Lucene search
Veracode Vulnerability DatabaseVERACODE:34758HistoryMar 21, 2022 - 5:51 a.m.
Remote Code Execution (RCE)
2022-03-2105:51:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
remote code execution
vulnerability
sanitization
kernel core pattern
container escape
script injection
system security
software
EPSS
0.001
Percentile
46.8%
github.com/cri-o/cri-o is vulnerable to remote code execution. The vulnerability exists due to a lack of sanitization of the kernel.core_pattern allowing an attacker to achieve container escape and inject maliciously crafted script into the system.
Related
cbl_mariner
cbl_mariner
CVE-2022-0811 affecting package cri-o for versions less than 1.21.7-1
2024-04-12 05:06:27
nessus
nessus
RHEL 7 / 8 : OpenShift Container Platform 4.9.25 (RHSA-2022:0860)
2022-03-21 00:00:00
RHEL 7 / 8 : OpenShift Container Platform 4.10.4 (RHSA-2022:0810)
2022-03-16 00:00:00
Oracle Linux 7 / 8 : cri-o (ELSA-2022-9229)
2022-03-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package cri-o version 1.20.7-alt1
2022-03-25 00:00:00
Security fix for the ALT Linux 10 package cri-o version 1.22.3-alt2
2022-03-24 00:00:00
redhatcve
redhatcve
CVE-2022-0811
2022-03-15 14:28:28
redhat
redhat
cve
cve
CVE-2022-0811
2022-03-16 15:15:16
oraclelinux
oraclelinux
cri-o security update
2022-03-18 00:00:00
cri-o security update
2022-03-18 00:00:00
github
github
Code Injection in CRI-O
2022-03-15 20:13:38
osv
osv
Code Injection in CRI-O in github.com/cri-o/cri-o
2024-08-21 14:30:29
CVE-2022-0811
2022-03-16 15:15:16
Code Injection in CRI-O
2022-03-15 20:13:38
githubexploit
githubexploit
Exploit for Code Injection in Kubernetes Cri-O
2022-03-21 09:39:22
nvd
nvd
CVE-2022-0811
2022-03-16 15:15:16
prion
prion
Code injection
2022-03-16 15:15:00
ibm
ibm
hivepro
hivepro
cvelist
cvelist
CVE-2022-0811
2022-03-16 14:03:40
cisa
cisa
CRI-O Security Update for Kubernetes
2022-03-18 00:00:00
thn
thn