Security Advisory

CVE-2021-29136

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-06 15:57:49

Last updated 2024-08-03 22:02:50

Assigner mitre

State PUBLISHED

Description

Open Container Initiative umoci before 0.4.7 allows attackers to overwrite arbitrary host paths via a crafted image that causes symlink traversal when "umoci unpack" or "umoci raw unpack" is used.

← Browse all CVEs View on cve.org ↗