← volver
CVE-2021-3101

Hotdog Container Escape

CVSS 8.8 HIGHEPSS 0.4%CWE-250
Hotdog, prior to v1.0.1, did not mimic the capabilities or the SELinux label of the target JVM process. This would allow a container to gain full privileges on the host, bypassing restrictions set on the container.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Productos afectados
Amazon Web Services · Hotdog

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/bottlerocket-os/hotdog/security/advisories/GHSA-qfhv-c5cc-mhgphttps://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities