Vendor
high
advisory
Contrast CLI CopyFile Policy Subversion via Symlinks Allows Guest Root Filesystem Writes
2 rules 2 TTPsA vulnerability in the CopyFile verification of Kata agent policies generated by the Contrast CLI allows arbitrary writes to the guest root filesystem, potentially leading to a full guest takeover.
Contrast CLI +2
kata-containers
container-security
privilege-escalation
2r
2t
high
advisory
Kata Containers CopyFile Policy Subversion via Symlinks
3 rules 2 TTPs 1 CVEAn oversight in the CopyFile policy in Kata Containers allows untrusted hosts to write to arbitrary locations inside the guest workload image via symlinks, enabling binary overwrites and data exfiltration.
kata-containers/kata-containers
kata-containers
container-escape
symlink
3r
2t
1c