CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Kubernetes: >> Cri-O >> 1.30.0 Security Vulnerabilities

CVE-2024-5154

A flaw was found in cri-o. A malicious container can create a symbolic link to arbitrary files on the host via directory traversal (“../“). This flaw allows the container to read and write to arbitrary files on the host system.

CVSS Score

8.1

EPSS Score

0.001

Published

2024-06-12

Page 1

Vulnerabilities

Vulnerable Software

Kubernetes: >> Cri-O >> 1.30.0 Security Vulnerabilities

Products

Pricing

Contact Us