Skip to main content

Lxc

8 CVEs product

Monthly

CVE-2018-6556 LOW PATCH Monitor

lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.

Information Disclosure Ubuntu Linux Lxc Caas Platform Openstack Cloud +2
NVD
CVSS 3.0
3.3
EPSS
0.3%
CVE-2016-8649 CRITICAL PATCH Act Now

lxc-attach in LXC before 1.0.9 and 2.x before 2.0.6 allows an attacker inside of an unprivileged container to use an inherited file descriptor, of the host's /proc, to access the rest of the host's. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, low attack complexity.

Privilege Escalation Lxc
NVD GitHub
CVSS 3.0
9.1
EPSS
2.2%
CVE-2017-5985 LOW PATCH Monitor

lxc-user-nic in Linux Containers (LXC) allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those interfaces by leveraging lack of netns. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. This Missing Authorization vulnerability could allow attackers to access resources or perform actions without proper authorization checks.

Authentication Bypass Lxc
NVD GitHub
CVSS 3.0
3.3
EPSS
0.1%
CVE-2016-10124 HIGH PATCH This Week

An issue was discovered in Linux Containers (LXC) before 2016-02-22. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Lxc
NVD GitHub
CVSS 3.0
8.6
EPSS
0.3%
CVE-2015-1335 HIGH PATCH This Week

lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Information Disclosure Lxc Ubuntu Linux
NVD GitHub
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-1334 MEDIUM This Month

attach.c in LXC 1.1.2 and earlier uses the proc filesystem in a container, which allows local container users to escape AppArmor or SELinux confinement by mounting a proc filesystem with a crafted. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Lxc
NVD GitHub
CVSS 2.0
4.6
EPSS
0.1%
CVE-2015-1331 MEDIUM POC This Month

lxclock.c in LXC 1.1.2 and earlier allows local users to create arbitrary files via a symlink attack on /run/lock/lxc/*. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Lxc
NVD GitHub
CVSS 2.0
4.9
EPSS
0.0%
CVE-2013-6441 HIGH POC PATCH This Week

The lxc-sshd template (templates/lxc-sshd.in) in LXC before 1.0.0.beta2 uses read-write permissions when mounting /sbin/init, which allows local users to gain privileges by modifying the init file. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available.

Privilege Escalation Lxc
NVD GitHub
CVSS 2.0
7.2
EPSS
0.0%
EPSS 0% CVSS 3.3
LOW PATCH Monitor

lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.

Information Disclosure Ubuntu Linux Lxc +4
NVD
EPSS 2% CVSS 9.1
CRITICAL PATCH Act Now

lxc-attach in LXC before 1.0.9 and 2.x before 2.0.6 allows an attacker inside of an unprivileged container to use an inherited file descriptor, of the host's /proc, to access the rest of the host's. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, low attack complexity.

Privilege Escalation Lxc
NVD GitHub
EPSS 0% CVSS 3.3
LOW PATCH Monitor

lxc-user-nic in Linux Containers (LXC) allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those interfaces by leveraging lack of netns. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. This Missing Authorization vulnerability could allow attackers to access resources or perform actions without proper authorization checks.

Authentication Bypass Lxc
NVD GitHub
EPSS 0% CVSS 8.6
HIGH PATCH This Week

An issue was discovered in Linux Containers (LXC) before 2016-02-22. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Lxc
NVD GitHub
EPSS 0% CVSS 7.2
HIGH PATCH This Week

lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Information Disclosure Lxc Ubuntu Linux
NVD GitHub
EPSS 0% CVSS 4.6
MEDIUM This Month

attach.c in LXC 1.1.2 and earlier uses the proc filesystem in a container, which allows local container users to escape AppArmor or SELinux confinement by mounting a proc filesystem with a crafted. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Lxc
NVD GitHub
EPSS 0% CVSS 4.9
MEDIUM POC This Month

lxclock.c in LXC 1.1.2 and earlier allows local users to create arbitrary files via a symlink attack on /run/lock/lxc/*. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Lxc
NVD GitHub
EPSS 0% CVSS 7.2
HIGH POC PATCH This Week

The lxc-sshd template (templates/lxc-sshd.in) in LXC before 1.0.0.beta2 uses read-write permissions when mounting /sbin/init, which allows local users to gain privileges by modifying the init file. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available.

Privilege Escalation Lxc
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy