CVE-2022-27649
moderate-risk
Published 2022-04-04
A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was found in Moby (Docker Engine), where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when execve(2) runs.
Do I need to act?
-
0.54% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10
High
NETWORK
/ HIGH complexity
Affected Products (20)
Podman
Developer Tools
Affected Vendors
References (12)
Issue Tracking
https://bugzilla.redhat.com/show_bug.cgi?id=2066568
Third Party Advisory
https://github.com/containers/podman/security/advisories/GHSA-qvf8-p83w-v58j
Issue Tracking
https://bugzilla.redhat.com/show_bug.cgi?id=2066568
Third Party Advisory
https://github.com/containers/podman/security/advisories/GHSA-qvf8-p83w-v58j
45
/ 100
moderate-risk
Severity
22/34 · High
Exploitability
2/34 · Minimal
Exposure
21/34 · High