← voltar
CVE-2022-0811

CVE-2022-0811

EPSS 18.6%CWE-94
A flaw was found in CRI-O in the way it set kernel options for a pod. This issue allows anyone with rights to deploy a pod on a Kubernetes cluster that uses the CRI-O runtime to achieve a container escape and arbitrary code execution as root on the cluster node, where the malicious pod was deployed.
Produtos afetados
n/a · CRI-O

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://bugzilla.redhat.com/show_bug.cgi?id=2059475https://github.com/cri-o/cri-o/security/advisories/GHSA-6x2m-w449-qwx7