github.com/kata-containers/runtime

Go2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting github.com/kata-containers/runtimepage 1 of 1

CVE-2020-2023LOWCVSS 3.8EG 3.8✓ Fixed in 1.11.1
2020-06-10
Kata Containers doesn't restrict containers from accessing the guest's root filesystem device. Malicious containers can exploit this to gain code execution on the guest and masquerade as the kata-agent. This issue affects Kata Containers 1…
CVE-2020-2026HIGHCVSS 7.8EG 7.8✓ Fixed in 1.11.1
2020-06-10
vulnerable: 1.11.0
A malicious guest compromised before a container creation (e.g. a malicious guest image or a guest running multiple containers) can trick the kata runtime into mounting the untrusted container filesystem on any host path, potentially allow…

Check whether github.com/kata-containers/runtime is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/kata-containers/runtime CVEs against the assets you own.

Start Free Scan →