Hotdog Project: >> Hotdog Security Vulnerabilities
Hotdog, prior to v1.0.1, did not mimic the capabilities or the SELinux label of the target JVM process. This would allow a container to gain full privileges on the host, bypassing restrictions set on the container.
CVSS Score
8.8
EPSS Score
0.0
Published
2022-04-19
Incomplete fix for CVE-2021-3101. Hotdog, prior to v1.0.2, did not mimic the resource limits, device restrictions, or syscall filters of the target JVM process. This would allow a container to exhaust the resources of the host, modify devices, or make syscalls that would otherwise be blocked.
CVSS Score
8.8
EPSS Score
0.0
Published
2022-04-19