Tag

RunAsNonRoot

1 brief RSS

Containerd runAsNonRoot Bypass via Crafted User Directive (CVE-2026-46680)

A vulnerability in containerd allows for bypassing the Kubernetes `runAsNonRoot` restriction by exploiting a misinterpretation of large numeric User directives in container images, potentially leading to container execution as root (UID 0); this is tracked as CVE-2026-46680 and CVE-2024-40635.

containerd/containerd +1 runAsNonRoot privilege-escalation containerd kubernetes

2r 1t 1c 1h ago