Security Advisory

CVE-2024-5154

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-12 08:51:43

Last updated 2026-02-25 22:23:43

Assigner redhat

State PUBLISHED

Description

A flaw was found in cri-o. A malicious container can create a symbolic link to arbitrary files on the host via directory traversal (“../“). This flaw allows the container to read and write to arbitrary files on the host system.

← Browse all CVEs View on cve.org ↗