Vendor
high
advisory
Kata Containers Guest-to-Host Root Escape via Virtiofs FUSE_SYMLINK
2 rules 1 TTPA vulnerability in Kata Containers allows a guest root user to escalate privileges to host root by exploiting the virtiofs shared file system to create arbitrary symlinks on the host.
kata-containers/kata-containers
kata-containers
virtiofs
fuse
privilege-escalation
container-escape
2r
1t
high
advisory
Contrast CLI CopyFile Policy Subversion via Symlinks Allows Guest Root Filesystem Writes
2 rules 2 TTPsA vulnerability in the CopyFile verification of Kata agent policies generated by the Contrast CLI allows arbitrary writes to the guest root filesystem, potentially leading to a full guest takeover.
Contrast CLI +2
kata-containers
container-security
privilege-escalation
2r
2t
high
advisory
Kata Containers CopyFile Policy Subversion via Symlinks
3 rules 2 TTPs 1 CVEAn oversight in the CopyFile policy in Kata Containers allows untrusted hosts to write to arbitrary locations inside the guest workload image via symlinks, enabling binary overwrites and data exfiltration.
kata-containers/kata-containers
kata-containers
container-escape
symlink
3r
2t
1c