CVE-2018-10856

Aliases:GHSA-wp7w-vx86-vj9hGO-2023-1962
Advisory lineage Upstream: 0 Downstream: 2
Modified
Published: 02 Jul 2018, 18:00
Last modified:05 Aug 2024, 07:46

Vulnerability Summary

Overall Risk (default)
medium
35/100
CVSS Score
8.8 HIGH
v3.0 (nvd)
EPSS Score
0.22% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

02 Jul 2018, 18:00
Published
Vulnerability first disclosed
05 Aug 2024, 07:46
Last Modified
Vulnerability information updated

Description

It has been discovered that podman before version 0.6.1 does not drop capabilities when executing a container as a non-root user. This results in unnecessary privileges being granted to the container.

CVSS Metrics

  • v4.0HIGHScore: 8.7CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
  • v3.0MEDIUMScore: 5.3CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
  • v3.0HIGHScore: 8.8CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • v2.0MEDIUMScore: 6.5AV:N/AC:L/Au:S/C:P/I:P/A:P

EPSS Trends

Current EPSS score: 0.22% Percentile: 44%

Techniques & Countermeasures

  • CWE-732Incorrect Permission Assignment for Critical Resource

    The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

  • CWE-250Execution with Unnecessary Privileges

    The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

Affected Systems

  • github.com/containerspodman

    < 0.6.1

  • github.com/containers/podmanv2

    all

  • github.com/containers/podmanv3

    all

  • github.com/containers/podmanv4

    all

  • libpod_projectlibpod

    < 0.6.1

  • [unknown]podman

    podman 0.6.1

References (6)