Lucene search
Veracode Vulnerability DatabaseVERACODE:30774HistoryJun 02, 2021 - 7:11 a.m.
Insecure Container Configuration
2021-06-0207:11:38
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
insecure
container
configuration
attacker
malicious
default
remote
endpoint
uri
victim
non-default
software
EPSS
0.002
Percentile
54.3%
github.com/sylabs/singularity uses insecure container configuration. An attacker is able to push a malicious container to the default remote endpoint with a URI that is identical to the URI used by a victim with a non-default remote endpoint.
Related
ubuntucve
ubuntucve
CVE-2021-32635
2021-05-28 00:00:00
nessus
nessus
GLSA-202107-50 : Singularity: Remote code execution
2022-01-24 00:00:00
cve
cve
CVE-2021-32635
2021-05-28 21:15:09
gentoo
gentoo
Singularity: Remote code execution
2021-07-22 00:00:00
debiancve
debiancve
CVE-2021-32635
2021-05-28 21:15:09
github
github
nvd
nvd
CVE-2021-32635
2021-05-28 21:15:09
prion
prion
Design/Logic Flaw
2021-05-28 21:15:00
osv
osv
CVE-2021-32635
2021-05-28 21:15:09
Action Commands (run/shell/exec) Against Library URIs Ignore Configured Remote Endpoint
2021-06-01 21:21:01
singularity-3.8.3-1.2 on GA media
2024-06-15 00:00:00
cvelist
cvelist
alpinelinux
alpinelinux
CVE-2021-32635
2021-05-28 21:15:09
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0006)
2022-01-28 00:00:00
mageia
mageia
Updated singularity packages fix security vulnerability
2022-01-06 01:45:33