Lucene search
Veracode Vulnerability DatabaseVERACODE:26785HistorySep 21, 2020 - 4:54 a.m.
Authorization Bypass
2020-09-2104:54:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.002 Low
EPSS
Percentile
55.5%
github.com/hpcng/singularity is vulnerable to authorization bypass. The image integrity is not validated when an ECL policy is enforced, allowing a user to bypass the ECL.
Related
alpinelinux
alpinelinux
CVE-2020-13845
2020-07-14 18:15:14
github
github
Execution Control List (ECL) Is Insecure in Singularity
2021-12-20 18:24:30
debiancve
debiancve
CVE-2020-13845
2020-07-14 18:15:14
prion
prion
Input validation
2020-07-14 18:15:00
cvelist
cvelist
CVE-2020-13845
2020-07-14 17:23:08
osv
osv
Execution Control List (ECL) Is Insecure in Singularity
2021-12-20 18:24:30
CVE-2020-13845
2020-07-14 18:15:14
nvd
nvd
CVE-2020-13845
2020-07-14 18:15:14
cve
cve
CVE-2020-13845
2020-07-14 18:15:14
ubuntucve
ubuntucve
CVE-2020-13845
2020-07-14 00:00:00
nessus
nessus
openSUSE Security Update : singularity (openSUSE-2020-1011)
2020-07-20 00:00:00
openSUSE Security Update : singularity (openSUSE-2020-1037)
2020-07-27 00:00:00
openvas
openvas
openSUSE: Security Advisory for singularity (openSUSE-SU-2020:1011-1)
2020-07-20 00:00:00
openSUSE: Security Advisory for singularity (openSUSE-SU-2020:1037-1)
2020-07-24 00:00:00
suse
suse
Security update for singularity (important)
2020-07-19 00:00:00
Security update for singularity (important)
2020-09-18 00:00:00
Security update for singularity (important)
2020-07-23 00:00:00