← voltar
CVE-2021-3101

Hotdog Container Escape

CVSS 8.8 HIGHEPSS 0.4%CWE-250
Hotdog, prior to v1.0.1, did not mimic the capabilities or the SELinux label of the target JVM process. This would allow a container to gain full privileges on the host, bypassing restrictions set on the container.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Produtos afetados
Amazon Web Services · Hotdog

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/bottlerocket-os/hotdog/security/advisories/GHSA-qfhv-c5cc-mhgphttps://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities