0.004 Low
EPSS
Percentile
73.6%
VMware product updates resolve mishandled file descriptor vulnerability in runc container runtime. Successful exploitation of this issue may allow a malicious container to overwrite the contents of a host’s runc binary and execute arbitrary code. Exploitation of this vulnerability requires the attacker to have existing permission to deploy containers or run docker exec. Alternatively, an attacker could trick a user with these permissions into deploying a malicious container or running docker exec for them.
CPE | Name | Operator | Version |
---|---|---|---|
vio-k | eq | 5.x | |
enterprise pks | lt | 1.3.3 | |
enterprise pks | lt | 1.2.10 | |
cse | lt | 1.2.7 | |
vic | lt | 1.5.1 |
0.004 Low
EPSS
Percentile
73.6%