EPSS
Percentile
47.3%
github.com/containernetworking/cni is vulnerable to arbitrary path injection. A user is be able to change the type: field in a CNI configuration to an arbitrary path and could execute arbitrary binaries on a host.
type:
bugzilla.redhat.com/show_bug.cgi?id=1919391
github.com/containernetworking/cni/pull/808