0.002 Low
EPSS
Percentile
55.5%
github.com/hpcng/singularity is vulnerable to authorization bypass. The image integrity is not validated when an ECL policy is enforced, allowing a user to bypass the ECL.
lists.opensuse.org/opensuse-security-announce/2020-07/msg00046.html
lists.opensuse.org/opensuse-security-announce/2020-07/msg00059.html
lists.opensuse.org/opensuse-security-announce/2020-09/msg00053.html
github.com/hpcng/singularity/security/advisories/GHSA-pmfr-63c2-jr5c
medium.com/sylabs