Security Advisory

CVE-2020-2023

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-06-10 17:30:12

Last updated 2024-09-17 01:15:36

Assigner palo_alto

State PUBLISHED

Description

Kata Containers doesnt restrict containers from accessing the guests root filesystem device. Malicious containers can exploit this to gain code execution on the guest and masquerade as the kata-agent. This issue affects Kata Containers 1.11 versions earlier than 1.11.1; Kata Containers 1.10 versions earlier than 1.10.5; and Kata Containers 1.9 and earlier versions.

← Browse all CVEs View on cve.org ↗