00:00

VMware Cloud Director Appliance contains an authentication bypass vulnerability (CVE-2023-34060).

2023-11-14 00:00:00

packetstorm

VMware Cloud Director 10.5 Authentication Bypass

2024-03-13 00:00:00

exploitdb

VMware Cloud Director 10.5 - Bypass identity verification

2024-03-12 00:00:00

hivepro

VMware Unveils Critical Authentication Bypass Vulnerability in VCD Appliance

2023-11-17 08:07:39

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

Confidence

High

EPSS

0.001

Percentile

43.5%

JSON

Related for PHSA-2022-4.0-0266